Privacy Policy

Information about how we handle and protect your personal data.

Document type
Privacy
Published
Updated
Version
1.0.0
Jurisdiction
Europe
Audience
All

1. Introduction

This Privacy Policy (“the Policy”) explains how HallinMedia (“we”, “us”, “our”) collects, uses, and protects your personal data when you visit www.hallin.media (“the Website”). We value your privacy and are committed to protecting your personal data in accordance with applicable data protection legislation, including the EU General Data Protection Regulation (GDPR) and Swedish data protection legislation. This policy is designed to give you a clear understanding of how we handle your data.

2. Data Controller

NWG Digital AB is the data controller for the processing of your personal data collected through this website.

Contact details for the data controller:

  • Email: [email protected]
  • Postal address: NWG Digital AB, Bleckslagargatan 16, 934 31, Kåge, Sweden

3. Collection and Use of Personal Data

When you interact with our website, we collect information in various ways, both directly from you and automatically through our systems. Here is a description of the types of data we collect and how we use them:

3.1 Information You Provide Us

We collect information that you actively share with us, for example when you use our contact form or subscribe to our services. This information may include:

  • Your name and contact details
  • Your email address
  • Information you choose to include in your messages to us
  • Company details (where applicable)

3.1.1 How We Use This Information

  • To respond to your enquiries and provide you with the support you need
  • To deliver the services you have requested
  • To send relevant information and updates about our services
  • To manage our customer relationship and improve your experience

3.2 Automatically Collected Information

To continuously improve our website and optimise user experience, we use various analytical tools that automatically collect information. These tools help us understand how visitors interact with our website.

3.2.1 Web Analytics and Performance

We use the following tools to analyse and improve our website:

  • Umami Analytics: Collects anonymous visitor statistics in a privacy-friendly manner
  • Google Analytics: Provides deeper understanding of website traffic and user interactions
  • Microsoft Clarity: Creates heatmaps and session recordings to understand user navigation
  • Cloudflare Analytics: Analyses website traffic and performance for optimisation
  • HubSpot: Manages customer relationships and customises communication

These tools may collect the following types of information:

  • IP address (anonymised to protect your privacy)
  • Browser type and device information
  • Visit patterns and interactions on the website
  • Page views and click paths
  • Geographic location (at country level)

3.3 Email Services

We use Resend as our email service provider to handle email forms and marketing registrations (e.g. newsletters, notifications). Resend helps us send and track email communications securely and efficiently.

Please note: Resend may add their own tracking for email opens and link clicks and associate these with each unique email sent to your email address.

3.4 Payment Services

We use Stripe to handle payments. Stripe processes your payment details according to strict security principles and in accordance with their own privacy policy. We never store complete credit card details on our servers.

4. Cookies and Tracking Technologies

4.1 Our Use of Cookies

We use cookies and similar tracking technologies to improve your experience on our website and to collect information about how you use our website. Here is an overview of the types of cookies we use:

4.1.1 Necessary Cookies

These cookies are necessary for the website to function properly and include:

  • Session cookies to maintain basic website functionality
  • Cookies to remember your language preferences and other user settings

4.1.2 Analytics Cookies

We use these cookies to collect information about how you use our website, which helps us improve its performance and user experience:

  • Umami Analytics (privacy-friendly alternative)
  • Google Analytics
  • Microsoft Clarity
  • HubSpot

You have the option to adjust your cookie settings in your browser at any time. Please note that blocking certain cookies may affect the functionality of the website.

For more detailed information about our cookies, please see our Cookie Policy.

We process your personal data based on the following legal grounds:

When you have explicitly approved the processing, for example when you subscribe to our newsletter or accept cookies.

5.2 Performance of Contract

When processing is necessary to fulfil a contract with you or to take steps at your request before entering into a contract.

5.3 Legitimate Interest

When processing is necessary for our legitimate interests, such as improving our services, ensuring website security, or conducting marketing activities, provided these interests are not overridden by your fundamental rights and freedoms.

When processing is necessary to comply with a legal obligation to which we are subject.

6. Storage and Security

6.1 Storage Period

We store your personal data only for as long as necessary to fulfil the purposes described in this policy or as required by law. Specific storage periods may vary depending on the type of information and the purpose of processing.

6.2 Security Measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or destruction. These measures include:

  • SSL/TLS encryption for all data traffic
  • Secure servers with regular security updates
  • Strict access control for staff
  • Regular security reviews of our systems and processes
  • Data minimisation and pseudonymisation where appropriate

7. Information Sharing

7.1 Third-Party Providers

We never share your personal data with third parties, except in the following situations:

  • With trusted service providers who help us operate our website and deliver our services, under strict data protection agreements
  • With Resend to handle our email services and marketing registrations
  • With Stripe to handle payments

We may share your personal data if required by law, to protect our rights, or to comply with a legal process or government request.

We may also share your personal data if you have explicitly consented to this.

8. International Data Transfers

If we transfer your personal data outside the EU/EEA, we will ensure appropriate safeguards are in place, such as standard contractual clauses approved by the EU Commission or other mechanisms to ensure an adequate level of protection for your personal data.

9. Your Rights

Under the GDPR, you have several rights regarding your personal data:

9.1 Right to Information

You have the right to receive clear information about how we process your personal data.

9.2 Right of Access

You have the right to obtain confirmation whether we process your personal data and, if so, access to that personal data and certain supplementary information.

9.3 Right to Rectification

You have the right to have inaccurate personal data about you corrected and, taking into account the purposes of processing, to have incomplete personal data completed.

9.4 Right to Erasure (“right to be forgotten”)

You have the right to request the erasure of your personal data under certain circumstances, for example if the personal data is no longer necessary for the purpose for which it was collected.

9.5 Right to Restriction of Processing

You have the right to request that the processing of your personal data be restricted under certain circumstances.

9.6 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used and machine-readable format and have the right to transmit that data to another controller under certain circumstances.

9.7 Right to Object

You have the right to object at any time to processing of your personal data based on legitimate interest or public interest, including profiling.

9.8 Automated Decision-Making and Profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

To exercise any of these rights, please contact us via [email protected]. We will respond to your request within one month.

10. Complaints

10.1 Contact Us

If you have any complaints about how we handle your personal data, please contact us first to try to resolve the issue.

10.2 Supervisory Authority

You have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY), which is the supervisory authority in Sweden.

Contact details for the Swedish Authority for Privacy Protection:

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make substantial changes, we will notify you by publishing an updated version on our website and, in some cases, via email. All changes will take effect 30 days after publication unless otherwise stated.

By continuing to use our website after such changes have taken effect, you accept the updated policy.

12. Contact Information

If you have any questions about this Privacy Policy or our handling of your personal data, please contact us: