The Swedish company – Sninga Studio is responsible for your personal data under the Swedish Data Protection Act (1998:204) and EU Directive 95/46/EC and the applicable national data protection law. Your personal data is stored and maintained in Sweden and processed within the H&M group in a few cases outside the EEA-area. By using the Sites, you consent to the transfer of your data overseas and across borders, and from your country or jurisdiction to other countries or jurisdictions around the world. The laws governing data in your home country may differ from those in the countries to which data is transferred. By accessing and using the Sites, you consent to the transfer of your data in this manner.
How do we use your data?
In providing your personal data you consent to Sninga using the data collected in order to meet our commitments to you and to provide you with the service you expect. We need your personal data for the following purposes:
To create your personal account at sninga.com (e.g. your name and email address)
To process your orders (e.g. your name, address, date of birth and bank details)
To be able to send text message notifications of delivery status (e.g. your mobile phone number)
To be able to send you marketing offers such as newsletters and our catalogues (e.g. your email address, your name and your postal address)
To be able to contact you in the event of any problem with the delivery of your items (e.g. telephone number, address)
To enable us to answer your queries and to inform you of new or changed services (e.g. your email address)
To notify the winners in promotions (e.g. your email address, name, home address and telephone number)
Managing your account by carrying out credit checks (e.g. name, address, date of birth)
To be able to analyze your personal data to provide you with relevant marketing offers and information (e.g. name, buying habits)
We will only keep your data for as long as necessary to carry out our services to you or as long as we are required by law. After this your personal data will be deleted. We cannot remove your data when there is a legal storage requirement, such as book keeping rules or when there is a legal ground to keep the data, such as an on-going contractual relationship.
Non-personal data is used as described above and in other ways as permitted by applicable laws, including combining non-personal data with personal data.
What are your rights?
You have the right to request information about the personal data we hold on you. If your data is incorrect, incomplete or irrelevant you can ask to have the information corrected or removed.
Who has access to the data?
We do not sell your information to third parties. We do, however, share data with third parties when necessary to fulfill a transaction, complete a service, for administrative purposes, or when required by law. Any data that is forwarded to third parties is used to meet Sninga commitments to you. Sninga may also supply your personal data to organizations such as credit reference or debt collection agencies for the purposes of credit checks, identity checks, monitoring credit rating and debt collection. Additionally, we will share your data if such sharing is required by law or to protect against potential or suspected fraud.
How do we protect your data?
No data transmissions over the Internet can be guaranteed to be 100% secure. Consequently, we cannot ensure or warrant the security of any information you transmit to us and you understand that any information that you transfer to us is done at your own risk. For card purchases we work with an authorised payment agent that helps us to check directly with your bank that the card is valid for purchases. Our payment agent processes your card details. When you pay by card we reserve the right to carry out an identity check.
Your Account Information
You can access your personal account to update your personal data. Please note, however, that your personal account information is protected by your user name and password. It is your responsibility to maintain the security of your username and password as any actions taken while logged into your account will be your responsibility.
What data do we collect?
This policy applies only to information collected on the Site. We collect two types of information from visitors to the Sites: (1) Personal data and (2) Non-personal data.
“Personal data” is information that identifies you personally, such as your name, address, telephone number, email address, and sometimes your Internet Protocol (IP) address. We may collect this information when you create a profile on our Sites, visit our Sites, or complete a purchase.
“Non-personal data” can be technical in nature. It does not identify you personally. Examples of non-personal data include the following: cookie, web beacons, demographic information.
We communicate with users who subscribe to our services on a regular basis via email. For example, we may use your email address to confirm your request, to send you notice of payments, to send you information about changes to our products and services, and to send notices and other disclosures as required by law. Generally, users cannot opt-out of these communications, but they will be primarily informational in nature rather than promotional.
However, we provide you the opportunity to exercise an opt-out choice if you do not want to receive other types of communication from us, such as emails or updates from us regarding new services and products offered on the Sites.