Zensli Privacy Policy

Introduction

This Privacy Policy explains what information (including personal data) we collect from you (“Customer”), how we use it, and the legal grounds for processing. It also details whether and how we share your information, along with your rights and choices regarding your data.

This Policy applies solely to personal data processed within the Zensli service.

Table of Contents

  • 1. Who We Are
  • 2. What Personal Data We Collect, When We Receive It, and How We Use It
  • 3. Legal Bases for Processing
  • 4. Your Rights
  • 5. Children’s Privacy
  • 6. Who We Share Your Personal Data With
  • 7. International Transfers
  • 8. Retention of Data
  • 9. How We Protect Your Personal Data
  • 10. Automated Decision-Making and Profiling
  • 11. Privacy Policy Changes
  • 12. Contact Us

1. Who We Are

PKG AB (Reg. No. SE559008922201) is a Swedish company providing the Zensli service to help individuals and businesses maintain control over their data.

If you have questions about this Privacy Policy or need access to previous versions, please contact us via the website’s contact form.

2. What Personal Data We Collect, When We Receive It, and How We Use It

We do not sell your personal data. We collect and process the following personal data as data controllers:

  • Account Data: Information such as name, email, job title, contact, organisation, and billing details when you create a Zensli account. Used to provide and manage your account and ensure security.
  • Communication Data: Your name, email, and message content when you contact us for support or feedback. Used to respond and improve our services.
  • Usage Data: Activity related to your account (e.g., login times, features used, configuration changes) to improve the service and prevent misuse.

We also process personal data on behalf of our Customers (data processors) under the Zensli Data Processing Agreement (DPA) and Terms of Service.

3. Legal Bases for Processing

We process your personal data based on the following legal grounds:

  • Consent: Where you have given explicit consent for specific purposes such as marketing.
  • Contract Performance: To fulfill obligations under our agreement with you, like service delivery or support.
  • Legal Obligation: To comply with applicable laws (e.g., tax laws).
  • Legitimate Interests: To improve our services, manage relationships, and ensure security.

4. Your Rights

Depending on applicable laws (e.g., GDPR), you may have rights including:

  • Access to your personal data.
  • Correction of inaccurate data.
  • Erasure under certain conditions.
  • Restriction of processing.
  • Data portability.
  • Objection to processing.
  • Withdrawal of consent (where applicable).

To exercise your rights, contact us. We can only process requests relating to data we control directly; for data processed on behalf of Customers, please contact them.

You also have the right to lodge complaints with relevant data protection authorities, such as:

  • Sweden: Integritetsskyddsmyndigheten (IMY)
  • EU: European Data Protection Board (EDPB)
  • UK: Information Commissioner’s Office (ICO)

5. Children’s Privacy

Zensli is not intended for children under 16. We do not knowingly collect data from minors. If discovered, such data will be deleted as required by law.

6. Who We Share Your Personal Data With

  • Subprocessors (Zensli)

    Trusted third-party providers who support Zensli and are bound by strict data protection agreements, processing data only as instructed.

  • Billing and Support Services

    Third-party billing and support providers with strict data protection obligations.

7. International Transfers

Transfers outside the EU/EEA comply with GDPR, using mechanisms like Standard Contractual Clauses or adequacy decisions.

8. Retention of Data

We keep your data as long as your account is active or needed to provide the service. After account termination, data is deleted within 30 days unless legally required to retain it longer.

9. How We Protect Your Personal Data

We use technical and organizational safeguards such as encryption, access controls, and security audits. See Appendix 1 in the Zensli DPA for details.

10. Automated Decision-Making and Profiling

We do not engage in automated decision-making or profiling.

11. Privacy Policy Changes

We may update this Policy occasionally. Significant changes will be communicated via email or the Zensli platform.

12. Contact Us

For questions or concerns, please use the website’s contact form.

Appendix 1 – Technical and Organisational Measures

We employs the following to protect your data:

  • Access Control: Restricted to authorized personnel only.
  • Encryption: Data encrypted in transit (HTTPS) and at rest.
  • Incident Response: Logging and monitoring to detect and respond to security incidents.
  • Redundancy: Regular backups and failover mechanisms to ensure availability.

Refer to the Zensli Data Processing Agreement for more details.

By using Zensli, you agree to this Privacy Policy. If you do not agree, please do not use the service.