Privacy Policy

Effective Date: 2025-02-16

Tevind AB ("we," "our," or "us") operates the website Valoteka.com. We are committed to protecting your privacy and handling your personal data responsibly in compliance with the General Data Protection Regulation (GDPR).

If you have any questions, you can contact us at:

• Email: [email protected]
• Company Name: Tevind AB
• Registered Address: Östergärde industriväg 61, 41729 Göteborg, Sweden

1. What Personal Data We Collect

• Account Information: Username, email address, and other necessary details when you register.
• Content You Provide: Descriptions, items, or other uploaded content.
• Technical Data: IP address, browser type, and device information.
• Website Logs and Security Data: We collect basic access logs, including IP addresses, browser types, and timestamps, to ensure website security and functionality. We do not use tracking services like Google Analytics.

2. How We Use Your Data

We only use your personal data for:

• Providing and managing your account.
• Improving website functionality and security.
• Complying with legal obligations.

We do not sell, rent, or share your data with third parties for marketing purposes.

3. Legal Basis for Processing

We process personal data based on:

• Contractual necessity (to provide our services).
• Legitimate interest (security, website improvement).
• Legal compliance (regulatory obligations).

We may send you important service-related emails (e.g., account updates, security notifications) based on our legitimate interest in keeping your account secure.

4. How Long We Store Your Data

We retain your personal data only as long as necessary for the purposes outlined in this policy.

• If you delete your account, we remove your personal data, except for data required to meet legal obligations (e.g., tax records, security, or legal disputes).
• Content Created and Passed On: If you have created data that is inherently tied to other users or objects (e.g., certifications, notes of origin, item descriptions that have changed ownership), we cannot delete that data, as it is necessary for the integrity of records and continued ownership verification.
• We may retain non-personal metadata linked to past actions for historical and security reasons but will remove direct personal identifiers where possible.

5. How We Share Your Data

We may share your data only in the following cases:

• Legal Compliance: If required by law enforcement, court order, or legal processes. We reserve the right to challenge or deny requests that appear to be politically motivated, violate international human rights, or originate from authoritarian or oppressive regimes.
• Service Providers: We use trusted third-party providers who are GDPR-compliant to ensure the security and functionality of our services:
• Amazon Web Services (AWS): For secure server hosting and transactional email sending (SES).
• Cloudflare: For DNS management, website security, and CDN services.
• Zoho Mail: For handling business email communications.
• Some of our service providers may process data outside the European Economic Area (EEA). When this occurs, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or other recognized mechanisms to protect your data.
• All third-party providers adhere to strict GDPR-compliant data protection policies. For more details, please refer to their privacy policies.

6. Cookies and Website Functionality

We use cookies only for essential website functionality, such as:

• Authentication Cookies: To keep users logged in securely.
• Security Cookies: To protect against malicious activity.
• Preference Cookies: To remember user settings (e.g., language preference).

We do not use cookies for advertising, tracking, or analytics. You can disable cookies in your browser settings, but some features may not work properly.

7. Your GDPR Rights

We recognize and apply the following privacy rights to all users, regardless of citizenship or residency:

• Right to Access: Request a copy of your data.
• Right to Rectification: Correct inaccurate data.
• Right to Erasure: Request data deletion.
• Right to Object: Object to specific processing.
• Right to Data Portability: Receive your data in a structured format.

You can request to exercise these rights by contacting us at [email protected].We will respond to your request within 30 days.

8. Security Measures

We take appropriate security measures, including:

• Encryption of sensitive data.
• Secure servers and restricted access.
• We review and improve our security practices on an ongoing basis to protect personal data.

9. Third-Party Links

Valoteka.com may contain links to third-party sites. We are not responsible for their privacy practices.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Significant changes will be notified via email or website notices.

Last Updated: 2025-02-16

---

You can also take a look at our Email Policy