Privacy Policy

 

1. introduction

This Privacy Policy describes how we (The Every AB, reg. no. 559310-6189, at the address The Every AB, Box 136, Sveavägen 124, 113 50 Stockholm, Sweden) handle your personal data when you as a consumer purchase products at and visit our website the-every.com. We may also obtain your personal data from third party sources. We act as the data controller of personal data obtained accordingly and of its processing in accordance with this Privacy Policy.

We safeguard your personal integrity. It is therefore important for us to protect your personal data and ensure that our processing of your personal data is correct and lawful. This Privacy Policy will help you to understand what kind of personal data about you we collect and how it is used when you purchase products at and visit our website, as well as your rights as a data subject. We ask that you read this Privacy Policy carefully and familiarize yourself with its content.

We may sometimes need to make updates or changes to this Privacy Policy. If we do so, we will inform you in an appropriate manner and we ask you to then carefully read through the updated Privacy Policy.

We trust that this Privacy Policy answers your questions about our processing of your personal data. If you have additional questions, please contact us at the address provided above or at help@the-every.com

2. what personal data do we process

The categories of personal data we process are the following:

(a) Name and contact details such as your email address, telephone number and residential address;

(b) Financial information, e.g. payment method and debit or credit card number;

(c) Purchase and search history; and

(d) Browser information, e.g. type and version of browser, any website from which you have been referred, which time zone you visit us from; pages you visit on our website; your IP-address and a rough location estimate based on your IP-address; information about your web activity or your interaction in emails we send to you, etc.

3 Why we process your personal data
3.1 To provide our services

We process your personal data to provide you with our services and to communicate with you. This includes processing your contact information in connection with a purchase, to complete transactions, to register orders on your behalf and to provide support. Our processing for the purpose of providing our services is based on our legitimate interest to do so.

3.2 To improve our services

We process your personal data to improve our services and make them more user friendly. This includes performing market research and customer satisfaction surveys. For these purposes, we also use your personal data based on your web activity and activity associated with emails we send to you. Our processing for the purpose of improving our services is based on our legitimate interest to do so.

3.3 Direct marketing

We also use your personal data to communicate with you, to inform you about our terms and conditions and to send you marketing messages. When we process your personal data for the purpose of direct marketing we do so relying on our legitimate interest in maintaining our relationship with you and communicating with you, as a customer or a representative of an organization, about our new products, campaigns and such. You have the right at any time to object to the processing of your personal data for such direct marketing by contacting us at help@the-every.com, in which case we will, on the condition that no legal basis for the treatment exists, cease the processing of your personal data.

4. How do we share your personal data

The personal data that we collect may be shared with our third party suppliers and other third parties listed below.

(a) Service providers: We may use third party service providers to manage some aspects of our business operations. We may share personal information with such third parties to perform services on our behalf such as fulfilling online purchases, processing payments, sending marketing communications, conducting research surveys and verifying and validating information that you have provided to us.

(b) Partners: If you use services that are provided by our partners and which are integrated with our services our partners gain access to your personal data. The personal data collected by our partners is covered by their own conditions and policies for processing of personal data.

(c) Sale or transfer of business or assets: Your personal data may, to the extent allowed and in accordance with applicable data protection law, be transferred or disclosed to a purchaser or prospective purchaser in the event of a sale, assignment, or other transfer of all or a portion of our business or assets.

(d) We may also share your personal data when this is required by law.

When we use service providers in accordance with (a) above, we will enter into a data processing agreement with the service provider which requires it to ensure that your personal data is only processed in accordance with our instructions and this Privacy Policy. Processing and sharing of your personal data in accordance with (a)-(d) above is necessary for our legitimate interest to provide our services or to fulfill any contract we have entered into with you or to comply with mandatory law.

5. Transfer of your personal data outside the EU/EEA

If your personal data is transferred to any of our partners that conduct business outside the EU/EEA, we will ensure that appropriate protective measures are taken prior to the data transfer to such business, e.g. by ensuring that the country in which the recipient is located ensures an adequate level of data protection according to the European Commission or by use of standard contractual clauses that the European Commission has issued ensuring suitable measures to safeguard your rights and freedoms.

6. for how long do we store your personal data?

We will only store your personal data for as long as necessary for the purposes they were collected and to fulfill our legal duties to store data otherwise, but no longer than permitted by applicable law.

7 Cookies and Pixel Tags
7.1 Cookies

Cookies are small text files that are stored on your device and that make it possible for us to monitor how you use our website the-every.com

There are two types of cookies: 1) a persistent cookie that remains on your device for a fixed time; 2) a session cookie that is stored temporarily in the device's memory while you are on the website. Session cookies disappear when you close your browser.

By accepting the use of cookies at the-every.com, you consent to the use of cookies as set forth in this Privacy Policy. If you do not accept our use of cookies, you can set your browser not to accept cookies. You can also set your browser to notify you whenever the website tries to place a cookie on your device. Through the browser you can also delete previously stored cookies. Please refer to your browsers help section for more information. Furthermore, you can at any time delete cookies manually from your hard drive.

Please note that if you choose not to accept cookies, some of the functionalities of certain websites may be limited.

7.2 Pixel Tags

We use "pixel tags", "web beacons", "JavaScript" or similar technologies that enable, among other things, the tracking of your activities when you use our website or receive e-mail messages (jointly referred to as "Pixel Tags"). Pixel Tags may be used in connection with our website the-every.com, our online advertising, or our e-mail messages, either by us or by our service providers, business partners or other third parties. By visiting the-every.com, you consent to our use of Pixel Tags in accordance with this Privacy Policy.

Pixel Tags are used to collect typically anonymous data to help identify certain information, e.g. to compile reports on tracking information regarding demographics, patterns and other information to improve the customer experience. We may share these reports with for example marketing partners. The tracking information in these reports cannot be traced back to individual users. We may co-ordinate the tracking information with other personal data provided by users of the website for the purpose of analyzing the information. When such co-ordination is performed, all the co-ordinated information is processed as personal data and used and shared only in accordance with this Privacy Policy.

Pixel Tags may be used to identify why you visit our website, e.g. if any online advertisement or e-mail has brought you to the website. Certain Pixel Tags may also be used by other companies to track visits to their websites, to identify whether such internet traffic came from our website or to confirm your eligibility to receive benefits.

Third party cookies or Pixel Tags may collect information about user activities on our website over time and across different websites.

8. Security measures

We have taken a number of security measures to ensure that the personal data we keep is secure. For example, access to areas where personal data is stored is limited to our employees and service providers who require it in the course of their duties and who are informed of the importance of maintaining the security and confidentiality of the personal data we keep. We maintain appropriate safeguards and security standards to protect your personal data against unauthorized access, disclosure or misuse.

9. Your rights

 

9.1 Right of access and rectification

You have the right to information regarding which of your personal data we process and to access and rectify such personal data. To learn more about the information we store about you, please do not hesitate to email help@the-every.com and specify which information you request access to or information regarding.

9.2 Right to erasure

You may request that we erase your personal data without undue delay in the following circumstances:

(a) the personal data is no longer necessary in relation to the purposes for which they were collected or otherwise processed;

(b) you withdraw your consent on which the processing is based (if applicable) and there is no other legal ground for the processing;

(c) you object to our processing of personal data and we do not have any overriding legitimate grounds for the processing;

(d) the processed personal data is unlawfully processed; or

(e) the processed personal data has to be erased for compliance with legal obligations.

We may deny your request if we are prevented from erasing your personal data by requirements set out in applicable laws and regulations (e.g. in relation to accounting and tax legislation) or if they are needed for the establishment, exercise or defense of legal claims. If we cannot meet your request, we will instead restrict the personal data so they cannot be used for another purpose than the purpose preventing the erasure.

9.3 Right to restriction

You have the right to restrict the processing of your personal data in the following circumstances:

(a) you contest the accuracy of the personal data during a period enabling us to verify the accuracy of such data;

(b) the processing is unlawful and you oppose erasure of the personal data and request restriction instead;

(c) the personal data is no longer needed for the purposes of the processing, but are necessary for you for the establishment, exercise or defense of legal claims;

(d) you have objected to the processing of the personal data in accordance with section 9.4 below, pending the verification whether our legitimate grounds for our processing override your interests, rights and freedoms.

If your personal data has been restricted in accordance with this section they may, with exception of storage, only be processed for the establishment, exercise or defense of legal claims, or for the protection of the rights of a third party or for reasons of important public interest according to EU or EU member state legislation.

9.4 Right to object

You have the general right to object to our processing of your personal data when it is based on our legitimate interest. If you object and we believe that we may still process your personal data, we must demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defense of legal claims.

Your personal data will not be processed for purposes related to direct marketing if you oppose such processing.

9.5 Right to data portability

If your personal data has been provided by you and our processing of your personal data is based on your consent or on the performance of a contract with you, you have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format in order to transmit these to another service provider where it would be technically feasible and can be carried out by automated means.

9.6 Right to withdraw consent

When our processing of your personal data is based on your consent, you have the right to withdraw your consent at any time. Please note that the lawfulness of processing based on consent before its withdrawal is not affected.

9.7 Right to file a complaint

You may at any time lodge a complaint with the supervisory authority if you believe that our processing is performed in breach of applicable data protection law. Please note that you are also always welcome to contact us in such event.

10. for a contact person within an organization that The Every has a business relationship with

We process your personal data such as name and contact details like your email address and telephone number since you are our business contact/contact person for an organization (such as business, foundation, authority etc.) that we have, have had or potentially will have a business relationship with. We process your personal data to provide you with our services and to communicate with you. Our processing for the purpose of providing our services and maintaining our business relationship is based on our legitimate interest to do so. See section 4-9 above for information regarding the transfer of personal data, protection measures, your rights as registered, etc.