Privacy policy
- Recal (Åminne Trädgårdsprodukter AB)
Data Protection Policy / GDPR
This policy describes how we collect, process and protect your personal data and how we ensure that we comply with applicable legislation. Your trust is highly valued by us and therefore we want you to feel safe when you visit and shop through our website. Last updated: 2025-02-11
Company information
Åminne trädgårdsprodukter AB – 559259-7685
Bokåkravägen 1
331 53 Värnamo
Information about our processing of personal data
We care about your personal integrity and are therefore as transparent as possible with our handling of personal data and always strive for a high level of data protection. We do not process more personal data about you than is necessary and inform you about new processing operations.
To better describe how we handle your personal data, this privacy policy explains in more detail how your data is processed, how we protect your data and how you can exercise your rights. We explain where your data is collected from, who we may share data with, what personal data is processed and why we process it. Below we describe how we process your personal data for you who visit recal.se and if you are an e-commerce customer.
In the event of a personal data breach, we will inform you as soon as possible if there is a high risk to your personal integrity.
Data controller
Åminne trädgårdsprodukter AB – 559259-7685, Bokåkravägen 1
331 53 Värnamo is the data controller for the processing of your data on Recal.se
If you have any questions regarding our processing of your personal data or if you wish to exercise any of your rights linked to the processing of your personal data, you are welcome to contact us at hej@recal.se
Personal data we process
Personal data that you provide to us or that we generate about you:
Name: first and last name
Contact details: address, email address, phone number.
Technical data: information about the equipment you use when visiting our website, such as IP
address, your device, operating system and browser and version.
- Personal identity number: only stored by external payment provider when required for the chosen payment method
- Order information: order history, information about ordered goods.
- Information about your purchases: purchase history, information about purchased goods, payment amount and payment method, time of purchase, discounts.
- Information on complaints and guarantees: information on complaints, information on product guarantees, information on goods purchased, customer correspondence.
- User-generated information: visit and click history, based on the use of the company’s websites and other services in digital channels.
Table 1: How and why we use your personal data as an e-commerce customer Purpose | Treatment | Categories of personal data | Legal basis | Storage time |
To manage your orders, purchases and returns | • – – Delivery, including notification and communication regarding the delivery – Communication regarding payment authorization – Troubleshooting of possible delivery errors – Handling of complaints and warranty issues | • Name • Contact information • Information about your purchases • Payment authorization • Personal identification number | Performance of contracts | Until the goods are delivered and for a period of 12 months thereafter or the longer period specified in the warranty on a purchased product |
To handle customer service requests | • Communicate with you and respond to inquiries received by customer service by phone or online • Investigate complaints and support cases | • Name • Contact information • Customer correspondence • Details of the complaint | Legitimate interest** | Until the case is closed and for a period of 12 months thereafter or the longer period specified in the warranty on a purchased product |
To promote products and services | • Direct marketing via digital channels, email and SMS | • Name • Contact information • Information about your purchases • Vehicle information | Legitimate interest*** | From collection and for a period of 12 months thereafter |
Processing of personal identity numbers
Personal identity numbers have a special status in legislation. Where personal identity numbers may be processed is regulated in the Swedish Data Protection Act, which supplements the Data Protection Regulation. According to the law, personal identity numbers may only be processed if it is clearly justified for the purpose, it is necessary for secure identification or if there is some other noteworthy reason.
When you as a customer make a purchase on our e-commerce, we need to process your social security number to be able to ensure your identity when you pick up your package against presentation of identification at your agent.
Objection to processing based on legitimate interest.
You have the right to object to the processing of your personal data based on a legitimate interest. In such a case, the continued processing of your personal data requires that we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms or if it is for the establishment, exercise or defense of legal claims.
We also need to process your contact details, any information about complaints and/or other correspondence in order to handle your customer service matters. In this case too, there is a mutual need to carry out the processing and since no sensitive data is processed, we have made the assessment that the need outweighs any risks to you as a data subject.
In order to respond to questions and reviews, we need to know your contact details so that we can respond to you directly. In order for relevant information to be published, your question and review can be published on the website under the respective product where the question or review was asked to facilitate and create a better shopping experience for you and other visitors to the website. We have made the assessment that there is a mutual need here and that the benefits of the processing outweigh your interest in not using more information than necessary
Data processors
Where it is necessary for us to provide our services, we share your personal data with companies that are data processors for us. A data processor is a company that processes personal data on our behalf and based on instructions from us. We have written agreements with all processors to ensure the correct and secure processing of the personal data they undertake to process. Our data processors help us with:
- Transportation (logistics companies and freight forwarders)
- IT services (companies that manage the operation, technical support and maintenance of our IT solutions)
- Marketing (social media, print and distribution)
- Goods delivery (stores, external delivery operators)
- Reminder services (for reminding customers to complete purchases)
- Order management and delivery (for managing the delivery of the product you purchased)
- Analysis of purchase and interaction behavior (for evaluating product and service offers)
Companies that are independent data controllers
We also share personal data with companies that are independent data controllers. This means that we do not control the information provided to the company. The independent controllers we share personal data with are:
Tabell 3: Företag som är självständigt personuppgiftsansvariga Kategori av personuppgiftsansvariga | Ändamål | Kategorier av personuppgifter | Laglig grund |
| Companies offering payment solutions, e.g. Klarna | To be able to offer electronic payment.. |
| Performance of contracts |
Companies providing transportation of goods, e.g. DHL | Companies that transport goods, such as DHL, to deliver goods to you as a customer. |
| Performance of contracts |
We want to be open and transparent about how we process your data. If you want to have access to the personal data processing we carry out in relation to you, you have the right to request information about the processing.
If we receive a request for access, we may ask for additional information to ensure what information you want to see and that we provide it to the right person.
You have the right to:
- receive confirmation from us whether we are processing personal data about you and, if so, obtain access to the personal data we are processing about you (record extracts) free of charge. However, in case of manifestly unfounded or unreasonable requests for extracts (especially if they are repeated), an administrative fee may be charged or the request may be refused.
- få rättelse av felaktiga eller ofullständiga personuppgifter
- have your data deleted in certain cases, for example if your personal data is no longer necessary for the purposes for which it was collected
- obtain restriction of processing of your personal data in certain cases – e.g. if you have objected to the processing of your personal data carried out on the basis of a balancing of interests – while we check whether our reasons outweigh your interests, rights and freedoms.
- obtain and transfer personal data to another controller in certain cases (data portability). The right to data portability only covers data that you have provided to us and that we process on the basis of certain legal grounds, such as a contract with you.
Where your data is processed
Our aim is to process your personal data as far as possible within the EU/EEA. However, in certain situations, your personal data may be transferred to, and processed by recipients in, countries outside the EU/EEA. In these cases, we will take all reasonable legal, technical and organizational measures to ensure that your personal data is handled securely and with an adequate level of protection comparable to and at the same level as the protection offered within the EU/EEA. Examples of appropriate safeguards are approved code of conduct in the recipient country, standard contractual clauses, binding internal company rules. If you would like to receive a copy of the safeguards we have put in place or information on where these have been made available, you can do so by contacting us as set out below.
How long do we keep your personal data
We will keep your personal data for as long as it is necessary for the respective purpose. See more about specific retention periods in “Table 1”.
We may also process your personal data in order to fulfill legal obligations due to legal requirements, judgments or government decisions. For example, this may involve requirements in the Product Liability Act and the Accounting Act. In addition, we may process your personal data for the purpose of defending a legal claim for as long as this can be enforced.
How we protect your personal data
We take the necessary legal, technical and organizational security measures to ensure that your personal data is not manipulated, lost, destroyed or accessed by unauthorized persons. Our security practices are updated as technology develops and improves.
- We inform all employees about how we work together as a company to protect the personal data we process.
- In the event of a data breach or loss of sensitive personal data, the supervisory authority will be notified and, where the loss poses a particular risk to individuals, they will also be informed.
- We use secure data transfer methods. The data you provide when ordering is encrypted using the SSL method before it is transmitted. SSL, Secure-Socket-Layer, is the most proven method on the internet to protect data and ensure safe data transfer. We always use SSL when transferring sensitive data.
Complaints to the supervisory authority
If you believe that we are processing your personal data incorrectly, you can contact us as set out below. You also have the right to lodge a complaint with the supervisory authority.
Changes to the privacy policy
We reserve the right to make changes to this privacy policy at any time. Any changes made will be published on Recal (åminne trädgårdsprodukter ab), in this policy under this section.