DoSpace AB takes visitor privacy to this website seriously.
DoSpace AB (publ) and its group companies, that we on this page will call DoSpace or we, takes the personal integrity of the visitors of our websites and the users of the services offered by DoSpace on these websites, our apps, our platforms in social media and our customer service, which we on this page will call digital channels, seriously.
Our objective is that you should feel confident that your personal integrity is respected and that your personal data is processed correctly. We ensure that personal data processed by DoSpace is processed solely for its pre-defined purposes and is protected against unauthorized access. All personal data processing within DoSpace is undertaken in accordance with applicable data protection legislation. Within the EU/EEA, the general data protection regulation will apply as per May 2018 (GDPR)1.
This integrity policy applies generally to all of DoSpace’s digital channels. In the event that another, more specific, integrity policy is published on a digital channel which is provided by an affiliate or another legal entity within the DoSpace Group, that integrity policy shall take precedence over this integrity policy.
In addition to the personal data processing being undertaken through DoSpace’s digital channels, we are also processing your personal data, both in your capacity as sender and recipient, when we are performing the services offered by DoSpace via its digital channels and other channels. If the terms of any of these services contain more specific provisions on personal data processing, these terms shall take precedence over this integrity policy for that specific service.
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
What is personal data and what is processing of personal data?
Personal data is any information that directly, or indirectly together with other information, may be used to identify a living, physical individual. This means that a range of different types of information, such as but not limited to name and contact details, IP addresses, competition entries, selections and behavior, is considered personal data.
Processing is everything that is done with the personal data. Any action taken with the personal data, irrespectively of whether the action is automated or not, such as but not limited to collection, registration, organization, structuring, storing, adaptation or modification, compilation, reading, use, disclosure through transfer, dissemination or other provision, adjustment or assembling, restriction, erasure or deletion.
DoSpace's processing of personal data
What categories of personal data is processed and when is it deleted?
When you are visiting or using one of our digital channels or its services, or are communicating with us in our digital channels, we may collect information about you, among those name, address, postal address, email address, phone number, identification information, information on your use of DoSpace’s services and products, transaction data. Where applicable, personal identification number and credit card details may also be processed. Further, DoSpace may collect technical information about the device you are using to obtain access to DoSpace’s digital channels, among them IP address, unique device ID, type of web browser and cookie information. The collection of data mentioned herein is done, inter alia, when you are submitting your personal data in different forms on our digital channels or its services, communicating with DoSpace and others via DoSpace’s platforms in social media, submitting feedback in our contact forms or via telephone, downloading reports from DoSpace’s websites or register for events organized by DoSpace.
If you participate in contests and other marketing activities that we organize, your entry and other personal data that you choose to submit to us may be processed.
When you contact us through customer service functions in our digital channels, e.g. when making a complaint or return, we will process your contact details and case information.
If you are visiting or communicating with us through our social media accounts, i.e. third party platforms such as, inter alia, Facebook and Instagram, DoSpace may receive information on your profile and your interactions on such platform from the third party platform provider.
DoSpace has placed so called ”cookies” on several of our digital channels. Through these, information on how you are using the digital channel in question is collected. Read more about which cookies DoSpace has placed on our digital channels, and how to remove these.
DoSpace will only process personal data for as long as it is necessary to fulfil the purposes of the processing or to fulfil DoSpace’s legal obligations.
For which purposes is personal data processed?
Personal data concerning you, which is collected in connection with your use of the Digital Channels and their services, will be processed by DoSpace or its group companies, or their respective sub-processors, for the following purposes.
In order for us to provide the products and services you have purchased, and to administer our agreement with you.
In order for us to communicate with you through our customer service, email forms and our social media accounts.
To administer marketing activities such as contests and winnings, etcetera.
For marketing purposes, among those marketing via mail, email and sms/mms. You can opt-out from these by clicking a link in each message sent through email or sms/mms.
To analyze and group visitors based on selection, prioritization and preferences, meaning that so-called profiling is undertaken, in order to provide you with relevant and tailored information, recommendations, ads and offers. It is possible that data from your use of different digital channels from DoSpace and its group companies is merged for this purpose, and for the purpose of developing products and services.
To process your payment or to prevent or detect fraud.
To obtain statistics over the use of our digital channels and their respective services.
To maintain, develop, test and improve our digital channels and the technical platforms they are provided on.
Legal basis and compelling interests for the data processing
DoSpace will always adhere to applicable data protection legislation when processing your personal data. We process your personal data when this is necessary in order to perform an agreement with you or to respond to a customer service request you have made, and when we have a legitimate and compelling interest for processing your personal data, e.g. an interest to market ourselves to visitors of our digital channels or an interest in developing our digital channels. If DoSpace’s processing of personal data requires your consent, we will obtain your prior consent to such processing, by having you actively tick a box.
imitations in the transfer of personal data
DoSpace may engage external partners (suppliers) to perform services on behalf of DoSpace, e.g. to provide IT services, payment services or to assist in marketing, analysis or statistics. The performance of these services may entail such parties, both within and outside of the EU/EEA, obtaining access to your personal data. Companies which are processing personal data on behalf of DoSpace are obliged to sign an agreement with DoSpace in order to ensure a high level of protection for your personal data. For partners located outside the EU/EEA, additional protective measures are undertaken, e.g. the signing of an agreement which includes the European Commission’s model clauses for data transfers, which can be found on the European Commission’s website.
DoSpace may transfer personal data to a third party, such as the police or other authority, in the course of an investigation or otherwise when so obliged by law or governmental decision.
DoSpace will not transfer your personal data except as otherwise set forth in this clause 4.
se of information from your mobile device
DoSpace offers certain services, which require access to information from your mobile device (such as, inter alia, your mobile phone or tablet). It may for example be location data. DoSpace will never collect this data, unless you have given your explicit consent hereto.
Below you will find information on how DoSpace may use information from your mobile device, if you have consented to such use.
Location: DoSpace will never collect or use information on the location of your device, unless you have expressly given us your consent.
Photos and camera: DoSpace will not gain access to your photos or your camera without first obtaining your explicit consent and we will never import the picture library on your mobile device. If you give DoSpace permission to access the photos on your mobile device, we will only have access to the photos that you have explicitly given us permission to use.
Contacts: DoSpace will not import the contacts stored on your mobile device unless you have explicitly consented hereto.
Microphone: DoSpace will never get access to the microphone on your mobile device unless you have explicitly consented hereto.
This integrity policy applies to information that DoSpace is processing about you within the scope of our digital channels. DoSpace’s digital channels may sometimes contain links to external websites or services which are not controlled by DoSpace. If you follow a link to an external website, you are urged to review the principles for data processing and cookies applicable to the website in question.
Right to information and the right to file complaint
You have the right at any point in time, in accordance with applicable data protection legislation, to request access to the personal data concerning you which we are processing, to have incorrect personal data corrected, to request that DoSpace ceases its processing of your personal data, to have the processing of your personal data limited, to exercise your right to data portability and to object to our processing of your personal data. Please contact DoSpace on the address set forth in the section below if you wish to exercise any of these rights.
You are also entitled to, at any point in time, file a complaint with the applicable supervisory authority, if you believe that our processing of your personal data is in breach of applicable data protection legislation.
Processing of personal data concerning childre
DoSpace’s digital channels are not intended for children and DoSpace is thereby not knowingly collecting personal data pertaining to children. If you are a legal guardian and learns that your child has submitted personal data to DoSpace, we ask that you contact us on the address stated in section below so that you can exercise your rights to, inter alia, correction or deletion.
The DoSpace entity listed as the responsible entity for the digital channel in question is the data controller for personal data processed in relation to that digital channel. Where applicable, other legal entities within the DoSpace Group may furthermore be data controllers for personal data processing in accordance with the terms of the respective service or function. If you have questions about DoSpace’s processing of your personal data, or if you want information on and contact details to the data controllers in other companies within the DoSpace Group, please contact DoSpace’s Data Protection Officer by email:
Amendments to this integrity policy
DoSpace may from time to time make amendments to this integrity policy. The current version of the integrity policy is always available on DoSpace’s websites.
Last updated: 15-05-2018
1 Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
A cookie is a text file placed on your computer or other IT equipment.
A cookie enables recognition of your computer and the collection of information on what websites and functions have been visited. It helps maintain your settings when you are navigating a website or return to the same website at a later point. Cookies are sometimes used to collect information which is considered personal data, such as your IP address and information related to the IP address, but no information directly related to you as an individual. Cookies are used by practically all websites and the website/Digital Channel is often dependent on cookies to function.
Cookies are either deleted automatically when the user turns off its web browser, so called "session cookies", or are stored on the user’s computer to facilitate future visits on the website, so called "permanent cookies". Permanent cookies should also be deleted, either automatically or after a certain period.
Do we use 'cookies'?
Cookies in DoSpace's digital channel
Saying no to cookies
If you now or in the future would like to exclude cookies or remove them, you can do so by altering your browser settings. If you remove all cookies, you might experience that some functions on the website will not work. You can however remove the cookies that are used for marketing purposes, without compromising the functionality of the website. Read more about how to manage and remove cookies at aboutcookies.org.
Cookies used at DoSpace.se
Name and persistence
__ga, 2 years
__gat, 1 minute
__gid, 24 hours
__gac, 90 days
__utma, 2 years
__utmz, 6 months
__utmb, 30 minutes
Data that is stored
These cookies store information about how the user uses DoSpace.se, including the number of pages displayed, where the visitor comes from and the number of visits.
These cookies are tools for analyzing visitor behavior on the site in order to enhance user experience and ensure site functionality.
Is information transferred to a third party?
The information in this cookie, including your IP address, is transferred to Google only for the purpose of providing services to DoSpace linked to the site. DoSpace has no direct access to these IP numbers. Google does not transfer this information to third parties, except in cases where this is required by mandatory law or when third parties process the information on behalf of Google.
First party cookie
Name and persistence
acceptcookies, 2 years
preferedstartpage, session cookie
starpageredirect, session cookie
Data that is stored
These cookies store prefered start page after a user indicates if they are a private customer or a business customer. The cookie "acceptcookies" stores the value "true" or "false" depending on if the user has accepted cookies on the site or not.
These cookies helps us improving the user experience on the site and guiding the user to the appropriate starting point based on previous visits. Acceptcookies determines if the site needs to show a cookie banner or not.
Is information transferred to a third party?
No information is transferred to a third party.
Third party cookie
Data that is stored
These cookies set by a third party – DoubleClick – and are used for serving targeted advertisements that are relevant to you across the web. Targeted advertisements may be displayed to you based on your previous visits to this website. For example, advertisements about a topic you have expressed an interest in while browsing our site may be displayed t you across the web.
Is information transferred to a third party?
The information in these cookies are transferred to DoubleClick (Google) only for the purpose of providing services linked to the marketing activities that are conducted by DoSpace. No personal identifiable information is sold or transferred by DoubleClick to a third party.
Following cookies are set:
• Keep track of advertisements.
• Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.
We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when it's release is appropriate to comply with the law, enforce our site policies, or protect ours or others' rights, property or safety.
However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.
We do include and offer third-party products and services on our website. We take no responsibility for those services and reserv all rights to withdraw those offers even if they are still visible on our site.
Google's advertising requirements can be summed up by Google's Advertising Principles. They are put in place to provide a positive experience for users. https://support.google.com/adwordspolicy/answer/1316548?hl=en
We use Google AdSense Advertising on our website.
We have implemented the following:
We, along with third-party vendors such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies (such as the DoubleClick cookie) or other third-party identifiers together to compile data regarding user interactions with ad impressions and other ad service functions as they relate to our website.
Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by visiting the Network Advertising Initiative Opt Out page or by using the Google Analytics Opt Out Browser add on.
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under the age of 13 years old, the Children's Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States' consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children's privacy and safety online.
We do not specifically market to children under the age of 13 years old.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify you via email
within 4 months
We will notify the users via in-site notification
within 4 months
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
• Send information, respond to inquiries, and/or other requests or questions
• Process orders and to send information and updates pertaining to orders.
• Market to our mailing list or continue to send emails to our clients after the original transaction has occurred.
To be in accordance with CANSPAM, we agree to the following:
• Not use false or misleading subjects or email addresses.
• Identify the message as an advertisement in some reasonable way.
• Include the physical address of our business or site headquarters.
• Monitor third-party email marketing services for compliance, if one is used.
• Honor opt-out/unsubscribe requests quickly.
• Allow users to unsubscribe by using the link at the bottom of each email.
If at any time you would like to unsubscribe from receiving future emails, you can
• Follow the instructions at the bottom of each email.
and we will promptly remove you from ALL correspondence.
Linköping, östergötland 58330
Last Edited on 2018-05-03