Last update: 5. August 2024
Thank you for your interest in the information on our website!
With the help of this Privacy Policy we would like to inform the users of our website about the type, scope and purpose of the personal data processed. Personal data in this context are all information with which you can be personally identified as a user of our website, including your IP address and information that is stored in cookies.
In a general section of this Privacy Policy, we provide you with information on data protection, which generally applies to our processing of data, including data collection on our website. In particular, you as a data subject will be informed about the rights to which you are entitled.
The terms used in our Privacy Policy and our data protection practice are based on the provisions of the EU General Data Protection Regulation (“GDPR”) and other relevant national legal provisions.
On the one hand, personal data is collected from you when you expressly communicate such data to us, on the other hand, data, especially technical data, is automatically collected when you visit our website. Some of this data is collected to ensure that our website functions without errors. Other data may be used for analysis. However, you can use our website without a need to provide personal information.
We use cookies to make our website as user-friendly and functional as possible for you. Some of these cookies are stored on the device you use to access the site.
Cookies are small packages of data that are exchanged between your browser and our web server whenever you visit our website. They do not cause any damage and are used solely to recognise website visitors. Cookies can only store information provided by your browser, e.g. information that you have entered into your browser or that is available on the website. Cookies cannot execute code and cannot be used to access your terminal device.
The next time you access our website using the same device, the information stored in the cookies can then either be sent back to us (“first-party cookie”) or to a web application of third party to whom the cookie belongs (“third-party cookie”). The information that is stored and sent back allows each web application to recognise that you have already accessed and visited the website using the browser on your device.
Cookies contain the following information:
We classify cookies in the following categories depending on their purpose and function:
Depending on the storage period, we also divide cookies into session and persistent cookies. Session cookies store information that is used during your current browser session. These cookies are automatically deleted when the browser is closed. No information remains on your device. Persistent cookies store information between two visits to the website. Based on this information, you will be recognized as a returning visitor on your next visit and the website will react accordingly. The lifespan of a persistent cookie is determined by the provider of the cookie.
The legal basis for using technically necessary cookies is our legitimate interest in the technically fault-free operation and smooth functionality of our website as described in Art. 6 paragraph 1 lit. f of the GDPR. The use of statistics and marketing cookies is subject to your consent, in accordance with Art. 6 paragraph 1 lit. a of the GDPR. You can withdraw your consent for the future use of cookies at any time in accordance with Art. 7 paragraph 3 of the GDPR. Your consent is voluntary. If consent is not given, no disadvantages arise. For more information about the cookies we actually use (specifically, their purpose and lifespan), refer to this Privacy Policy and to the information in our cookie banner about the cookies we use.
You can also set your web browser so that it does not store any cookies in general on your device or so that you will be asked each time you visit the site whether you accept the use of cookies. Cookies that have already been stored can be deleted at any time. Refer to the Help section of your browser to learn how to do this.
Please note that a general deactivation of cookies may lead to functional restrictions on our website.
To learn more about how we use these and your choices in relation to these tracking technologies, please refer to our Cookie Policy.
We use the functions of the web analytics service Google Analytics on our website to analyse user behaviour and to optimise our website. The provider of this service is Google Ireland Limited, Barrow Street, Dublin 4, Ireland (“Google”).
ATTENTION: Within the scope of this service, data is transferred to the US or such a transfer cannot be excluded.
Google Analytics uses cookies that enable an analysis of the use of our website.
In general, information about your use of the website is transferred to a Google server and stored there, such as the type and version of browser you used, the operating system you used, the site you visited prior to accessing our site, the host name of the computer (IP address) you used to access the site, and the time of your server request. For this purpose, we have entered into a contract with Google for contractual processing of your data in accordance with Art. 28 of the GDPR.
At our request, Google will use this information to analyse the use of our website, to create reports on the activities within our website and to render additional services related to the use of our website and of the internet. According to Google, the IP address submitted by your browser will not be added to other data held by Google.
We use Google Analytics only with IP anonymisation activated, which means we have expanded this website to include the code ‘anonymizeIP’. This ensures that your IP address is masked, so that all data is collected anonymously. Only under exceptional circumstances will a full IP address be transmitted to a Google server and truncated there.
During the website visit, the following data is collected:
– the pages you call up, your “click path”
– Achievement of “website goals” (conversions, e.g. newsletter registrations, downloads, purchases)
– Your user behavior (for example clicks, duration of stay, bounce rates)
– Your approximate location (region)
– Your IP address (in shortened form)
– technical information about your browser and the end devices you use (e.g. language settings, screen resolution)
– Your internet provider
– the referrer URL (via which website / via which advertising medium you came to our website)
The data about the use of our website is immediately deleted after expiration of the storage limits that we have set. Google Analytics gives us the following options for the storage limits: 14 months, 26 months, 38 months, 50 months or no automatic deletion. You can ask us any time for the current storage limit that we have set.
The processing of your data using Google Analytics is subject to your explicit consent in the sense of Art 6 paragraph 1 lit. a of the GDPR. You can revoke your consent at any time with effect for the future.
You can also block the collection of data by downloading and installing the browser plugin available through the link below:
http://tools.google.com/dlpage/gaoptout
You can find out exactly where Google data centres are located here:
https://www.google.com/about/datacenters/inside/locations/
For more information about how Google uses your data, and about options for settings and withdrawal of consent, refer to the Google Privacy Policy at https://policies.google.com/privacy
To display fonts consistently, our website uses Web Fonts which are provided by Google. Google Fonts is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
ATTENTION: Within the scope of this service, data is transferred to the US or such a transfer cannot be excluded.
To display web fonts, the web browser you use must connect with a Google server. This informs Google that our website is being accessed via your IP address. The IP address from the browser of the device you are using to access our site is also stored by Google. If your browser does not support Web Fonts, your device will display the site using a standard font type. With each Google Font request, your IP address is automatically transferred to a Google server along with information such as your language preferences, display resolution, version and name of your browser. The usage data collected by Google enables them to determine the popularity of specific font types. Google publishes these findings on internal analytics sites (e.g. Google Analytics).
Google Fonts enables us to use fonts on our own website without uploading them to our server. Google Fonts is an important building block for maintaining the high quality of our website. All Google fonts are automatically optimised for the web. This reduces the data volume and is particularly advantageous for use on mobile devices. When you visit our site, the low file size allows for quicker loading times. Furthermore, Google Fonts are secure Web Fonts that support all major browsers.
The processing of your data therefore takes place on the basis of our legitimate interest in maintaining a consistent, attractive presentation for our website. This is a legitimate interest under Art. 6 paragraph 1 lit. f of the GDPR.
Google stores requests for CSS assets for one day on its servers. This enables us to use the fonts with the support of a Google style sheet. The font files are stored by Google for one year. To delete data prematurely, you must contact Google Support (https://support.google.com).
You can find out exactly where Google data centres are located here:
https://www.google.com/about/datacenters/inside/locations/
For more information about Google Fonts, refer to
https://developers.google.com/fonts/faq and the Google Privacy Policy:
https://policies.google.com/privacy
Our website uses the reCAPTCHA service of the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”) to protect against abuse by non-human visitors (bots) and to prevent spam.
ATTENTION: Within the scope of this service, data is transferred to the US or such a transfer cannot be excluded.
When reCAPTCHA is started, your browser establishes a connection to Google’s servers. This enables Google to know that our website has been accessed via your IP address.
The purpose of reCAPTCHA is to check whether the data entry on our website is made by a human or by an automated programme. To do this, reCAPTCHA analyses the behaviour of the website visitor on the basis of various characteristics. This analysis begins automatically as soon as the website visitor enters our website. For the analysis, reCAPTCHA evaluates various information.
According to our information, the following data is processed by Google:
The data collected during the analysis is forwarded to Google and used by Google. The reCAPTCHA analyses run completely in the background.
Cookies are used for the execution of the service. These cookies require a unique identifier for tracking purposes. According to Google, the IP address is not merged with other data from other Google services unless you are logged into your Google account while using the reCAPTCHA plug-in.
You can find out exactly where Google data centres are located here:
https://www.google.com/about/datacenters/inside/locations/
Further information on Google reCAPTCHA can be found here:
https://developers.google.com/recaptcha/
For Google’s privacy policy, please see the following link:
https://policies.google.com/privacy
We use the service Google Tag Manager on our website. This service is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
ATTENTION: Within the scope of this service, data transfer to the USA takes place or cannot be ruled out.
When the Tag Manager is started, your browser establishes a connection to Google’s servers. This informs Google that our website has been accessed via your IP address.
Google Tag Manager is used to manage website tags via an interface. This enables us to embed code snippets such as tracking codes or conversion pixels into our website without interfering with the source code. In this process, Tag Manager data is only transferred; it is not collected or stored. The Tag Manager itself is a cookie-less domain and does not process any personal data, because it is used solely to manage other services used on our website. The Tag Manager triggers other tags which in turn collect data under specific circumstances. However, the Tag Manager has no access to this data. If you have chosen to deactivate cookies on our site in general or to deactivate specific cookies, this will remain in effect for all tracking tags that are implemented using the Tag Manager.
You can find out exactly where Google data centres are located here:
https://www.google.com/about/datacenters/inside/locations/
For more information about data protection, refer to the following Google websites:
Privacy Policy:
https://policies.google.com/privacy
FAQ Google Tag Manager:
https://www.google.com/intl/de/tagmanager/faq.html
Use Policy Google Tag Manager:
https://marketingplatform.google.com/intl/de/about/analytics/tag-manager/use-policy/
In the process of hosting our website, we store all data related to the operation of our website. This is necessary for enabling operation of our website. Therefore, we process this data on the legal grounds of our legitimate interest in optimising our website as described under Art. 6 paragraph 1 lit. f of the GDPR. To provide access to our website, we use the services of web hosting providers, to whom we supply the aforementioned data within the context of contractual processing in accordance with art. 28 of the GDPR.
Whenever you contact us, your information is used to process and handle your contact request in the course of fulfilling pre-contractual rights and obligations in accordance with Art. 6 paragraph 1 lit. b of the GDPR. To handle and answer your request it is necessary for us to process your data; otherwise we are unable to answer your request or only able to partially answer it. Your information can be stored in a database of customers and leads on the grounds of our legitimate interest in direct marketing as described in Art. 6 paragraph 1 lit. f of the GDPR.
We delete your request and contact information when your request has been definitively answered and there is no legally required time limit for storing this data prior to deletion (e.g. pursuant to a subsequent contractual relationship). This is usually the case when there is no further contact with you for three years in a row.
For technical reasons, particularly to ensure a functioning and secure website, we process the technically necessary data about accesses to our website in so-called server log files which your browser automatically sends to us.
The access data we process includes:
This data cannot be traced back to any natural person and is used solely to perform statistical analyses and to operate and improve our website while also optimising our site and keeping it secure. This data is sent exclusively to our website operator. The data is neither connected nor aggregated with other data sources. In case of suspicion of unlawful use of our website, we reserve the right to examine the data retroactively. This data processing takes place on the legal grounds of our legitimate interest in maintaining a technically fault-free and optimal website, as described under Art. 6 paragraph 1 lit. f of the GDPR.
The access data is deleted within a short period of time after serving its purpose (usually within a few days) unless further storage is required for evidence purposes. In such cases, the data is stored until the incident is definitively resolved.
Within your visit to our website, we use the widespread SSL procedure (Secure Socket Layer) in conjunction with the highest level of encryption supported by your browser. You can tell whether an individual page of our website is transmitted in encrypted form by the closed representation of the key or lock symbol in the lower status bar of your browser. We use this encryption procedure on the basis of our justified interest in the use of suitable encryption techniques in accordance with Art. 6 paragraph 1 lit. f GDPR.
We also make use of suitable technical and organisational security measures in accordance with Art. 32 GDPR to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments and kept state-of-the-art.
In order to obtain consent for the use of cookies on our website in accordance with data protection regulations, we use the CookieYes | GDPR Cookie Consent plugin. This is a service that ensures our website complies with the EU Cookie Law and GDPR.
The Consent Banner records and stores user consent for the use of cookies. It ensures that statistical and marketing cookies are only set when the user has given explicit consent.
We store information on the extent to which the user has confirmed the use of cookies. The user’s decision can be revoked at any time by accessing the cookie settings and managing the declaration of consent. Existing cookies will be deleted after revocation of consent. A cookie is also set to store information on the status of the user’s consent, which is indicated in the cookie details.
Furthermore, the IP address of the user is transmitted to CookieYes’ server for calling this service. The IP address is neither stored nor associated with any other data of the user; it is only used for the correct execution of the service. The use of the above data is therefore based on our legitimate interest in the legally compliant design of our website in accordance with Art. 6 paragraph 1 lit. f GDPR.
Further information can be found in the CookieYes data protection declaration. Please feel free to send your inquiries about this service to in**@pr*********.com
The following provisions in its principles apply not only to the data collection on our website, but also in general to other processing of personal data.
Personal data is information that can be assigned to you individually. Examples include your address, name, postal address, email address or telephone number. Information such as the number of users who visit a website is not personal data because it is not assigned to a person.
Unless more specific information is provided in this Privacy Policy (e.g. in the case of the technologies used), we may process personal data from you on the basis of the following legal principles:
Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our home country.
Your personal data will not be transferred to third parties for purposes other than those listed in this Privacy Policy.
We will only transfer your personal data to third parties if:
We carefully select our service providers who process personal data on our behalf. If we commission third parties to process personal data on the basis of a data processing agreement, this is done in accordance with Art. 28 of the GDPR.
If we process data to a third country or if this is done in the context of using the services of third parties or disclosure or transfer of data to other persons or companies, this is only done for the reasons described above for the transfer of data.
Subject to express consent or contractual necessity, we process or allow data to be processed only in third countries with a recognized level of data protection or on the basis of special guarantees, such as contractual obligations through so-called standard contractual clauses of the EU Commission, the existence of certifications or binding corporate rules in accordance with Art. 44 – 49 of the GDPR.
We would like to expressly point out that as of July 16, 2020, due to a legal dispute between a private individual and the Irish supervisory authority, the so-called “Privacy-Shield”, an adequacy decision of the EU Commission according to Art 45 GDPR, which confirmed an adequate level of data protection for the US under certain circumstances, is no longer valid with immediate effect.
The Privacy Shield therefore no longer constitutes a valid legal basis for the transfer of personal data to the United States!
If a transfer of data by us to the US takes place at all or if a service provider based in the US is used by us, we refer to this explicitly in this Privacy Policy (see in particular the description of the technologies used on our website).
What can the transfer of personal data to the US mean for you as a user and what risks are involved?
Risks for you as a user are at any rate the powers of the US secret services and the legal situation in the US, which, in the opinion of the European Court of Justice, no longer ensure an adequate level of data protection. Among other things, this concerns the following points:
Legally compliant transfer of data to the US on the basis of standard contractual clauses?
The standard contractual clauses adopted by the Commission in 2010 (2010/87/EU of 05.02.2010), Art. 46 paragraph 2 lit. c GDPR, are still valid, but a level of protection for personal data must be ensured which is equivalent to the level in the European Union. Therefore, not only the contractual relationships with our service providers are relevant, but also the possibility of access to the data by U.S. authorities and the legal system of the U.S. (legislation and jurisdiction, administrative practice of authorities).
The standard contractual clauses cannot bind authorities in the US and therefore do not yet provide adequate protection in cases in which the authorities are authorized under the law in the US to intervene in the rights of the data subjects without additional measures by us and our service provider.
Legally compliant transfer of data to the US on the basis of your consent?
It is currently controversial whether informed consent and thus a deliberate and knowingly restriction of parts of your basic right to data protection is legally possible at all.
What measures do we take to ensure that a data transfer to the US complies with the law?
Insofar as US providers offer the option, we choose to process data on EU servers. This should technically ensure that the data is located within the European Union and cannot be accessed by US authorities.
Furthermore, we carefully examine European alternatives to US tools used. However, this is a process that does not happen overnight, as it also involves technical and economic consequences for us. Only if the use of European tools and / or the immediate switch off of the US tools is impossible for us for technical and / or economic reasons, US service providers are currently still used.
For the further use of US tools we take the following measures:
As far as possible, your consent will be asked for before using a US tool and you will be informed in advance in a transparent manner about the functioning of a service. The risks involved in transferring data to the USA can be found in this section.
We make every effort to conclude standard contract clauses with US service providers and to demand additional guarantees. In particular, we require the use of technologies that do not allow access to data, e.g. the use of encryption that cannot be broken even by US services or anonymization or pseudonymization of data, where only the service provider can make the assignment to a person. At the same time, we require additional information from the service provider if data is actually accessed by third parties or the service provider exhausts all legal remedies until access to data is granted at all.
If no explicit storage period is specified during the collection of data (e.g. in the context of a declaration of consent), we are obliged to delete personal data in accordance with Art. 5 paragraph 1 lit. e of the GDPR as soon as the purpose for processing has been fulfilled. In this context, we would like to point out that legal storage obligations represent a legitimate purpose for the processing of personal data.
Personal data will be stored and retained by us in principle until the termination of a business relationship or until the expiry of any applicable guarantee, warranty or limitation periods, in addition, until the end of any legal disputes in which the data is required as evidence, or in any event until the expiry of the third year following the last contact with a business partner.
Data subject have the right:
The responsible data protection authority for PrintDreams International AB is:
Swedish Authority for Privacy Protection
Postal address: Integritetsskyddsmyndigheten, Box 8114, 104 20 Stockholm, Sweden
Tel: (+46)8 657 61 00
e:
im*@im*.se
You yourself decide on the use of your personal data. Should you therefore wish to exercise one of your above-mentioned rights towards us, you are welcome to contact us by email at in**@pr*********.com or by post, as well as by telephone.
Together with your application, please send us a copy of an official photo ID for clear identification and support us in concretizing your request by answering questions from our responsible employees regarding the processing of your personal data. In your request, please state in which role (employee, applicant, visitor, supplier, customer, etc.) and in which period of time you have been in contact with us. This enables us to process your request promptly.
The security of your personal data is of particular concern to us. Therefore, in accordance with Art. 32 of the GDPR and taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing, as well as the different probabilities of occurrence and severity of the risk to the rights and freedoms of natural persons, we take appropriate technical and organisational measures to ensure a level of protection appropriate to the risk.
These measures shall include, but not be limited to, ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access, input, disclosure, safeguarding of availability and segregation of data relating to them. Furthermore, we have established procedures to ensure that data subjects’ rights are exercised, data is deleted, and we respond to data threats. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware and software, in accordance with the principle of privacy by design and through data protection-friendly pre-settings in accordance with Art. 25 of the GDPR.
Our understanding of security is also requested from the processors we use.
Due to further developments or changes in legal requirements, it may become necessary to adapt this Privacy Policy from time to time. The current Privacy Policy can be found and printed out by you at any time here on this website.
For questions regarding data privacy, you can reach us at in**@pr*********.com or at the other contact details stated in this Privacy Policy.
Stockholm, on 5. August 2024
