Privacy Policy

Last Updated: September 1, 2023

Welcome to Medovaya Ovsyanka's Privacy Policy. This document outlines how we collect, use, disclose, and protect your personal information when you use our website or services.

1. Information We Collect

1.1 Information You Provide to Us

We may collect the following information when you interact with our website:

  • Contact Information: Name, email address, phone number, and address when you subscribe to our newsletter, request information, or place an order.
  • Business Information: Company name, job title, and business contact details for B2B inquiries.
  • Communication Content: Records of your correspondence with us, including emails and contact form submissions.

1.2 Information We Collect Automatically

When you visit our website, we automatically collect certain information about your device and browsing actions:

  • Usage Data: Information about how you interact with our website, including pages visited, time spent on pages, and navigation patterns.
  • Technical Data: IP address, browser type and version, operating system, device information, and other technology identifiers.
  • Cookie Data: Information collected through cookies and similar tracking technologies (as described in our Cookie Policy).

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 To Provide Our Services

  • Process and fulfill product orders and inquiries
  • Provide customer support and respond to your requests
  • Facilitate business relationships with distributors and partners

2.2 To Improve Our Website and Products

  • Analyze usage patterns to enhance website functionality and user experience
  • Develop new products and services based on user preferences and feedback
  • Troubleshoot technical issues and maintain system security

2.3 For Marketing and Communication

  • Send newsletters, updates, and promotional materials (if you have subscribed)
  • Provide information about products and services that may interest you
  • Conduct market research and gather feedback on our offerings

2.4 For Legal and Operational Requirements

  • Comply with legal obligations and regulatory requirements
  • Enforce our terms of service and protect our rights
  • Prevent fraud and unauthorized access to our systems

3. Legal Basis for Processing (EU/EEA Users)

For users in the European Economic Area (EEA), we process your personal data based on the following legal grounds:

  • Contractual Necessity: To perform our contractual obligations to you, such as fulfilling orders or providing customer support.
  • Legitimate Interests: To pursue our legitimate business interests, such as improving our products and services, marketing, and security, in ways that do not unduly impact your rights and freedoms.
  • Consent: For specific purposes where we have requested and obtained your explicit consent, such as sending marketing communications.
  • Legal Obligation: To comply with legal requirements, such as tax and accounting regulations.

4. How We Share Your Information

We may share your personal information with the following categories of recipients:

4.1 Service Providers

We work with third-party service providers who perform functions on our behalf, such as:

  • Website hosting and maintenance providers
  • Analytics services to help us understand website usage
  • Customer service and communication platforms
  • Payment processors for secure transaction handling

These providers have access to your personal information only to perform these tasks on our behalf and are contractually obligated to protect your data.

4.2 Business Partners

With your consent, we may share your information with business partners who offer complementary products or services that may be of interest to you.

4.3 Legal Requirements

We may disclose your information when required by law, such as:

  • In response to a court order or legal request
  • To protect our rights, privacy, safety, or property
  • To investigate potential fraud or illegal activities
  • In connection with a merger, acquisition, or business transfer

5. Data Retention

We will retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The criteria used to determine our retention periods include:

  • The length of time we have an ongoing relationship with you
  • Legal obligations that require us to keep data for certain periods
  • Statute of limitations under applicable law
  • Ongoing or potential legal disputes

6. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

6.1 For All Users

  • Opt-out of marketing: You can unsubscribe from our marketing communications at any time by clicking the "unsubscribe" link in any email or contacting us directly.
  • Cookie preferences: You can manage your cookie preferences through our cookie consent tool and your browser settings.

6.2 For EU/EEA Users (GDPR Rights)

Under the General Data Protection Regulation (GDPR), you have the following rights:

  • Access: Request information about what personal data we hold about you and how it is processed.
  • Rectification: Request correction of inaccurate or incomplete personal data.
  • Erasure: Request deletion of your personal data in certain circumstances.
  • Restriction: Request limitation of how we process your data.
  • Data Portability: Request transfer of your data to you or a third party in a structured, commonly used format.
  • Objection: Object to processing based on legitimate interests or for direct marketing.
  • Withdraw Consent: Withdraw consent where processing is based on your consent.

6.3 For California Residents (CCPA Rights)

Under the California Consumer Privacy Act (CCPA), California residents have specific rights regarding their personal information:

  • Right to Know: Request information about the personal information we collect, use, disclose, and sell.
  • Right to Delete: Request deletion of personal information we have collected.
  • Right to Opt-Out: Opt-out of the sale of personal information.
  • Right to Non-Discrimination: Receive equal service and pricing even if you exercise your privacy rights.

6.4 How to Exercise Your Rights

To exercise any of these rights, please contact us using the information in the "Contact Us" section below. We may need to verify your identity before fulfilling your request.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet or electronic storage is 100% secure, so we cannot guarantee absolute security.

Our security measures include:

  • Encryption of sensitive data in transit and at rest
  • Secure network infrastructure with firewalls and intrusion detection
  • Regular security assessments and vulnerability testing
  • Access controls and authentication requirements for our systems
  • Staff training on data protection and security practices

8. International Data Transfers

Medovaya Ovsyanka is based in Sweden, and our primary data processing activities occur within the European Union. However, we may transfer personal data to service providers located in other countries to fulfill the purposes described in this Privacy Policy.

When we transfer personal data outside the EU/EEA, we ensure appropriate safeguards are in place, such as:

  • Transfers to countries with an adequacy decision from the European Commission
  • Standard Contractual Clauses approved by the European Commission
  • Binding Corporate Rules for intra-group transfers
  • Other legally approved transfer mechanisms

9. Children's Privacy

Our website and services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will take steps to delete such information.

10. Third-Party Links

Our website may contain links to third-party websites, plugins, or applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy practices. We encourage you to read the privacy policy of every website you visit.

11. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the updated policy on our website with a revised "Last Updated" date. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Medovaya Ovsyanka AB
Kungsgatan 15
111 43 Stockholm, Sweden

Email: [email protected]
Phone: +46 8 123 456 78

For EU/EEA users: You have the right to lodge a complaint with a data protection authority if you believe that our processing of your personal data infringes data protection laws. The Swedish Data Protection Authority (Datainspektionen) is our lead supervisory authority.