It is very important for us at Coin de Rêve/Poppy Petit AB, org no 559035-2489, (hereinafter "Coin de Rêve" or "we") to protect your personal data.We are well aware of how basic online privacy is for our customers and we do everything we can to make your visits to our webshop and your shopping experience as safe as possible.
The personal information that you send to us at Coin de Rêve is only used to do what is required of us to complete purchases and guarantee you as a customer the best possible service.We take responsibility for keeping all the personal information you send us secure.If you would like to unsubscribe from emails sent from us, please click on the unsubscribe link contained in the emails you receive, or email us at email@example.com and put “Unsubscribe” in the subject line.
1.1 PERSONAL INFORMATION
Coin de Rêve is the data controller for the personal data you send to us and is responsible for your personal data in accordance with the General Data Protection Regulation (GDPR).
Personal data refers to any kind of information that can be directly or indirectly attributed to a living natural person.This of course applies to name, social security number, address, email address and telephone number, but also, for example, order numbers and encrypted information about various types of electronic identities, such as IP numbers, if they can be linked to physical persons.
1.2 LEGAL BASIS AND STORAGE OF PERSONAL DATA
There are several different legal bases for us to process your personal data.It may happen that one and the same personal data is processed with the support of several of these legal grounds; e.g. fulfillment of a purchase agreement,specific consent or that the information is necessary to fulfill other legal obligations.This means that even if the consent that forms the basis of processing is revoked, the personal data may still remain for other purposes.In the main, however, we process your data only to fulfill agreements to which you are a party, for example purchase agreements.
The personal data we collect is stored within the European Economic Area (EEA), but may also be transferred and processed in a country outside the EEA.All such transfer takes place in accordance with applicable legislation.
1.3 WHAT INFORMATION DO WE COLLECT?
We collect personal data that you send to us, for example, when you contact our customer service, place orders, perform certain actions on our website or participate in surveys and competitions.Personal information that you submit to us may include, for example, contact information, date of birth, and payment information.Personal data that we receive through your use of our webshop are normally cookies.In addition, we may collect certain personal data from external sources, such as credit information and address updates.
Data collected in connection with order placement
When you buy a product via coindereve.se we collect personal data from you in order to fulfill your order.It can be information such as name, date of birth, gender, address and other contact information.In connection with placing an order, we also collect your payment details.
Data collected during personal contact
We collect personal data from you when you contact us, for example via email, phone and social media.In the first place, we collect the personal data needed to be able to answer your question or handle your matter.This is information such as name and order number.Depending on how you choose to contact us, we may also collect contact information such as e-mail address and telephone number.
Data collected via My Account
If you register a user identity on coindereve.se we collect your name and email address to create the login.In your account, you can then choose to provide address information.
Data collected when you subscribe to our newsletter
If you choose to subscribe to our newsletter, we collect your name and email address in order to send the newsletter.
Data collected when using our digital services
When you use our webshop, we collect data about your use.Some of this data may be personal data, such as your IP number.We also collect information about how you navigate the service, which searches you make and which products you are interested in.
Data collected from someone other than you
When purchasing gift cards and when contacting us in various matters, it happens that a person provides personal information about one or more other people, mainly in the form of an email address or phone number.We assume that the person providing the information has the consent of all persons to provide this personal data.
In order to keep your personal data up-to-date and correct, we supplement and update your personal data if necessary through collection from private and public registers.This applies, for example, to address information and social security number.
1.4 CUSTOMER SERVICE
We use your personal data to be able to provide you with service if you contact us with e.g. questions, comments or complaints.We use your name and order number to identify you and your order.We use your contact details, such as email address and phone number, to be able to contact you in connection with questions and matters.We may also use all the other personal data that we have collected about you to handle your question or case, depending on what is relevant in the individual case.
1.5 SENDING INFORMATION WHEN ORDERING
After you have purchased something from us, we use your personal data to send you order confirmation, important information about the status of your order, and a delivery confirmation.Such mailings take place to the email address that has been provided in connection with placing your order.
1.6 MARKETING AND PERSONALIZATION
Customer information may be used in the marketing context of Coin de Rêve in connection with promotions, information by post, email and SMS.
If you have signed up for our newsletter, we use your personal data to send the newsletter to you (address) and sometimes to adapt the content of the newsletter to you (order history, user patterns, preferences).By using this information, we can provide you with the offers that we believe you will be most interested in and benefit from.
On our website, we use information about our users for so-called personalization.This means that we use the information we have collected about you and your use of our website to influence how the content of the website looks when you visit us.The customization can be, for example, that we save and display information about products you have searched for on previous visits to our website and that we display advertisements and offers that we think suit you and your wishes both on coindereve.se as well as other websites.
We also use personification in our communications via social media and online advertising on websites other than coindereve.see
In some cases, we share information with our partners to help us adapt our offers and marketing to you.We enter into PUB agreements to ensure that such collaboration partners process data in accordance with the applicable personal data legislation.
1.7 DEVELOPMENT OF SERVICES AND SERVICE
We use the information we collect about our customers to develop and improve our products and services.This partly applies to our digital services, where we analyze user behavior to develop how we present information, offers and how we design functions.This also applies to the development of our products according to customers' wishes and behavior and to remedy shortcomings or increase IT security.
In the main, we use anonymous or anonymized data at an aggregate level to do this type of analysis.However, it may happen that we also use personal data that we have collected if it is relevant.
1.8 LEGAL REQUIREMENTS
Processing of your personal data may finally also take place in order for us to be able to fulfill obligations according to laws and regulations, for example applicable security and accounting.
1.9 STORAGE TIMES
Coin de Rêve follows good practice in the retail industry.We save your personal data for as long as it is required for the purpose of the processing.
We save all the personal data we collect in our customer database.In the customer database, personal data and order history are saved for two years, unless you have agreed that we can save your data longer.If you specifically agree to it, we save your personal data for up to two years.
If you make a complaint within two years of your last order, we save all your data for two years.
In your Account, the data you have registered there is saved as long as the user identity is active.
If you subscribe to our newsletter, your contact details will be saved as long as you choose to continue receiving the newsletter.
The same personal data can be stored in several different places for different purposes.This may mean that data that has been removed from a system because it is no longer necessary may remain in another system where it is stored with the support of, for example, consent or for another purpose where the personal data is still needed.
1.10 HOW DO WE USE YOUR PERSONAL DATA?
Coin de Rêve uses your personal data for the following purposes:
To create and manage your personal account with Coin de Rêve
To process your orders and any returns via our online services.
To send you SMS notifications about delivery status.
To contact you in the event of any problems with the delivery of your goods.
To answer your questions and inform you about new or changed services.
To, if necessary, carry out credit checks.
To send marketing such as newsletters and other offers.
To perform analysis so that we can offer you relevant marketing offers and information.
To confirm that you are of the legal minimum age to make online purchases.
To send you surveys that give you the opportunity to influence our offers and services.
To test and improve our systems that provide our services.
To prevent abuse or inappropriate use of our services.
1.11 DISCLOSURE OF PERSONAL INFORMATION
Contract partners and IT suppliers
We use a number of different IT services and IT systems in our operations.In some of these, personal data is stored and handled.We are concerned about your privacy and the security of your data in all such handling.Some systems are installed locally with us and only selected personnel have access to the data.In these cases, no transfer to third parties takes place.However, some systems are cloud solutions or installed at the supplier, which means that we transfer personal data to the supplier.In these cases, the supplier is our personal data assistant and handles the data on our behalf and according to our instructions.
Internal IT systems
Internally, we handle personal data in our customer database, in our business and sales support systems, as well as in our customer service system and in a system for data management and database backup.These systems are there to be able to deliver the services we offer and to be able to handle questions and customer care in connection with the performance of these.In the current systems, all the personal data we collect can be handled.
Web Analytics Company
We use external providers for personalization and analysis of user behavior on our websites and for user feedback.These companies handle personal data as a personal data processor on our behalf.The information in question is above all information that is retrieved through cookies and handled on an anonymous and aggregated level.
Payment solutions and gift cards
We partly use external suppliers to handle payments and gift cards.These suppliers get access to personal data in the form of names, addresses and payment information.This handling is necessary for us to be able to deliver the services you have ordered from us.Coin de Rêve does not own personal data consisting of payment information and does not store this type of data locally.
We use external suppliers to provide information via SMS during order and delivery processing.These suppliers get access to personal data in the form of telephone numbers.
1.12 WHAT ARE YOUR RIGHTS?
Necessary processing of personal data and processing based on consent
Personal data processing that is necessary for us to be able to fulfill a contract with you or for us to be able to fulfill a legal obligation is permitted without consent.However, in order for us to be able to collect and process your personal data for any other purpose, you must consent to the processing.You consent to the handling of your personal data in connection with your use of our services at coindereve.se, in our social channels, when contacting our customer service or in our stores.
Right to receive information about which personal data we have saved about you and/or withdrawal of consent
You have the right to request information about the personal data we hold about you at any time.If your data is incorrect, incomplete or irrelevant, you can request to have it corrected or deleted.We cannot delete your data when there is a statutory storage requirement, such as accounting rules, or when there are other legitimate reasons why the data must be saved, such as unpaid debts.You can withdraw your consent to us using the data for marketing purposes at any time.You can contact us either by sending a letter to Coin de Rêve/Poppy Petit AB, Blekingegatan 20, 118 56 Stockholm, call +46 8 408 155 22 or email to firstname.lastname@example.org with the subject line "Personal information".
1.13 PROTECTION OF YOUR PERSONAL DATA
We have taken technical and organizational measures to protect your data from loss, manipulation and unauthorized access.We continuously adapt our security measures in accordance with the progress and development in the technological field.We take ongoing measures to fulfill the principles of "data protection built in and data protection as standard".We continuously evaluate the risks of the personal data processing that takes place and take the necessary security measures to reduce the risks.To make card purchases as secure as possible, all information is sent in encrypted form.This means that the information is transmitted via a secure connection and that your personal data cannot be read by outsiders.For card purchases, we work with an authorized payment agent who helps us directly check with your bank that the card is valid for purchases.Our payment agent processes your card details in accordance with the international security standard PCI DSS, which was developed by the card companies VISA, MasterCard, Diners, American Express and JCB.This means that security is very high when processing your card details.
2.1 WHAT IS THE PURPOSE OF COOKIES?
2.2 WHAT ARE COOKIES?
A cookie is a small text file that is stored on your computer or mobile device when you visit a website, and which can later be retrieved from your computer by the website.Cookies are used partly to facilitate the use of a website by, for example, remembering your choice and settings and partly to develop the website and analyze your behaviour.Some functions do not work without cookies.
Web Development & Statistics
2.4 WHAT TYPES OF COOKIES DO WE USE?
In order for some features on coindereve.se or our other websites to function, for example that the right web pages are displayed to the right person, the website uses so-called temporary cookies.When you visit one of our websites, our web servers provide your computer with a unique ID number for that unique visit.These cookies have no expiration date and are instead stored temporarily in the user's computer's memory until the browser is closed.Thanks to this cookie, you don't have to fill in all the information again every time, for example, you go back in the booking dialogue.
A permanent cookie has a specified duration, or lifetime, which determines how long it is stored on your computer or mobile device.Such cookies are stored until their lifetime expires or until you delete them manually.
2.5 COOKIES FROM THIRD PARTIES AND SUPPLIERS
Third party cookies
A third-party cookie is a cookie placed on your device on our behalf by someone other than us.This occurs when we have suppliers who perform services for us, such asexcertain analytics services or services that allow you to share our pages on social media.
2.6 HOW CAN YOU AS A CUSTOMER MANAGE COOKIES IN YOUR WEB BROWSER?
You can easily delete cookies from your computer or mobile device via the browser.For instructions on how to manage and delete cookies, go to the "Help" option in your browser.You can choose to disable cookies or receive a notification each time a new cookie is sent to your computer or mobile device.Please note that if you choose to disable cookies, you will not be able to use all functions on our website.
The site coindereve.se may contain links to other websites over which we have no control.We are not responsible for the privacy practices or the content of these websites.The purpose of providing these links is to make it easier for our visitors to find more information on specific topics.
4.DISPUTES / ODR
The Online Dispute Resolution (ODR) website is an official website managed by the European Commission and aims to help consumers and traders resolve their disputes out of court.ODR applies within the EU, with a few exceptions.In Sweden, ARN (General Complaints Board) is the ODR body.You can reach them at: