Privacy Policy

Last updated: February 17, 2026

Data Controller

Novudom AB
Org.nr: 559523-3502
Email: contact@novudom.se
Website: novudom.se

We are responsible for the processing of your personal data according to Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR). If you have any questions about this policy or how we process your information, please do not hesitate to contact us.

What Personal Data We Collect

We collect personal data in the following ways:

  • Contact Information: Name, email address, telephone number, and company information that you provide through our contact forms.
  • Technical Data: IP address, browser type, operating system, device information, and other technical identifiers are automatically collected through cookies and tracking tools.
  • Usage Data: Information about which pages you visit, clicks, session duration, referrer website, and other interaction information is collected through HubSpot and similar analytics tools.

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Legitimate Interest (Art. 6.1f GDPR): We use data for marketing, business development, and improving our services where this does not conflict with your rights.
  • Consent (Art. 6.1a GDPR): For cookies, newsletters, and marketing communications, we only collect and use data when you have given your explicit consent.
  • Contract (Art. 6.1b GDPR): We process data that is necessary to deliver the services you have requested or purchased from us.

How We Use Your Personal Data

We use your personal data for the following purposes:

  • Respond to your inquiries and provide the service or information you have requested.
  • Send relevant information about our products, services, and offers (only with your consent).
  • Analyze website traffic, user patterns, and behavior to improve user experience.
  • Conduct marketing activities and business development.
  • Fulfill legal and administrative obligations.
  • Prevent and investigate fraud or other unlawful activities.

Sharing with Third Parties

We may share your personal data with the following categories of recipients:

  • HubSpot Inc.: Our CRM and marketing automation provider acts as a data processor and stores data according to our instructions.
  • Other Service Providers: We may share data with other service providers necessary for our operations, such as hosting providers, analytics tools, and customer support providers.
  • Legal Obligation: We may share data if legally required by authorities or courts.

We never sell your personal data to third parties for their own marketing purposes or commercial purposes.

Transfer to Third Countries

Some of our service providers, particularly HubSpot Inc., store personal data in the United States. The United States is not considered to have an adequate level of data protection under EU law. We ensure appropriate safeguards according to Art. 46 GDPR through:

  • EU-US Data Privacy Framework: HubSpot is certified under this framework, which ensures that data receives an equivalent level of protection as in the EU.
  • Standard Contractual Clauses: We use EU-approved standard contractual clauses to protect data when transferring it.

Storage Periods

We store your personal data only as long as necessary for the stated purposes:

  • Contact Information: Stored for the duration of the business relationship and for a period of 12 months after the contact ends.
  • Technical Data and Cookies: Normally stored for no more than 26 months, or according to the cookie policy.
  • Marketing Data: Stored until you withdraw your consent or when we receive a deletion request.
  • Data for Legal Compliance: May be stored longer if required by law or to fulfill legal obligations.

Your Rights Under GDPR

You have the following rights under GDPR (Art. 15–22):

  • Right of Access (Art. 15): You can request access to all personal data we process about you.
  • Right to Rectification (Art. 16): You can request that we correct inaccurate or incomplete data.
  • Right to Erasure (Art. 17): Under certain circumstances, you can request that we delete your personal data.
  • Right to Restrict Processing (Art. 18): You can request that we restrict the processing of your data in certain situations.
  • Right to Data Portability (Art. 20): You can request that we provide your data in a structured format for transfer to another party.
  • Right to Object (Art. 21): You can object to processing based on legitimate interest or direct marketing.
  • Right to Withdraw Consent: You can withdraw a previously given consent at any time without affecting the lawfulness of prior processing.

To exercise these rights, contact us at contact@novudom.se. We will process your request within 30 days.

Right to Lodge a Complaint: If you believe we are not respecting your rights, you can lodge a complaint with the Swedish Authority for Privacy Protection (IMY) at imy.se.

Cookies

We use cookies and similar tracking technologies to improve your experience on our website, measure traffic, and understand your use of our services. Cookies are small text files stored on your device.

Read our separate cookie policy for detailed information about which cookies we use, why we use them, and how you can manage your cookie settings.

Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We recommend that you review this policy regularly to stay informed about how we protect your personal data.

The latest version of this policy is always available on this website. Significant changes will be announced via email or through a prominent notice on the website.

Contact Us

If you have any questions about this privacy policy, how we process your personal data, or if you wish to exercise any of your GDPR rights, please feel free to contact us:

Novudom AB
Email: contact@novudom.se
Website: novudom.se

We strive to respond to all inquiries within 10 business days.