Privacy Policy
Last Updated On: 14 Jul 2025
Effective Date: 14 Jul 2025
This Privacy Policy (the “Policy”) explains how Nordic Alliance Group AB, Reg. No 556877‑1124, Drakegatan 10, 412 50 Gothenburg, Sweden (“Company”, “we”, “us”, “our”) collects, uses, discloses and otherwise processes personal data when you interact with our website nordicalliancegroup.com (the “Service”). By accessing or using the Service you acknowledge that you have read and understood this Policy. If you do not agree, please do not use the Service.
1. Controller & Contact
Nordic Alliance Group AB is the data controller under the EU General Data Protection Regulation (GDPR).
- Postal address: Drakegatan 10, 412 50 Gothenburg, Sweden
- Email: contact@nordicalliancegroup.com
2. Personal Data We Collect
We process the following categories of personal data:
- Identification & Contact Details – first & last name, work e‑mail, direct phone.
- Professional Information – job title, company name, VAT/registration number, address, organisation size, business type, turnover range, customer segments.
- Technical Data – IP‑address, browser user‑agent, device type, time stamp, referrer URL (collected via server logs, cookies and Google reCAPTCHA).
- Marketing Preferences – opt‑in/opt‑out status for newsletters and campaigns.
3. How & Why We Use Your Data
| Purpose | Legal Basis (GDPR Art. 6) | Typical Data |
|---|---|---|
| Respond to “Become an Allied Reseller” or “Request a Demo” forms | (b) pre‑contractual steps | Identification & Professional Information |
| Sales follow‑up & B2B marketing | (f) legitimate interest / (a) consent where national laws require opt‑in e‑mail marketing | Identification, Professional, Marketing Preferences |
| Website security & fraud prevention (incl. Google reCAPTCHA) | (f) legitimate interest | Technical Data |
| Analytics & performance monitoring (Google Analytics) | (a) consent via Cookie Banner | Technical Data |
| Legal & accounting obligations | (c) legal obligation | Identification, Professional |
4. Cookies & Similar Technologies
We use first‑party cookies for essential site functions and third‑party cookies for analytics and spam‑prevention (Google reCAPTCHA). For details on each cookie’s name, provider, purpose and lifespan, please refer to our separate Cookie Policy, which forms part of this Policy.
5. How We Share Data & International Transfers
We do not sell your personal data. We share it only:
- with service providers acting on our instructions, such as:
- Website hosting: Loopia AB
- Google LLC – reCAPTCHA (USA)
- with public authorities where required by law or to defend legal claims;
- within the Nordic Alliance corporate group if applicable;
- in connection with a merger, acquisition or sale of assets (you will be notified).
Where recipients are located outside the EEA, we rely on EU‑approved Standard Contractual Clauses (SCCs) and supplemental technical & organisational measures. A copy of applicable safeguards is available on request.
6. Data Retention
- Prospect / lead records: deleted 24 months after last interaction unless you become a customer.
- Customer & reseller records: retained 7 years after contract end to satisfy Swedish accounting law.
- Server log files: retained 12 months.
- Cookie data: see Cookie Policy for individual lifetimes (max 12 months for 1st‑party cookies).
7. Security
We implement appropriate technical and organisational measures, including TLS 1.3 encryption, least‑privilege access controls, MFA, periodic penetration testing and 24/7 infrastructure monitoring. No internet transmission is ever completely secure; therefore we cannot guarantee absolute security.
8. Your Rights
Under GDPR (Art. 15‑22) you have the right to request access, rectification, erasure, restriction or objection to processing, and data portability. Where we rely on consent you may withdraw it at any time. To exercise your rights, email contact@nordicalliancegroup.com. We will respond within 30 days.
If you believe we are processing your data in breach of the law you may lodge a complaint with the Swedish Supervisory Authority: Integritetsskyddsmyndigheten (IMY), Box 8114, 104 20 Stockholm, imy@imy.se.
9. Automated Decision‑Making
We do not use your data to make decisions producing legal or similarly significant effects solely by automated means.
10. Third‑Party Links
Our website may contain links to external sites we do not control. We are not responsible for their privacy practices. We encourage you to review the privacy notice of every external site you visit.
11. Changes to This Policy
We may update this Policy from time to time. We will post the revised version on this page and, where changes are material, provide 30 days’ prior notice (e.g. via banner or e‑mail). Continued use of the Service after the effective date constitutes acceptance of the changes.
12. Contact
Questions, concerns or requests regarding this Policy can be sent to contact@nordicalliancegroup.com or by post to the address above.
