Privacy Policy (GDPR)
Applicable to iMagen AB
Last updated: April 24, 2025

At iMagen, we value your personal privacy and adhere to the EU General Data Protection Regulation (GDPR). This policy explains how we collect, use, store, and protect your personal data when you shop with us via our online store powered by WordPress and WooCommerce, and use Qliro as our payment service provider.

1. Who is the Data Controller?

Company: iMagen AB
Company Registration Number: 556809-5284
Address: Lau Liffride 129, SE-62362 Ljugarn
Email: info@imagen.se
Phone: +(46) 0498-652700

2. What Personal Data Do We Collect?

When you shop with us, we collect the following information:

  • Name

  • Address

  • Phone number

  • Email address

  • IP address and device information

  • Order and purchase history

  • Payment information via Qliro (Note: We never handle card details directly)

🛒 WooCommerce collects data related to orders and customer accounts.
💳 Qliro processes payment information and is the data controller for this data.

3. What Do We Use Your Personal Data For?

We process your data to:

  • Manage and deliver your order

  • Contact you regarding your order

  • Send order and delivery information

  • Complete payments via Payson

  • Offer customer support

  • Improve our website and customer experience

  • Comply with legal obligations, such as accounting laws

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contractual necessity: To fulfill our agreement with you.

  • Legal obligation: For accounting and reporting purposes.

  • Consent: For activities like newsletters.

  • Legitimate interest: For customer service, analysis, and service improvement.

5. Third Parties We Share Data With

We only share your personal data with trusted parties when necessary:

Third Party Purpose Country GDPR Protection
Qliro Payment and credit check Sweden Yes
WooCommerce E-commerce and cart management USA/EU Yes (via WordPress/Automattic, SCCs used)
WordPress (Automattic Inc.) CMS platform for our website USA Yes (SCCs used)
Shipping companies (e.g., PostNord, Bring, DHL) Delivery Nordic countries Yes
Web hosting/IT services Operations, backup, and security Nordic/EU Yes
Accounting system/Accountants Accounting as per law Sweden Yes

6. How Long Do We Retain Your Data?

We retain your data for as long as necessary for the purpose:

  • Order information: Retained for up to 7 years as per accounting laws.

  • Customer service cases: Retained for up to 2 years.

7. Your Rights

You have the right to:

  • Access your data

  • Rectify inaccurate data and request deletion (“right to be forgotten”)

  • Object to processing

  • Withdraw consent

  • Restrict processing

  • Data portability

  • Lodge a complaint with the Swedish Authority for Privacy Protection (IMY)

Contact us at info@imagen.se to exercise your rights.

8. Cookies

We only use necessary and functional cookies for your user experience. You can manage cookies through your browser settings. For more information, refer to our [Cookie Policy].

9. Security

We implement measures to protect your data:

  • SSL encryption on our website

  • Regular updates of plugins and systems

  • Access controls and strong passwords

10. Complaints

If you believe we are processing your data incorrectly, you have the right to file a complaint with the relevant supervisory authority:

  • Sweden: Swedish Authority for Privacy Protection (IMY)

  • Finland: Office of the Data Protection Ombudsman

  • Denmark: Danish Data Protection Agency