top of page

Privacy policy

Processing of personal data

Last updated: 28 May 2026

 

Purpose

Nanovac AB respects your privacy. You should feel secure when entrusting your personal data to us. This Privacy Policy explains how we collect, use, store and protect personal data when you visit our website, contact us, request a quotation, purchase products or services, use our support functions, subscribe to information from us, apply for a position, or otherwise interact with Nanovac AB.

The purpose of this policy is to make you aware of how we process your personal data, what we use it for, who may have access to it, how long we keep it, and how you can exercise your rights.

Background

The main reason why we process personal data is to fulfil our obligations towards customers, suppliers, partners, website visitors and other business contacts. We only process personal data where there is a lawful basis and where the data is relevant for the purpose for which it was collected.

We always aim to process as little personal data as possible. However, we may need to process personal data in order to respond to enquiries, prepare quotations, deliver products and services, provide support, manage customer and supplier relationships, administer orders and invoices, comply with legal obligations, improve our website and communicate relevant information about our products and services.

You have the right to object to our use of your personal data for direct marketing purposes. You may also unsubscribe from marketing communications at any time.

 

Responsibility

Nanovac AB is the data controller for the processing of personal data described in this Privacy Policy.

Nanovac AB
Company registration no.: 559144-0820
VAT no.: SE559144082001
Företagsvägen 3
245 34 Staffanstorp
Sweden

Email: info@nanovac.se

 

Guidelines

What personal data do we process?

We only process personal data where there is a lawful basis for doing so. Depending on how you interact with us, we may process the following categories of personal data:

· Name
· Company name
· Title and role
· Email address
· Telephone number
· Business address
· Information included in enquiries, quotation requests, orders, support tickets and other correspondence
· Customer, supplier and project-related information
· Billing, delivery, payment and transaction-related information
· Account information if you create or use an account on our website
· Newsletter and marketing preferences
· Technical information related to your visit to our website, such as IP address, browser type, device information, pages visited, time of visit and cookie identifiers
· Recruitment information, such as CV, cover letter, references and other information you provide when applying for a position
· Information that you provide voluntarily

We do not intentionally collect sensitive personal data through our website. Please do not provide sensitive personal data unless it is necessary for a specific matter.

How do we gain access to your personal data?

We may collect personal data in the following ways:

· Information you provide to us directly
· Information you provide when contacting us by email, phone, website form or other communication channel
· Information you provide when requesting a quotation or technical information
· Information you provide when purchasing products or services from us
· Information you provide when creating or using an account on our website
· Information you provide when submitting a support request
· Information you provide when subscribing to newsletters, updates or other communications
· Information you provide when applying for a position with us
· Information that is registered when you visit our website
· Information that we obtain from public records, business databases, trade fairs, business partners or other legitimate business sources

Why do we process your personal data?

We process personal data for the following purposes:

  • To respond to enquiries and quotation requests

    • We process contact details, company information and information included in your enquiry in order to respond, prepare quotations and communicate with you.

    • Lawful basis: legitimate interest and/or steps prior to entering into a contract.​​

  • To provide products, services and support

    • We process customer, project, order and support information in order to deliver products and services, provide technical support, fulfil warranties, manage projects and maintain customer relationships.

    • Lawful basis: performance of contract and legitimate interest.

  • To manage orders, invoicing and accounting

    • We process billing, payment, delivery and transaction information in order to administer purchases, issue invoices, manage payments and comply with accounting and tax obligations.

    • Lawful basis: performance of contract and legal obligation.

  • To communicate with business contacts

    • We may process business contact details to maintain customer, supplier and partner relationships, follow up on projects, arrange meetings and provide relevant information about our products and services.

    • Lawful basis: legitimate interest.

  • To send newsletters or marketing communications

    • Where applicable, we process contact details and marketing preferences in order to send newsletters, product information, event invitations or other relevant business communications. You can unsubscribe or object to direct marketing at any time.

    • Lawful basis: consent or legitimate interest, depending on the type of communication and our relationship with you.

  • To improve and protect our website

    • We process technical and usage information to operate, maintain, secure and improve our website and digital services.

    • Lawful basis: legitimate interest. For non-essential cookies and similar technologies, the lawful basis is consent.

  • To process job applications

    • We process recruitment information to evaluate applications, communicate with candidates and manage recruitment processes.

    • Lawful basis: legitimate interest and/or steps prior to entering into an employment contract.

  • To comply with legal obligations and protect our rights

    • We may process personal data when necessary to comply with legal obligations, respond to lawful requests, handle disputes, prevent misuse or protect our legal rights.

    • Lawful basis: legal obligation and legitimate interest.

Consent

Where processing is based on consent, you have the right to withdraw your consent at any time. If you withdraw your consent, this does not affect the lawfulness of processing carried out before the withdrawal.

In some cases, we may need to continue processing certain personal data even after consent has been withdrawn, for example where processing is necessary to fulfil a contract, comply with legal obligations or protect our legal rights.

Are your personal data processed in a satisfactory manner?

We have procedures and methods of working to ensure that personal data is processed securely. Only employees, consultants and service providers who need the personal data to carry out their work duties have access to it.

We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration or disclosure.

Our security measures include access controls, internal procedures, IT security measures and suitable contractual requirements for service providers who process personal data on our behalf.

How long do we keep your personal data?

We do not keep personal data longer than necessary for the purpose for which it was collected, unless a longer retention period is required or permitted by law.

As a general guideline:

· Enquiries and general correspondence are normally kept for up to 3 years after the last relevant contact, unless the matter becomes part of a customer, supplier or project relationship
· Customer, project and support information may be kept for the duration of the customer relationship and thereafter for as long as necessary for warranty, service, product traceability, legal claims or legitimate business needs
· Accounting and invoice-related information is kept for as long as required under applicable accounting and tax legislation, normally 7 years under Swedish accounting rules
· Marketing data is kept until you unsubscribe, withdraw consent or object to receiving such communications
· Recruitment data is normally kept for up to 2 years after the recruitment process has ended, unless you consent to a longer retention period
· Cookie data is kept according to the duration stated in our cookie settings or cookie information

When do we disclose your personal data?

We do not sell personal data.

We may share personal data with trusted recipients where necessary for the purposes described in this Privacy Policy, including:

· IT, hosting and website service providers
· Email, communication and CRM service providers
· Accounting, banking and payment service providers
· Delivery, logistics and freight providers
· Business partners, distributors or service partners involved in a specific customer matter
· Professional advisors, such as auditors, legal advisors and consultants
· Authorities, courts or public bodies where required by law

Where a supplier processes personal data on our behalf, we use appropriate data processing agreements and require that the data is handled securely and only in accordance with our instructions.

 

Transfers outside the EU/EEA

We aim to process personal data within the EU/EEA whenever possible. Some of our service providers may, however, process personal data outside the EU/EEA. If personal data is transferred outside the EU/EEA, we ensure that appropriate safeguards are in place, such as an adequacy decision by the European Commission, standard contractual clauses or other legally accepted transfer mechanisms.

Cookies & Other Tracking Technologies

Cookies are small text files stored on your device when you visit a website. Cookies may be used to make a website function properly, remember settings, analyse website traffic or support marketing and communication activities.

Our website may use the following types of cookies:

  • Strictly necessary cookies

    • These cookies are required for the website to function properly, for example to enable navigation, security, account login, shopping cart functionality or other essential website features. These cookies do not require consent.

  • Preference cookies

    • These cookies remember choices you make, such as language or display preferences.

  • Analytics cookies

    • These cookies help us understand how visitors use our website, which pages are visited and how the website can be improved.

  • Marketing or tracking cookies

    • If used, these cookies may help us measure campaigns or present relevant content on external platforms.

 

Non-essential cookies are only used where you have given your consent. You can withdraw or change your consent at any time through the cookie settings available on our website, or by changing your browser settings.

Please note that disabling some cookies may affect how the website functions.

External links

This website may contain links to external websites, platforms or services. Nanovac AB is not responsible for the privacy practices or content of such external websites. We recommend that you read the privacy policy of any external website you visit.

Your rights

Under applicable data protection law, you have the following rights:

· Right of access: You may request information about the personal data we process about you
· Right to rectification: You may request that incorrect or incomplete personal data is corrected
· Right to erasure: You may request deletion of your personal data in certain circumstances
· Right to restriction: You may request that we restrict the processing of your personal data in certain circumstances
· Right to object: You may object to processing based on legitimate interest, including processing for direct marketing
· Right to data portability: Where processing is based on consent or contract and carried out by automated means, you may request to receive your data in a structured, commonly used and machine-readable format
· Right to withdraw consent: Where processing is based on consent, you may withdraw your consent at any time

 

To exercise your rights, please contact us at info@nanovac.se.

We may need to verify your identity before responding to your request.

Complaints

If you have questions or concerns about how we process your personal data, please contact us first so that we can try to resolve the matter. You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection, Integritetsskyddsmyndigheten, IMY, or another competent supervisory authority.

Website: www.imy.se

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website. The date at the top of this page shows when the policy was last updated.

bottom of page