Privacy Policy

Duco Studios AB

Company registration number: 559556–6976
Address: Box 132, 430 83 Vrångö, Gothenburg, Sweden
Last updated: 2025-01-11

Privacy Policy

Duco Studios AB (“we”, “us”, “our”) values your privacy and is committed to protecting your personal data.
This Privacy Policy explains how we collect, use, store, and protect personal data in accordance with the General Data Protection Regulation (GDPR).

This policy applies to all personal data collected through our website, communication channels, and services.

1. Data controller

Duco Studios AB is the data controller responsible for the processing of personal data.

If you have any questions about this Privacy Policy or our data processing, you can contact us at:

[email protected]
(or [email protected], depending on technical configuration)

2. Personal data we collect

We may collect and process the following types of personal data:

Name

Company name

Job title or role

Email address

Communication history

Technical data such as IP address, browser type, and device information

We only collect personal data that is necessary for the purposes described below.

3. How we collect personal data

Personal data may be collected when you:

Contact us via email or website

Book a meeting or conversation

Communicate with us through professional channels such as LinkedIn

Visit and interact with our website

4. Purpose and legal basis for processing

We process personal data for the following purposes and legal bases:

a) Communication and business relations

To respond to enquiries, conduct conversations, and manage business relationships.

Legal basis: Legitimate interest or performance of a contract.

b) Service delivery

To deliver agreed services, manage projects, and fulfil contractual obligations.
Legal basis: Performance of a contract.

c) Website functionality and analytics

To ensure proper website functionality and improve user experience.
Legal basis: Legitimate interest or consent, depending on cookie type.

d) Legal and compliance obligations

To comply with applicable laws, accounting requirements, and legal obligations.
Legal basis: Legal obligation.

5. Data retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law.

Business correspondence is retained as long as relevant for the relationship

Contractual data is retained according to legal and accounting requirements

6. Sharing of personal data

We do not sell or trade personal data.

Personal data may be shared with trusted third parties only when necessary, such as:

IT and system providers

Analytics and hosting providers

Legal or accounting advisors

All third parties process data in accordance with GDPR and only for agreed purposes.

7. Transfers outside the EU/EEA

If personal data is transferred outside the EU/EEA, we ensure that appropriate safeguards are in place, such as:

EU Standard Contractual Clauses

Transfers to countries approved by the European Commission

8. Your rights under GDPR

You have the right to:

Request access to your personal data

Request correction of inaccurate or incomplete data

Request deletion of your personal data

Object to or restrict processing

Request data portability

Withdraw consent at any time (where applicable)

To exercise your rights, please contact us using the details above.

9. Data security

We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or misuse.

Access to personal data is limited to authorised persons only.

10. Cookies

We use cookies in accordance with our Cookie Policy.
Please refer to the Cookie Policy for detailed information about cookie usage and consent.

11. Changes to this Privacy Policy

We reserve the right to update this Privacy Policy when necessary.
The latest version is always available on our website.

Continued use of our services or website constitutes acceptance of the updated policy.

12. Complaints

If you believe that we process personal data in violation of GDPR, you have the right to lodge a complaint with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten, IMY).