1. Controller
For the website and business contacts, ABN Platform AB, [org. no.],
[address], Sweden, is the data controller. Contact:
legal@abnplatform.com.
2. What we process and why
| Data | Purpose | Lawful basis (Art. 6 GDPR) |
|---|---|---|
| Name, e-mail, company, message — from contact/demo forms | Respond to enquiries, provide demos | Legitimate interest / pre-contractual steps, Art. 6(1)(b),(f) |
| Account data of dashboard users (name, e-mail, role) | Operate the service, authentication | Performance of contract, Art. 6(1)(b) |
| Website analytics (aggregated, privacy-friendly) | Improve the site | Consent, Art. 6(1)(a) — only if you accept |
| Support correspondence | Provide support | Contract / legitimate interest |
We do not sell personal data and we do not use it for automated decision-making with legal effect.
3. The No-Data principle
The ABN product is built so that customer operational data never leaves the customer's own environment. ABN Platform AB does not receive a copy of a customer's business or personal data through normal use of the product. This policy therefore concerns only website and business- contact data.
4. Cookies
abnplatform.com uses strictly necessary cookies by default. Analytics or other non-essential cookies are set only with your consent, which you can withdraw at any time via the cookie settings.
5. Retention
- Contact-form data: up to 24 months after last contact, then deleted.
- Customer account data: for the contract term + as required by law.
- Support correspondence: up to 24 months.
- Accounting records: 7 years (Swedish Bokföringslagen).
6. Recipients and transfers
Data is processed within the EU/EEA. We use a small number of processors (hosting, e-mail, analytics) under Art. 28 agreements. We do not transfer personal data outside the EU/EEA without a valid Chapter V GDPR mechanism.
7. Your rights (Art. 12–23 GDPR)
You have the right of access, rectification, erasure, restriction,
portability, and objection, and the right not to be subject to solely
automated decisions. To exercise a right, e-mail legal@abnplatform.com; we
respond within one month. You may also lodge a complaint with the
Swedish supervisory authority, IMY (Integritetsskyddsmyndigheten),
imy.se.
8. Security
Website and business data is protected with TLS, access control,
least-privilege, and encryption at rest. Incidents are handled per
INCIDENT_RESPONSE.md.
9. Changes
We may update this policy; the "last updated" date below always reflects the current version. Material changes are announced on abnplatform.com.