Privacy policy

At Dynamic Code we care about your personal privacy, and we always strive to achieve and maintain a high level of data protection. This Privacy Policy explains how we obtain and use your personal information. It also describes your rights, and how you can exercise them. It is important that you read and understand this Privacy Policy, and that you feel secure with our processing of your personal data. You are always welcome to contact us if you have any questions. 

WHAT IS PERSONAL DATA, AND WHAT IS PROCESSING OF PERSONAL DATA?

Personal data is all types of information that can be related, either directly or indirectly, to a living natural person. Examples of personal data include images and audio recordings that are processed on a computer, even if no names are named. Encrypted data and different types of electronic identities (e.g. IP numbers) are personal data if they can be connected to natural persons. Processing of personal data is any operation or set of operations that is performed on personal data. Each operation that is performed on personal data represents processing of that data, regardless of whether or not by automated means. Examples of common types of processing include collection, recording, organisation, structuring, storage, adaptation or alteration, transfer and erasure.

WHO IS RESPONSIBLE FOR THE PERSONAL DATA WE COLLECT?

Dynamic Code AB, corporate ID number 556601-4683, Wallenbergs gata 1, SE-583 30 Linköping, Sweden is the personal data controller for the company’s processing of personal data.

WHAT PERSONAL DATA DO WE COLLECT ABOUT YOU AS A CUSTOMER, AND FOR WHAT PURPOSE (I.E. WHY)?

Purpose: To be able to manage orders/purchases.

Types of processing we perform

  • Delivery (including notification and contacts relating to the delivery).
  • Identification and checking of age.
  • Management of payments (checks of payment history, and retrieval of credit rating reports from Klarna).
  • Management of customer complaints and warranty issues.

Categories of personal data

  • Name.
  • Contact details (e.g. address, email address and telephone number).
  • Payment history.
  • Payment information.
  • Purchase information (which goods have been ordered, and whether the goods are to be delivered to another address).
  • User information for My Pages (only applies to customers who create an account and are thus able to use My Pages).

Legal grounds:Fulfilment of the purchase agreement.This collection of your personal data is required in order for us to be able to fulfil our undertakings according to the purchase agreement. If the data is not provided to us, our undertakings will not be able to be fulfilled, and we will therefore be forced to cancel your purchase.

Storage period:Until the purchase has been completed (including delivery and payment), and for a period of 36 months thereafter, in order to be able to manage any customer complaints or warranty issues.

Purpose: To be able to fulfil the company’s legal obligations.

Types of processing we perform

Processing that is necessary for fulfilment of the company’s legal obligations according to statutory requirements, judgement by a court of law, or decision from a competent authority (e.g. the Swedish Bookkeeping Act, the Swedish Money Laundering Act, or regulations on product liability and product safety, which may require the production of communication and information to the general public and to customers about product warnings and product recalls in connection with, for example, a defective product or a product that represents a health risk).

Categories of personal data

  • Name.
  • Personal ID number.
  • Contact details (e.g. address, email address and telephone number).
  • Payment history.
  • Payment information.
  • Your correspondence.
  • Details of the date and time of purchase, where the product was purchased, and any faults or complaints.

Legal grounds:Legal obligation. This collection of personal data is required by law.If the data is not provided to us, our legal obligation will not be able to be fulfilled, and we will therefore be forced to cancel your purchase.

Storage period:Until the purchase has been completed (including delivery and payment), and for a period of 36 months thereafter.

Purpose: To be able to manage customer service matters.

Types of processing we perform

  • Communication and responses to any questions that are posed to our customer service (via telephone or digital channels, including social media).
  • Identification.
  • Investigation of any complaints or support issues (including technical support).

Categories of personal data

  • Name.
  • Contact details (e.g. address, email address and telephone number).
  • Your correspondence.
  • Details of the date and time of purchase, where the product was purchased, and any faults or complaints.
  • Technical data about your equipment.
  • Health data (e.g. data that you provide to us about allergic reactions and health status).

Legal grounds:Legitimate interest. The processing is necessary in order to satisfy our and your legitimate interest in the management of customer service matters.

Storage period:Until the customer service matter has been completed.

Purpose: To be able to evaluate, develop and improve our services, products and systems for the customer collective as a whole.

Types of processing we perform

  • Adaptation of services to make them more user-friendly (e.g. changes to the user interface in order to simplify the flow of information, or to highlight functions that are often used by customers in our digital channels).
  • Production of documentation aimed at improving the goods and logistical flows (e.g. by being able to forecast purchases, stocks and deliveries).
  • Production of documentation in order to develop and improve our product range.
  • Production of documentation in order to develop and improve our resource efficiency from an environmental and sustainability perspective (e.g. by streamlining purchasing procedures and the planning of deliveries).
  • To provide our customers with an opportunity to influence our product range.
  • Production of documentation in order to improve IT systems, with the aim of increasing the general level of security for the company and our visitors/customers.
  • ​Analyses of the data we collect for the purpose at hand. Based on the data we collect (e.g. purchasing history, age and gender), you are sorted into a customer group (customer segment), for which analyses are then carried out at an aggregate level with the help of de-identified or pseudonymised data, without any connection to you as an individual.

Categories of personal data

  • Age.
  • Gender.
  • City/town of residence.
  • Correspondence and feedback regarding our services and products. Purchase and user-generated data (e.g. clicking and visit history).
  • Technical data regarding devices that are used and their settings (e.g. language setting, IP address, browser settings, time zone, operating system, screen resolution and platform).
  • Information about how you have interacted with us, in other words how you have used the service, login method, where and for how long different sites/pages have been visited, response times, errors during downloads, how you access and leave the service, etc.

Legal grounds:Legitimate interest. The processing is necessary in order to satisfy our and our customers’ legitimate interest in the evaluation, development and improvement of our services, products and systems.

Storage period:From the time of the collection of the data, and for a period of 36 months thereafter.

From which sources do we obtain your personal data?

In addition to the data that you yourself provide to us, or that we obtain from you on the basis of your purchases and how you
use our services, we may also obtain personal data from other parties (third parties). We obtain the following data from third parties:

1) Address details from public registers, in order to be sure that we have your correct address details.

2) Information about creditworthiness from credit evaluation institutes, banks or credit rating companies.

 

To whom might we disclose your personal data?

Personal data processors. When necessary in order to be able to offer our services, we disclose your personal data to companies that are personal data processors on our behalf. A processor is a company that processes the information on our behalf and in accordance with our instructions. We have processors that help us with:

1) Transportation (logistics and distribution companies, and freight forwarders).

2) Payment solutions.

3) Marketing (systems for the mailing of newsletters).

4) IT services (companies that manage necessary operation, technical support and maintenance of our IT solutions and IT systems).

When your personal data is disclosed to processors, this is done solely for purposes that are consistent with the purposes for which we have collected the information (e.g. to be able to fulfil our undertakings according to the purchase agreement or terms & conditions of membership). We evaluate all processors to ensure that they are able to provide satisfactory guarantees regarding security and confidentiality in relation to the personal data. We have written agreements with all processors, in which they guarantee appropriate security for the personal data that is processed, and undertake to follow our security requirements as well as restrictions and requirements regarding the international transfer of personal data.

Companies that are independent personal data controllers. We also disclose your personal data to certain companies that are independent controllers. If a company is an independent controller, this means that we do not control how the information that has been disclosed to the company is to be processed. Independent controllers to whom we disclose your personal data are:

1) State authorities (the Swedish police, Swedish tax agency or other authorities) if we are obligated to do so by law or on suspicion of criminal activity.

2) Companies that take care of public transportation of goods (logistics and distribution companies, and freight forwarders).

3) Companies that offer payment solutions.

When your personal data is disclosed to a company that is an independent controller, it is that company’s privacy policy and personal data processing policy that are applicable.

Do we use cookies?

Yes. Our cookies improve access to our website and identify repeat visitors. Furthermore, our cookies improve the user experience by tracking the user’s interests and adapting the information presented accordingly. Our use of cookies is in no way connected to personally identifiable information on our website.

Security & Data Protection

We undertake a number of security measures to protect your personal data. We use encryption methods to protect sensitive data that is transferred over the internet. Only employees with the task of performing a specific job (e.g. invoicing or customer service) gain access to personally identifiable information. The computers/servers that are used to store personally identifiable information are located in a specially designated and secure environment in Sweden.

How long do we save your personal data?

We never save your personal data longer than is necessary for each purpose. Please see more specific information about the storage periods under each purpose.

Analysis of biological material 

By sending your sample, you are giving your consent for the biological material in the sample (DNA, RNA or proteins) to be analysed. The sole purpose of the analysis is to provide you with the information detailed in the product documentation. The sample you submit will be destroyed after two weeks. 

Cancelling a subscription

We use the email address you provide to us in order to send information and updates concerning your order, individual newsletters, related product information, etc. If you no longer wish to receive such notifications, information about how to cancel the subscription can be found at the end of each email.

Changes to this Privacy Policy

Dynamic Code AB reserves to right to change and/or add supplementary information to this Privacy Policy as necessary.