Privacy Policy

Who we are

Our website address is: https://specialplasticparts.com/

Personal data

By shopping at Special Plastic Parts com, you accept our data protection policy and our processing of your personal data. We protect your privacy and do not collect more information than necessary to process your order. We never sell or pass on your information to third parties without legal basis.

Special Plastic Parts com is responsible for the processing of personal data that you have provided to us as a customer. Your personal data is processed by us to be able to handle your order and in those times when you have requested newsletters or promotional offers – to be able to adapt the marketing to your individual needs.

The information below is a summary of how we store and process your data in accordance with the Data Protection Regulation (GDPR).

What is personal data?

A personal data is all information that can be directly or indirectly attributed to a natural person.

Which data do we collect and store?

To be able to handle your order and answer questions related to your order (customer service), we store your first and last name, address, telephone number, e-mail address, IP address and purchase history. Your information is stored as long as we have a legal basis to process your information, for example to fulfill the agreement between us or to comply with a legal obligation under, for example, the Accounting Act.

Legal basis

In connection with a purchase, your personal data is processed to complete the agreement with you.
Marketing, promotions and similar mailings take place with your consent.

Which data do we share, and with whom?

Payment providers

When making a purchase, information is shared with our payment provider. What is stored is first name, last name, address, e-mail address and telephone number. If you choose to pay by invoice, your personal identity number is also saved by the payment provider. The information is saved in order to complete the purchase and to protect the parties against fraud.
The payment providers (payment services) that we use are: Stripe

Shipping companies

In order to deliver your orders and complete our agreement, we must share specific information with the shipping company. What is shared with the shipping company is first name, last name and address information for delivery. E-mail address and / or mobile number may also be shared with the shipping company for notification.
The shipping companies we work with are: Postnord, DHL, Schenker.

Newsletter

If you have chosen to subscribe to our newsletter, your first name, last name and e-mail address will be shared with our newsletter provider. This is to be able to keep you updated with information and offers for marketing purposes.
We use MailChimp to send out newsletters.

The right of access

You have the right to receive extracts from all information available about you with us. Excerpts are delivered electronically in a readable format.

Right to rectification

You have the right to ask us to update incorrect information or supplement information that is incomplete.

The right to be forgotten

You can request that the information concerning you be deleted at any time. There are few exceptions to the right to deletion, such as whether it should be retained because we must fulfill a legal obligation (for example, according to the Accounting Act).

Responsible for data protection

Special Plastic Parts com is responsible for the storage and processing of personal data in the online store and ensures that the rules are followed.

How we protect your personal data

We use industry standards such as SSL / TLS and one-way hash algorithms to store, process and communicate sensitive information such as personal data and passwords in a secure way.

Introduction to Special Plastic Parts com´s policy for processing personal data in relationship to the EU:s General Data Protection Regulation (GDPR)

The EU General Data Protection Regulation (GDPR) sets demands for how I process my customer´s personal data. Among other, this means:

• I have to be open about which personal data I collect, and why I do this
• I am only allowed to collect the personal data that are needed for the purpose I have stated
• I have to protect the gathered personal data so that no one unauthorized can access them
• I am not allowed to store the personal data for a longer period of time than necessary

In my complete GDPR-policy below, you can read about which personal data I process in my web store, how and why I do this, and about which rights you have if you are a customer of mine.

Special Plastic Parts com

Complete policy for processing personal data in relationship to the General Data Protection Regulation (GDPR)

Here you can read about how Special Plastic Parts com processes your personal data and complies with the GDPR

Personal Data Controller

• The Personal Data Controller is Hans Ragnar AB, who owns the trademark Special Plastic Parts com
• I, Hans Nielsen, run the day to day activities of processing personal data in accordance with GDPR and this policy. You might contact me via email info@specialplasticparts.com

Lawful grounds for processing your personal data

The GDPR demands that I have a lawful ground for processing your personal data There are different kinds of lawful grounds:

• Consent
• Contract
• Legal obligation
• Wheighing of interests

GDPR often demands that I obtain your consent to collect and store your personal data (Consent)

• When you place an order in the web store specialplasticparts.com you are requested to tick the box that you consent to the Terms of Purchase, before you can send your order. As you tick the box to consent to the Terms of Purchase, you also consent to our Privacy Policy for processing your personal data.
• In your order confirmation, sent to you by email, there is a link to our Terms of Purchase, and thereby also to our Privacy Policy
• You may at any time withdraw your consent to allow me to store your personal data. Contact me here https://specialplasticparts.com/privacy-center/glom-mig/ if you would like to request that your stored personal data are deleted
• Please note that there are some personal data that are excluded from you right to have your data deleted, for example data that is stored for the purpose of book keeping. You may read more about this further on in this policy

GDPR demands that I do not collect more personal data than needed (data minimization). These are the data that I might collect and store

• Name, address, telephone number, email address, IP-address, purchase history
• If you and I communticate with each other (for example in customer service matters) via telephone, letter, email, sms, chatt or video call, I will store your contact information, and I will take notes about these communications

Why do I collect the personal data? (purpose limitation and lawful ground)

Name, address, telephone number, email address, IP-address, purchase history, contact information to video call apps [lawful ground: consent, contract, legal obligation]

• To make it possible for you to place an order in the web store
• To make it possible to communicate with you in matters of customer service

Invoicing systems, Payment gateways [lawful ground: contract, legal obligation]

• The book keeping law has certain demands on how I should register the payments made by my customers. To be able to adhere to the law, your personal data (name, address, the payments you have made) are stored in my invoicing system, if you have chosen invoice as your way of payment. Your email address will also be stored in the invoicing system, to make it possible to send the invoice to you via email
• The payment gateway Stripe will store data about you and your purchases in the web store, to make it possible to process your payments, and to prevent fraud etc. Read more here: https://stripe.com/se/privacy

How is your personal data collected? (transparency)

• When you place an order in the web store, the personal data that you submit (name, adress etc.) get stored in the customer- and order management system of the web store: Also, your IP-address and the content of your order are being stored
• When you pay for your order, the personal data mentioned above is also stored in the payment gateway provider Stripe, read more here: https://stripe.com/se/privacy
• If you create a customer account in the web store, the personal data that you enter will be stored in your account
• When you place an order in the web store, an automatic email is sent to me with information about your order. This email will be stored in my email program
• If you contact me with questions or other customer service matters, I might save your contact information, copies of our emails to each other etc., and I may store notes about our communication in a customer management system
• When you pay for your order, you will receive an invoice as proof of your payment. This invoice will be stored in the web store system for order management, and downloaded for backup, and the information about your personal data and your purchase will be imported in my book keeping system
• When you pay for your order, your credit card data and bank data will be processed by the payment gateway and by the bank. This they will do as Personal Data Controllers, meaning that it is not my company that collects your data
• If you choose to subscribe to my newsletter, your name and email address will be stored in the program that manages the newsletters. I never subscribe you to the newsletter, that is something that you do yourself
• If you choose to like my Facebook page, or to follow me on Twitter and Instagram, then you and and any likes, comments, sharings you make will be visible on those services´web pages, and it will be registered in their systems

Who can access your personal data, and how are the data stored? (integrity and confidentiality)

• GDPR demands that I store your data in a safe way, and not in more places than necessary
• The basic rule is that only I have access to your personal data, but below you can see who else might access your data, and how the data is stored
• When you and I send emails, sms or other types of electronic messages to each other, then these messages are stored in my phone and in my email program
• If you contact me with questions or other customer service matters, I may store your contact information, copies of our emails to each other etc., and notes about our communication in a customer management system. I do this to be able to remember what our communications has been about
  • Some personal data are stored by my subcontractors, for example:
  • Invoicing system
  • My accounting consultant
  • My email supplier
  • The subcontractors act as Personal Data Processors, and I have signed a personal data processing agreement with these subcontractors. They have their own GDPR-policies, and they guarantee that thes policies compies with the law. The subcontractors might have some access to your personal data, to be able to do their work. They might also transfer personal data to countries outside the EU and EES, but they will then guarantee that this is done in compliance with the GDPR demands for security
• As most of the personal data is stored in digital systems provided by the subcontractors, it is their security measures that protect your data from ending up in the wrong hands, or from being deleted. I use updated antivirus-programs on all my computers and on my phone. Any personal data that is printed on paper, will be kept in a locked safe.
• If you and I have made phone calls to each other, your phone number and information about when the calls took place, will be stored in my phone operator´s call logs. This information will also be stored as part of my book keeping
• If you and I have communicated with each other using different apps for video calls, then your username and information about when the calls took place will be stored in my video call apps
• If you and I have communicated with each other using different apps with chat functionality, then your username and information about our chats will be stored in the chat app
• Some government agencies might demand to see the personal data that I store. This could be to verify that I adhere to the demands of GDPR, or during an ongoing criminal investigation
• During any malfunction or other problem with the web store, support personell from the web host I am using, and companies that supply the web store or it´s plugin programs, might need to log in to the web store to debug and troubleshoot. At these occasions, the support personell will gain temporary access to the web store, and when the problem has been solved, their access to the web store will be removed again

Your right to obtain a copy of the personal data that I have collected about you (transparency and data portability)

• You have the right to see the data that I have collected about you, and, if you wish, obtain a copy of this data. This is easiest done here: https://specialplasticparts.com/privacy-center/begar-ut-din-data/

Your right to have the data that I have collected about you corrected (accuracy) or deleted

• GDPR demands that you as a customer can have the data that I have collected about you corrected or deleted, if you wish. The easiest way to do this is by contacting me here: https://specialplasticparts.com/privacy-center/kontakt-dso/ if you wish for me to correct your personal data that I have stored
• The personal data that is stored in my book keeping is not allowed to be deleted, even if you as the customer would want this. The book keeping law demands that I store my book keeping for 7 years, and some supporting documents for 10 years when selling to other EU-countries than Sweden
• If you have subscribed to my news letter, liked my Facebook page, or followed me on Twitter and Instagram, you can at any time yourself take back any personal data that you have shared. If you have liked or commented on my posts on Facebook, or if we have chatted with each other on Facebook/Messenger, you can either yourself delete the information that you wish, or you may contact me and ask me to do it for you. The same applies to any interactions we may have had on Twitter/Instagram. If you need any assistance with this, you are welcome to contact me via email

Your right to complain about my processing of your personal data

• If you are dissatisfied with how I process your personal data, you have the right to report this to Datainspektionen. You may read more about this here: https://www.datainspektionen.se/lagar–regler/dataskyddsforordningen/de-registrerades-rattigheter/#klagomal

How I make certain that your personal data is not stored in too many places (storage limitation), and how I make certain that I do not store your personal data for a longer time than needed

• I aim to store your personal data in as few places as possible. I also have routines in place to regularly delete personal data that is no longer needed. At present, me and my subcontractors store your personal data in the following places:
  • In the web store´s order management system (10 years)
  • In my invoicing system (customer data can not be deleted)
  • My book keeping is stored with me and also with my accounting consultant (7 years in accordance with the book keeping law)
  • In my cloud based file storage systems, some book keeping data is stored (7 years in accordance with book keeping law, and 10 years for some supporting documents when selling to other EU-countries than Sweden, and 5 years for supporting documents when exporting outside the EU)
  • In my phone´s sms-app and in my email apps
  • In my phone´s call history, and in the phone operator´s logs if we have made phone calls to each other. If you wish for me to delete your data from my phone´s call history, please contact me via email. My phone operator “Halebop” may save data about my outgoing phone calls for a maximum of 36 months, and then the data will be deleted. Incoming phone calls to my phone will be saved by my phone operator “Halebop” only in crime preventing purposes, in accordance with the law for electronic communication. Read mor in Halebop´s privacy policy: https://www.telia.se/om/integritetspolicy
  • In my video call apps, for example Skype, Signal, Messenger, Zoom etc., and in the logs of these apps, if we have made contact with each other using a video call app (both calls and chats). I will delete any person from my video call apps, if we have not had contact with each other on that app for 24 months.

Concerning cookies and personal data when visiting the web site specialplasticparts.com

• I use different tools to measure statistics and for tracking on the web site specialplasticparts.com The tools I am using are:
  • Google Analytics
  • Microsoft Advertising (Bing Ads)
  • Google Ads
  • Facebook Pixel
• I use these tools to measure how many visitors that come to my website, and to collect information about the visitors´behaviour on the web site. I do this to understand the needs of the visitors, to be able to build an as good web site as possible, and to be able to evaluate the results of different marketing strategies I may use
• Common for the statistics- and tracking tools mentioned above is that they use “cookies” to be able to measure and track user behaviour on the web site
• Read more about how I use cookies here: https://specialplasticparts.com/privacy-center/cookie-policy/
• If you wish for me to delet the collected data about your visits to the web site, you are welcome to contact me here: https://specialplasticparts.com/privacy-center/kontakt-dso/