Privacy Policy

Last updated: January 2025

1. Introduction

[Your Company Name] ("we", "us", or "our") operates Harvestbook. This Privacy Policy informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data. We are committed to protecting your privacy in accordance with the General Data Protection Regulation (GDPR) and Swedish data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

[Your Company Name]

Organization Number: [Organization Number]

Address: [Company Address, Sweden]

Email: [privacy@example.com]

3. Information We Collect

Personal Data

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you:

  • Email address
  • First name and last name
  • Phone number
  • Farm name and location
  • Agricultural operation details

Usage Data

We may also collect information on how the Service is accessed and used. This may include information such as your device's Internet Protocol address, browser type, browser version, the pages of our Service that you visit, the time and date of your visit, and other diagnostic data.

4. Legal Basis for Processing

We process your personal data on the following legal bases:

  • Contract: Processing necessary for the performance of our service agreement with you
  • Legitimate Interests: Processing necessary for our legitimate interests (e.g., improving our services)
  • Legal Obligation: Processing necessary to comply with legal obligations
  • Consent: Where you have given explicit consent for specific processing activities

5. Use of Data

We use the collected data for various purposes:

  • To provide and maintain our Service
  • To notify you about changes to our Service
  • To provide customer support
  • To gather analysis or valuable information to improve our Service
  • To monitor the usage of our Service
  • To detect, prevent and address technical issues
  • To comply with legal obligations

6. Data Storage and Security

Your data is stored on secure servers within the European Union. We implement appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage.

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including any legal, accounting, or reporting requirements. When data is no longer needed, we securely delete or anonymize it.

8. Your Rights Under GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right of Access: You can request copies of your personal data
  • Right to Rectification: You can request correction of inaccurate or incomplete data
  • Right to Erasure: You can request deletion of your personal data
  • Right to Restrict Processing: You can request restriction of processing your data
  • Right to Data Portability: You can request transfer of your data to another service
  • Right to Object: You can object to processing of your personal data
  • Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time

To exercise any of these rights, please contact us at [privacy@example.com].

9. International Transfers

We do not transfer your personal data outside the European Economic Area (EEA). If such transfers become necessary, we will ensure appropriate safeguards are in place in accordance with GDPR requirements.

10. Cookies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

11. Children's Privacy

Our Service is not intended for use by children under the age of 16. We do not knowingly collect personal data from children under 16. If you become aware that a child has provided us with personal data, please contact us.

12. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For material changes, we will provide a more prominent notice.

13. Supervisory Authority

If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten):

Integritetsskyddsmyndigheten (IMY)

Box 8114

104 20 Stockholm

Website: www.imy.se

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

[Your Company Name]

Email: [privacy@example.com]

Phone: [+46 XX XXX XX XX]

Address: [Company Address, Sweden]

Note: This is a template document with placeholder content. Please consult with legal counsel to ensure full GDPR compliance and adherence to Swedish data protection laws before using in production.