For Art by Christin Björk it is important that your personal data that we store is well protected. On 25 May 2018, the GDPR law came into force. It then replaced the previous Personal Data Act (PUL) and the GDPR places even higher demands on us as a company when we collect and store personal data.
Personal data is any information that can be directly or indirectly attributed to a natural person. It can be, for example, name, address, personal identity number, e-mail and telephone number.
Deliver an ordered/purchased product or service and handle payments
In order to process your order and answer questions related to your order (customer service), we store through WooCommerce your first and last name, address, phone number, email address, IP address and purchase history. All data is stored within the EU (Finland) on servers of the operating provider WP Engine (Google Servers).
This data is stored for as long as we have a legal basis to process your data, for example to perform the contract between us or to comply with a legal obligation under, for example, the Consumer Sales Act, which means that a product can be complained about for 36 months.
Legal basis: performance of the purchase contract.
In order to market goods and services
Personal data is processed to:
-Remind you of forgotten/abandoned digital shopping baskets
-Send direct marketing via email, SMS, social media or other similar electronic channels of communication as well as via mail. E.g. by running campaigns or sending offers and invitations to events to: all customers, a specific customer segment (e.g. shopped at least 2 times in the last year).
-Use personal data to analyse and make decisions about the target group to which the marketing will be shown.
The categories of personal data processed are:
Name, Contact details (e.g. address, email, phone number), Data on how the customer uses the company's websites, and other digital channels, Data on completed purchases, User-generated data (e.g. click and visit history)
In order to understand the type of marketing or direct marketing to be used, analyses are carried out on:
How websites and other digital channels are used (e.g. which pages and parts of pages are visited and which searches are made), Purchase history
Legal basis: for our use of marketing cookies, our legal basis is consent through pop-up with cookie approval.
For other personal data processing, we rely on the following lawful basis: recipients of newsletters, SMS, mail and website visitors - legitimate interest. The processing is necessary to meet your and our interest in being able to market products and services relevant to you.
Retention period: as long as we believe you benefit from our communications and you have not actively opted out and no later than 12 months after your customer relationship with us ends. Customer relationship means that you have made at least one purchase from us in the last 12 months.
Remember that you always have the right to object to our marketing. You can do this directly in our emails and text messages through an unsubscribe link or by contacting us at firstname.lastname@example.org.
If our marketing appears on social media, you can indicate your preferences directly in the platform you see the marketing in, e.g. via your settings or in connection with the relevant post.
When making a purchase, information is shared with our payment provider. What is stored is first name, last name, address, email address and phone number. If you choose to pay by invoice, your personal identity number is also stored with the payment provider. The information is stored in order to complete the purchase and to protect the parties against fraud. The payment providers (payment services) we use are: Stripe and Swish. Below you can read the privacy policies of the payment providers.
In order to deliver your orders and complete our agreement, we need to share specific information with the shipping company. What is shared with the shipping company is first name, last name and address information for delivery. Email address and/or mobile phone number may also be shared with the shipping company for notification purposes. The shipping companies we work with are: Postnord, DHL. Below you can read the privacy policies of the shipping companies.
If you have chosen to subscribe to our newsletter, your first name, last name and email address will be shared with our newsletter provider. This is to keep you updated with information and offers for marketing purposes. We use Mailchimp for sending out newsletters.
Right of access
You have the right to obtain extracts of any information we hold about you. Extracts are delivered electronically in a readable format.
Right to rectification
You have the right to ask us to update inaccurate information or to complete information that is inaccurate.
Right to be forgotten
You can ask us to delete your personal data at any time. There are a few exceptions to the right to erasure, such as if it must be retained because we must comply with a legal obligation (for example, under the Accounting Act).
Data Protection Officer
Art by Christin Björk is responsible for the storage and processing of personal data in the online store and ensures that the rules are followed.
How we protect your personal data
We use industry standards such as SSL/TLS and one-way hash algorithms to securely store, process and communicate sensitive information such as personal data and passwords.
We use the WooCommerce platform powered by WordPress.
We reserve the right to make changes to the Terms at any time. Changes to the Terms will be published online on the Website. The amended terms and conditions will be deemed to have been accepted upon placing an order or visiting the website.
In the event that a dispute cannot be resolved by agreement between the company's customer service and the customer, you as a customer can turn to the Swedish Complaints Board, see arn.se. For residents of an EU country other than Sweden, complaints can be submitted online via the European Commission's dispute mediation platform, see http://ec.europa.eu/consumers/odr
In the event of a dispute, we follow the decision of the ARN or equivalent dispute resolution body.
Any dispute concerning the interpretation or application of these general terms and conditions shall be interpreted in accordance with Swedish law.
Christinbjork.com uses only mandatory cookies.