PRIVACY POLICY
EFFECTIVE DATE January 9th, 2024
All processing of personal data is carried out by applicable personal data legislation. Within the EU/EEA, the so-called General Data Protection Regulation (GDPR) applies from 25 May 2018.
Your privacy is important to us, and we are responsible for ensuring that the personal information you provide is handled correctly. Our policy explains how we handle your data at Happy Points AB. This covers the entire process, from when you make a booking, purchase our services or products, and integrate with us both offline and online through various communication channels, such as our website, social media, phone, text message or email.
It is important that you read and understand our privacy policy, which outlines your rights and how you can exercise them. You should feel confident that we will process your data safely.
Responsible for the processing of data
Happy Points AB (from now on, we/us/Happy Points) is the data controller for processing the data described in this policy. If you have any questions or wish to exercise any of your rights, please get in touch with us at:
E-mail: martina@happypoints.se
Address: Vistabergs Allé 71
Postal code: 141 68 Huddinge
Telephone number: +46 (0)731515312
How do we get access to your data?
In addition to the information you provide to us or that we collect from you when you become a client with us or contact us, we may also supplement with data from a so-called third party. The data we collect from third parties is as follows: • Address information from public registers to ensure we have accurate and up-to-date address information for you.
What personal data do we process?
The following categories of personal data may be processed:
• Identity information such as name, social security number, and company registration number
• Contact information such as address, e-mail address, telephone number
How and why do we process your data?
Providing and Fulfilling Contracts for Services/Goods
We process personal data to fulfil our agreement and provide services to you. We process personal data for our administration and invoicing of the services to handle complaints and other complaints and otherwise to safeguard our rights and fulfil our obligations under our agreement with you. The personal data we process in this process are contact details and identity-related personal data.
Bookkeeping
We process your data to fulfil legal obligations incumbent on us, such as the Accounting Act's requirements for archiving accounting material. The personal data we process in this process are contact details and identity-related personal data.
Marketing
We process data to enable the marketing of goods/services to you and to enable the sending of newsletters for the services you are interested in in general, as well as information about the company. Furthermore, it also allows invitations to events in your interest. We process the data after a balance of interests where we have assessed that our interest in processing the data outweighs the intrusion that the processing may constitute for you. The treatment is also considered to be of benefit to you. The personal data we process in this process is your name and contact details.
How long do we store your data?
We only process personal data for as long as it is needed for the purposes for which it was collected. Generally, your data is stored as long as you are a customer with us and for up to 12 months. After that, the personal data is deleted or anonymised so that it can no longer be linked to you. Personal data needed, for example, to meet the requirements of the Accounting Act, is stored for a more extended period.
Do we process children's data?
No. Booking of coaching is only accepted if you are 18 years of age or older.
Specifically about cookies
A cookie is a small text-based data file a web server asks to save in your browser. By generally sending the cookie's content back with each request to the website in question, the server can keep track of the visitor's preferences, behaviour or identity (to the extent that it is known).
We use the following cookies on our website:
• Session cookies (a temporary cookie that expires when you close your browser or device).
• Persistent cookies (cookies that remain on your computer until you delete them or expire).
• Third-party cookies (cookies set by a third-party website. With us, these are primarily used for analyses, such as Google Analytics.
How can you manage cookies?
You can change the settings for the use and scope of cookies in your browser anytime. You can then block all cookies, only accept certain cookies or delete cookies when you close your browser. If you choose to block or delete cookies, it may mean that certain services cannot be used or that the website does not function properly in all respects.
Who do we share personal data with?
Our starting point is to disclose personal data only to third parties if you have consented to it or if it is necessary to fulfil our obligations under contract or law. In cases where we disclose personal data to third parties, we ensure that the personal data is processed securely.
• Swedish authorities
We may provide necessary information to authorities if we are required by law to do so. This information may include your data. In connection with a legal dispute, transferring information containing personal data to other parties may also be necessary.
• International Coaching Federation (ICF)
We may disclose your personal data (name, contact details, number of coaching hours and start and end dates) to the ICF to enable verification and competence development of the coach. No personal notes will be shared.
How is your data protected?
We protect your data through a combination of technical and organisational solutions. We have taken special security measures to protect your data against unauthorised access. We develop routines and working methods to ensure your data is handled securely. Only those persons who need to process your personal data to perform their duties have access to it.
Your rights
As a data subject with us, you have the following rights:
• You have the right to request an extract from the register where you can see what personal data we have about you.
• You have the right to request correction if we have incorrect or incomplete personal data registered about you.
• You have the right to have your data erased under the following conditions:
– The data is no longer needed for the purpose for which it was collected.
– If the data is stored with your consent and you withdraw the consent.
– If the processing is based on a balance of interests and no legitimate reasons outweigh your interest.
- whether the personal data has been unlawfully processed;
– If deletion is required to comply with a legal obligation.
– If you object to processing for direct marketing purposes.
The right to have personal data deleted does not apply if we are required by law (e.g. the Accounting Act) to retain the data.
• You have the right to data portability (the right to have your data moved), provided the legal basis is consent or agreement. You can obtain personal data relating to you, which you have provided or which has been generated by your actions/activities.
• You have the right to request that the processing of your data be restricted. However, suppose you request a restriction on your processing of personal data. In that case, this may mean that we cannot fulfil our obligations against you for the duration of the limitation.
• You have the right to object to processing personal data that balances interests on a legal basis. To continue with the processing in question, we need to demonstrate a compelling, legitimate reason for the processing that outweighs our interests, rights or freedoms. Otherwise, we may only process the data to establish, exercise, or defend legal claims.
• You always have the right to object to your data being used for direct marketing purposes. If an objection is made to direct marketing, the personal data may no longer be processed for such purposes.
If you are dissatisfied with the response you received from us, you have the right to lodge a complaint with the supervisory authority.
Changes to the Privacy Policy We may update this Privacy Policy occasionally and post changes on this website. When we post changes to this Privacy Policy, we will revise the "Effective Date" at the top of the page to indicate when such changes will become effective.