Privacy Policy

Last Updated: January 21, 2025

Effective Date: January 21, 2025

1. Introduction

This Privacy Policy explains how Zerio AB ("we," "our," or "us") collects, uses, and protects your personal information when you use our services or communicate with us.

We are committed to protecting your privacy and ensuring transparency about our data practices in compliance with GDPR, CCPA, and other applicable privacy laws.

2. Data Controller

Zerio AB

Organization Number: 559413-0402

Address: Östra Storgatan 33A, 553 21 Jönköping, Sweden

Email: contact@zerio.se

Phone: +46 703 728 659

3. Information We Collect

We collect information that you provide directly to us and information that is automatically collected when you use our services.

Personal Information:

  • Name and contact information (email, phone number, address)
  • Company information and job title
  • Project requirements and communications
  • Payment and billing information

Technical Information:

  • IP address and device information
  • Browser type and version
  • Website usage data and analytics
  • Cookies and similar tracking technologies

Consent & Communication Data:

  • Communication preferences and consent records
  • Message delivery and engagement data
  • Opt-out requests and preference changes
  • Timestamps and audit trail information

4. How We Use Your Information

We use your personal information for the following purposes:

Data Processing Purposes:

  • Providing and delivering our web development and digital services
  • Communicating with you about projects, bookings, and service updates
  • Sending automated messages based on your consent preferences
  • Processing payments and managing billing
  • Improving our services and website functionality
  • Complying with legal obligations and maintaining business records

5. A2P Messaging & Communications

When you provide consent for communications, we may send you automated messages through various channels based on your preferences.

Consent Process:

When you submit our contact form, you provide implied consent for transactional communications related to your inquiry. For marketing communications, we require explicit opt-in consent through a separate checkbox. All consent is logged in our system with your IP address, timestamp, and user agent for compliance verification.

Transactional vs Marketing Communications:

Transactional: Transactional messages (contact confirmations, project updates, service notifications) are sent based on implied consent when you submit our contact form, as they are necessary for service delivery.

Marketing: Marketing messages (newsletters, promotional offers, company updates) require explicit opt-in consent through a separate checkbox on our contact form. You can opt-out of marketing messages at any time without affecting transactional communications.

Types of Automated Messages:

  • Transactional messages: Booking confirmations, project updates, invoices, service notifications
  • Marketing messages: Newsletters, promotional offers, company updates (requires explicit opt-in)
  • Emergency communications: Urgent project issues, security notifications

Third-Party Services:

We use GoHighLevel and other trusted service providers to deliver SMS and phone communications. These providers are bound by strict data protection agreements and only process your data as instructed by us.

Managing Your Preferences:

You can withdraw consent at any time by replying STOP to SMS messages, clicking unsubscribe in emails, or contacting us at contact\u0040zerio.se. Marketing consent can be withdrawn separately from transactional messages.

6. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent : For marketing communications and optional services where you have given explicit consent
  • Contract Performance : To provide services you have requested and fulfill our contractual obligations
  • Legitimate Interest : For business operations, security, and improving our services
  • Legal Obligation : To comply with applicable laws, regulations, and legal processes

7. Data Sharing & Disclosure

We do not sell your personal information. We may share your data with trusted third parties in the following circumstances:

Data Sharing Categories:

  • Service providers: GoHighLevel, payment processors, hosting providers, and other vendors who help us deliver services
  • Legal compliance: When required by law, court order, or to protect our legal rights
  • Business transfers: In connection with mergers, acquisitions, or asset sales (with appropriate safeguards)
  • Consent-based sharing: When you have explicitly authorized us to share your information

8. Data Retention

We retain your personal information only as long as necessary for the purposes outlined in this policy:

  • Contact inquiries: 3 years from last contact
  • Consent records: 7 years for compliance documentation
  • Marketing preferences: Until you withdraw consent or 3 years of inactivity
  • Website analytics: 26 months (Google Analytics default)

9. Your Privacy Rights

Under GDPR and other privacy laws, you have the following rights regarding your personal data:

  • Right of Access : Request a copy of the personal data we hold about you
  • Right to Rectification : Request correction of inaccurate or incomplete personal data
  • Right to Erasure : Request deletion of your personal data ("right to be forgotten")
  • Right to Restriction : Request limitation of processing of your personal data
  • Right to Data Portability : Request transfer of your data to another service provider
  • Right to Object : Object to processing based on legitimate interests or for marketing purposes
  • Right to Withdraw Consent : Withdraw consent for communications or data processing at any time

To exercise any of these rights, please contact us using the information provided below. We will respond to your request within 30 days.

10. International Data Transfers

As we serve clients in both Sweden and the United States, your personal data may be transferred and processed in different countries.

We ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses (SCCs) and adequacy decisions where applicable.

11. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws.

We will notify you of any material changes by email or through our website, and the updated policy will be effective immediately upon posting.

13. Contact Information

If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

Zerio AB - Data Protection Officer

Email: contact@zerio.se

Phone: +46 703 728 659

Address: Östra Storgatan 33A, 553 21 Jönköping, Sweden

Back to Home