Privacy policy

 

1. INTRODUCTION

In this privacy notice, you can read about how Scandinavian SkiPass AB (org.nr: 559305-1724) handles personal data ("we", "spring" or "about us"). References to "you", "you" or "your" refers to the registered person the individual whose personal data we process. 


Här förklarar vi vilka personuppgifter vi behandlar, varför the processing takes place, where the data is stored, who can få tillgång to them as well as which rättigheter du har enligt GDPR. Vi ger även öOther information about vår personal data processing.  


2. DEFINITIONS

In this privacy notice, definitions consistent with those in the EU General Data Protection Regulation 2016/679 ("GDPR"), such as "personal data", "treatment", "registered", ”supervisory authority", "data-personuppgiftsansvarig="data-personuppgiftsansvarig"", "data processor" among others. Each of these definitions has the same meaning as stated in artikel 4 i GDPR. For a complete list and exact definitions, please see this article. 

In addition to above specified definitions, the following is also used in this privacy notice: 

Third-party services: refers to information, services, products, systems, websites, software, networks, databases, and platforms from third parties that our Website or Application links to or that are used as part of the delivery of our services. 

Website or Webshop: refers to https://scandinavianskipass.se. 

3. PERSONAL DATA CONTROLLER

We are the data controllers for all processing of personal data carried out by us or on our behalf, to the extent that we determine the means and purposes of the processing (according to the principle of accountability). Our processing of personal data is conducted in accordance with the GDPR (and SCC where applicable) as well as the fundamental data protection principles.  

4. HOW WE ACCESS PERSONAL DATA

We pår främst tillgång till dina personuppgifter när du ingår ett köpeavtal med oss, använder eller besöker the website, contact usår kundtjänst or subscribe på vårt newsletter.

Do you want to prevent us from using or selling your information?
Do not sell or share my personal information – Scandinavian SkiPass

5. CATEGORIES OF PERSONAL DATA WE PROCESS 

We only process personal data that is adequate, necessary, and relevant to fulfill the purpose for which it was collected (according to the principle of data minimization). Below are examples of categories of personal data that we process:  

  • Identifying information: First name, esurname. 

  • Contact Information: Email address, telephone number, pcheese address. 

  • Account and user information: For people who registers a user account on the Website we process the email address, user ID and other information as registered within user account. 

  • Marketing Preferences: Information about your communication preferences, such as subscription to our newsletter or consent for direct marketing. 

  • Purchase Information: Information about completed purchases, such as purchase history, order data, purchased products/services, prices, paymentningsmethod, payment reference. 

  • Payment details: Information about payment, such as finvoice details, fbilling address, transaction ID, bbetalningsstatus. OBS: vi behandlar inte kortuppgifter direkt; dessa behandlas av betaltjänstleverantören. 

  • Delivery information: Information related to deliveries, including delivery address, tracking number, and tracking information for shipments as well as any specified delivery instructions.  

  • Customer Service Cases: Information provided when contacting our customer service, such as email conversations, chats, or recordings of phone calls (if applicable) as well as other relevant case information. 

  • Unit information: Information collected via cookies based on the website visitor's consent, such as data about the computer, tablet, or phone used when visiting the Website, browser version, IP address, time zone, cookie information, operating system, language settings, screen resolution, and other data provided through cookies. 

    You can oopen the cookie banner again and change your settings and given consents for cookies on this website by following this link. 

Minors 

Website är inte avsedd för individer under 16 år. Vi samlar inte medvetet in personuppgifter från barn. Om du är förälder eller vårdnadshavare och tror att ditt barn har lämnat oss personuppgifter, vänligen kontakta oss för att begära radering. 

6. LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA
We process personal data only för särskilda, explicitly stated and requestedättigade ändamål i enlighet principen om ändamålsbegränsning. The treatment is based on främst på någon av följande legal bases: 

  • Consent (Article 6.1 a GDPR) You have given your consent to specific ändamål. 

  • Agreement (Article 6.1 b GDPR) The treatment är nödvändig för att ingå or fullgömake an agreement with you. 

  • Rättslig förpliktelse (Article 6.1 c GDPR) We måhandle data according to legal requirements. 

  • Berälegitimate interest (Article 6.1 f GDPR) The treatment är nödvändig för våra or a third party requestsättigade interests, after a deviationägning mot dina rättigheter och friheter. 

In some cases äIs it voluntary to lämna personal data, but without them we cannot, for example, provideålla viss support, ingå eller fullgöra agreements. If processing is based on på samtycke kan du när as any återkalla det utan att det påseems like previous legal processing. 

Vid behandling baserad på beräscattered interest we have carried outört an expression of interestägning och bedömt att behandlingen inte inskränker din rätt till privacy and integrity.

7. SPECIFIC TREATMENT ACTIVITIES 

We process your personal data in order to provide our services and fulfill our commitments to you as a customer. Below, we specify the purposes for which we process personal data, which data is processed, the legal basis applied, any recipients of the data, and how long the data is stored.

1) Use of cookies and tracking technologies 

We use cookies and similar technologies on our website to ensure its functionality as well as for analysis and marketing. You can read more information about how cookies are used in the cookie message published on the Website via the following link: Cookie Policy – Scandinavian SkiPass. 

Cookies are divided into two categories:

-Necessary cookies (legitimate interest): These cookies are necessary for the website to function properly and enable basic features such as security, network management, and accessibility. 

Personal data  - IP address  
- Unit information  
- Browser settings  
- Session data 
Treatment - Storage of user settings (e.g., language selection)  
- Ensure the website's security and performance  
- Manage login sessions and protect against unauthorized access 
Legal basis Legitimate interest – These cookies are necessary for the website to function and therefore cannot be disabled. 
Recipient IT suppliers and web hosting providers that driftar the website. 
Storage time The storage time varies depending on the function of the cookie, but it is deleted no later than at the end of the respective storage period. The storage time for each cookie is specified in our Cookie Policy. 


Since these cookies are necessary for the website's functionality, you cannot opt out of them. 

- Marketing and analytics cookies (consent): These cookies are used to analyze visitor behavior on the website as well as to display personalized advertising and offers. 

 Purpose Analyze visitor behavior and tailor marketing based on visitors' interactions with the website. 
Personal data - IP address  
- Unit information  
- Website activity (e.g., page views, click behavior)  
- Interest-based data 
Treatment - Track how visitors use the website to improve the user experience  
- Use data to display relevant advertising  
- Share information with third-party providers for targeted marketing 
Legal basis Consent – The user must give active consent before these cookies are used.
Recipient Suppliers of web analytics (e.g., Google Analytics), marketing platforms and ad networks.
Storage time The storage duration varies depending on the type of cookie and the visitor's choice in the cookie settings. The storage time for each cookie is specified in our Cookie Policy.


You can revoke your consent at any time and adjust your cookie settings via our Cookie Policy. 


2) Contact and Customer Service

When you contact us, we process your personal data to be able to provide you with the support and service you need.

 Purpose Handling of incoming customer inquiries via phone, email, letter, contact form and social media. 
Personal data

- Identifying information (e.g. ffirst name and last name
- Contact information (e.g., email address, phone number, address).
- Customer service cases (e.g. form data, the content of the message, previous support contact) 
Treatment

- Identify the sender 
- Henter and respond to the case
- Foil up the case as needed. 
Legal basis Legitimate interest – We have a legitimate interest in being able to respond to inquiries and provide customer service.
Recipient IT suppliers and customer service system.
Storage time

Customer support cases are saved for up to 4 years after the last contact in the case to ensure follow-up and improved service. 

If the matter concerns warranty, complaint or an ongoing dispute, the data may be stored longer in accordance with the Consumer Purchase Act (SFS 2022:260) or other legal requirements. When the storage period has expired, the data is deleted or anonymized.


Providing this information is voluntary, but if you choose not to provide certain information, we cannot guarantee that we will be able to assist you with your case. 


3) Entering into and fulfilling a purchase agreement


In order for us to enter into and fulfill a purchase agreement with you, we need to process certain personal data. This information is necessary to handle your purchase, process the payment, carry out the delivery, and if necessary, manage any customer service issues related to the purchase.

Purpose Processing of personal data when entering into and fulfilling a purchase agreement. 
Personal data - Identifying information (e.g., name, customer number)  
- Contact information (e.g., email address, phone number, address)  
- Purchase information (e.g., ordered products, order history)  
- Payment details (e.g., payment method, transaction information)  
- Delivery details (e.g., delivery address, tracking number)  
- Customer service cases (e.g. complaints, right of withdrawal, support contact) 
Treatment - Register and manage purchases  
- Process payment  
- Send order confirmation  
- Complete delivery and track packages
- Handle complaints, right of withdrawal, and customer service cases related to the purchase
Legal basis Agreement – The treatment is necessary to enter into and fulfill the purchase agreement with you. 
Recipient  Payment service providers, shipping companies, IT system providers, and customer service systems.
Storage time

Personal data included in accounting records is stored in 7 years from the end of the calendar year in which the financial year ended, in accordance with the Accounting Act (SFS 1999:1078).

Information related to complaints, the right of withdrawal, and other customer service matters is saved in uup to 3 years after the last contact in the case, in accordance with the Consumer Purchase Act (SFS 2022:260) and other applicable legal requirements.

If a legal process is ongoing, the personal data may be stored longer until the case is concluded.


This information is necessary for us to process your purchase and fulfill our obligations under the purchase agreement.


4) Hrecording of accounting documentation 

We are legally required to process and store accounting records that may contain personal data, such as invoices, receipts, and other vouchers. 

Purpose Treatment of personal data to comply with statutory requirements for accounting and bookkeeping. 
Personal data - Identifying information (e.g., name, customer number) 
- Contact information (e.g., email address, phone number, address)  
- Purchase information (e.g., order number, purchase history)  
- Payment details (e.g., payment method, transaction information)  
- Delivery details (e.g., delivery address) 
Treatment - Store and archive invoices, receipts, and payment details  
- Comply with the requirements of the Accounting Act and the Swedish Tax Agency  
- Provide documentation during review or audit 
Legal basis Legal obligation – The processing is necessary to fulfill our obligations under the Accounting Act (SFS 1999:1078) and the requirements of the Swedish Tax Agency. 
Recipient Accounting and auditing firms, the Swedish Tax Agency, and other authorities in case of legal requirements.
Storage time Accounting records are saved in 7 years from the end of the calendar year in which the financial year ended, in accordance with the Accounting Act (SFS 1999:1078). Thereafter, the data is deleted or anonymized, unless it needs to be retained longer according to other legal requirements.


These details are processed only to the extent required by law and are deleted or anonymized after the retention period has expired. 

5) HRegistration of user account in webshop

When you register a user account in our Webshop, we process certain personal data to manage your account and simplify your shopping experience.
 Purpose Create, manage, and maintain your user account in the Webshop.
Personal data - Contact information (email address)  
- Identifying information (e.g., name, if you choose to register it)  
- Account and user information (e.g., login details, order history) 
Treatment - Create and manage your user account  
- Enable smooth handling of orders and payments  
- Give you access to order history and simplify future purchases  
- Manage technical support and ensure that the account functions correctly
Legal basis Legitimate interest – We have a legitimate interest in managing your user account to facilitate your shopping experience. 
Recipient IT suppliers for webshop operation and technical support. 
Storage time The information is saved as long as you have an active account. If you have not made any purchases in 5 years then the account is deleted automatically. You can choose to close your account at any time, after which the data will be deleted within 30 days, if they no longer need to be saved according to the law. 


Providing this personal data is voluntary, but if you choose not to register an account, certain features, such as saved order history and faster checkout, may be unavailable to you


6) Mailing and handling of nnewsletter 

We process your email address in order to send you newsletters about our products, offers, and news. The processing is divided into two parts:   

- Newsletter dispatch: If you choose to subscribe to our newsletters, we will process your email address to send these mailings to you. 

Purpose Send newsletters with offers and information about our products and services. 
Personal data - Contact informationfter: Email address 
Treatment - Send newsletters to subscribers  
- Manage unsubscribes and updates of email lists 
Legal basis Consent – You give your active consent to receive newsletters. 
Recipient Email service providers for handling of newsletter mailing. 
Storage time The data is stored as long as you are an active subscriber and do not withdraw your consent. If you unsubscribe, your email address will be removed from our mailing list, but may be retained in a blocklist to ensure that you do not receive unwanted mailings in the future.


You can withdraw your consent at any time by clicking the unsubscribe link in the newsletter. 

- Handling of blocklist upon deregistration: If you unsubscribe from our newsletters, your email address will be stored on a blocklist to ensure that you do not receive any more mailings by mistake. 

Purpose Ensure that unsubscribed users do not receive newsletters after unsubscribing. 
Personal data - Contact information: Email address 
Treatment - Store email address in a blocklist to prevent future mailings  
- Handle manual deletion requests from the blocklist 
Legal basis Legitimate interest – We have a legitimate interest in ensuring that deregistered users do not receive newsletters by mistake. 
Recipient Email service providers that handle our blocklist.
Storage time Your email address remains on the blocklist for up to 10 years, unless you request that it be deleted earlier.


If you want your email address to be removed from the blocklist as well, you can contact our customer service and request this. Please note that if your email address is removed from the blocklist, you may receive newsletters again if it is registered anew. 


7) Handling of requests for statutory rights 

When you contact us to exercise your rights under applicable law, such as the right of withdrawal, the right to make a complaint, or your rights under the GDPR, we process your personal data to handle and document your request. 
Purpose Handling of requests for the exercise of rights under the law (for example, right of withdrawal, right to claim defects, GDPR rights). 
Personal data - Identifying information (e.g., name, customer number)  
- Contact information (e.g., email address, phone number, address)  
- Purchase information (e.g., order number, purchase history)  
- Payment details (e.g., transaction information, refund information)  
- Delivery details (e.g., delivery address)  
- Customer service cases (e.g., communication regarding requests) 
Treatment - Verify the identity of the requester  
- Manage and document requests  
- Ensure correct handling and compliance with legal requirements
Legal basis Legal obligation – The processing is necessary to fulfill obligations under consumer protection legislation and GDPR. 
Recipient Authorities under legal requirements, IT suppliers, and customer service systems for handling requests. 
Storage time 

Data related to a GDPR request is normally stored in 3 years after the case has been closed, based on the limitation periods for complaints and supervisory cases. During an ongoing legal process, the data is saved as long as it takes until the process is completed, or longer if legislation requires it.

Data related to complaints and consumer rights are stored normally in 3 years after the case has been closed, based on prescription periods for complaints. During an ongoing legal process, the information is saved as long as it takes until the process is completed, or longer if required by law.

 

Information about your rights under GDPR can be found in section 11 below. 


8) Handling and investigation of security incidents

In the event of a security incident involving personal data, we process relevant personal data and technical information to investigate and manage the incident in accordance with applicable legal requirements. 

Purpose Handling and investigation of security incidents involving personal data.
Personal data - Identifying information (e.g., name, contact details)  
- Technical data (e.g., IP address, log files, device information)  
- Incident-related information (e.g., description of the incident and impact) 
Treatment

- Investigate, manage, and document security incidents 

- If necessary, inform the affected data subjects and relevant authorities in accordance with GDPR (Articles 33–34) 

- Implement measures to minimize damage and prevent future incidents 
Legal basis Legal obligation – The processing is necessary to fulfill our obligations under Articles 5.2, 33, and 34 of the GDPR, which includes documenting all personal data incidents and, if necessary, notifying the supervisory authority as well as informing the affected data subjects. 
Recipient

- Supervisory authorities (e.g., the Swedish Authority for Privacy Protection) in case of notification obligation.

- IT security providers for technical analysis and measures when needed.

- Internal investigation teams handling incidents.
Storage time Incident documentation is saved in 5 years after the investigation has been completed, if no further supervision or legal process is ongoing. In the case of an ongoing government investigation, supervisory matter, or legal proceeding, the documentation may be retained longer in accordance with applicable legislation.


If an incident requires us to inform the affected data subjects, we will do so as soon as possible in accordance with applicable law. 


9) Direct marketing

We process personal data in order to be able to offer our existing or previous customers relevant information, campaigns, and offers. The processing is mainly done via email or other means of communication. 

Purpose Direct marketing of our products and services via email or other communication channels. 
Personal data - Identifying information (e.g., name)  
- Contact information (e.g., email address, phone number)  
- Purchase information (e.g., previous purchases, areas of interest)  
- Marketing preferences (e.g., preferred communication channels) 
Treatment - Send marketing mailings via email or other channels  
- Customize campaigns and offers based on the customer's preferences  
- Analyze previous purchases and interactions to improve the relevance of our mailings 
Legal basis Legitimate interest – We have a legitimate interest in marketing our services to existing and earlier customers. 
Recipient  Email and marketing providers. 
Storage time The data is stored as long as we have an active customer relationship or for up to 24 months after the last interaction, unless the registered person has previously objected to direct marketing. Upon objection to direct marketing, the data is deleted from the marketing list but may be saved in a blocklist to ensure that no future mailings occur.


You can object to our processing of your personal data for direct marketing at any time by clicking the unsubscribe link in our mailings or by contacting us. Our contact information can be found at the end of this privacy noticede.

10) Protection against fraud and crime

We process personal data to protect our business, our customers, website visitors, and other affected parties against fraud and other crimes. 

Purpose Discover, prevent, and manage fraud and other crimes that may affect our business or our customers. 
Personal data - Identifying information (e.g., name)  
- Contact information (e.g., email address, phone number)  
- Account and user information (e.g., login details, IP address)  
- Purchase information (e.g., order history, buying patterns)  
- Payment information (e.g., transaction details, payment method)  
- Delivery information (e.g., delivery address) 
Treatment - Identify and analyze suspicious activities  
- Detect and prevent fraud attempts  
- Take preventive measures to ensure safety  
- Report suspected crimes to authorities, such as the Police 
Legal basis Legitimate interest – We have a legitimate interest in preventing and detecting fraud as well as protecting our business and our customers. 
Recipient Authorities (e.g. the Police in case of legal requirements), security services, and IT providers for fraud prevention. 
Storage time Information related to suspected fraud attempts is saved in up to 24 months after discovery, if no further investigation or legal process is ongoing. In the case of an ongoing official investigation or legal proceedings, the data may be stored longer in accordance with applicable legislation.


The processing of this personal data is an important part of our work to maintain security and integrity in our operations. If an investigation leads to legal action, the personal data may be stored longer in accordance with legal requirements.

8. STORAGE LOCATION

We always strive to process personal data within the European Union (EU) or the European Economic Area (EEA). However, in some cases, personal data may be transferred and processed outside the EU/EEA. To ensure adequate protection of personuppgifter vid sådana överföringar vidtar vi lämpliga skyddsåtgärder. Det kan inkludera att inhämta samtycke, använda standardavtalsklausuler som godkänts av Europeiska kommissionen eller säkerställa att mottagarlandet har adekvata dataskyddslagar.  

Your personal information will initially be processed in Ireland and will then be transferred outside of Europe for storage and further processing, including to Canada and the USA. For more information on how data transfers comply with GDPR, see Shopify'sGDPR Whitepaper. 

9. STORAGE TIME
We only process personal data så länge det är nödvändigt för att uppfylla de ändamål för vilka de samlades in, inklusive eventuella rättsliga, accounting or reporting requirements, in accordance with the principle of storage minimization under Article 5.1 e of the GDPR. 

Den exakta lagringsperioden beror på the type of personal data and ändamåeasy to treat. För detailed information about storage periods för specific treatments, see the relevant sections in chapter 7 of this privacy notice. 

If we have a rättslig skyldighet att bevara personuppgifter (t.ex. enligt bokföringslagen, penningtvättslagstiftning eller konsumentköplagen), the data is stored så länge as krävs according to law. 

If a rättslig dispute, government investigation or claim is directed against us, we may behålla personuppgifterna tills äthe proceeding has ended or the statutory limitation period löpt ut. 

När personuppgifter inte längre behöwhere they are stored, deleted, or anonymized in accordance with våra internal routines and toämplig lagstiftning. 

If you requestär att vi raderar dina personuppgifter, kan vi vara skyldiga att behålla vissa uppgifter för to fulfill contractual, statutory, or regulatory obligations. 

För att sächristmasälla att vi följer gällande lagkrav och affärsmässiga behov, granskar vi regelbundet våra storage policies and updates them as needed.

10. SHARING OF PERSONAL INFORMATION

We handle personal data with care and the sharing of personal data is done in accordance with applicable data protection legislation. For example, we may need to share personal data with:  

Service Providers: We use services from various providers to help us deliver our services and comply with applicable law as well as our agreements with you, as described above. For example, server hosting, accounting systems, and other cloud services. Furthermore, we use Shopify to operate our Webshop. You can read more about how Shopify processes personal data here: https://www.shopify.com/legal/privacy. Such tjänsteleverantörer agerar ibland som våra personuppgiftsbiträden, vilket innebär att de behandlar personuppgifter för vår räkning enligt våra instruktioner. Instruktionerna regleras i särskilda personuppgiftsbiträdesavtal i enlighet med artikel 28 i GDPR. Legal basis for the processing of personal data is our Justifyde interest.  

Authorities: We may share youra personal data to comply with applicable laws and regulations if we are legally obliged to do so, for example to the police, tax authorities or other authorities, to fulfill our legal obligations. Legal basis for these processing activities: Legal obligation. We can also share personal data to respond to a summons, search warrant, or other legal request for information we receive, or to otherwise protect our rights. Legal basis for the processing of personal data is our Justifyde interest.  

11. YOUR RIGHTS

As a registered individual under GDPR, you have the röljande rättigheter: 

Rätt till information: Du har rätt att få clear information about how we process your personal data, including ändamål, categories of data and any recipients. This information is provided in this privacy notice. 

Rätt till tillgång: You can requestära en kopia av dina personuppgifter som vi behandlar och få information about the treatment, including any gränsöexceeding överförings and protectionåtgärder. 

Rätt to rättelse: If your personal data är felaktiga eller ofullständiga har du rätt att få the corrected. We inform in sådana fall berörda receiver, if it är möjligt och inte för betungande för us. You have ärätt to information about the recipients. 

Rätt till radering ("rätten att bli bortglömd"): Under certain circumstancesändigheter kan du begära att vi raderar dina personuppgifter, exempelvis om de inte längre behövs för det ändamål de samlades in för or if you årevokes your consent. Rättsliga skyldigheter kan dock kräva fortsatt lagring. Om vi raderar dina personuppgifter, informerar vi berörda receiver, if it är möjligt och inte för betungande för us. You have även rätt to information about the recipients. 

Rätt till begränsning av behandling: You can begära att vi begränsar behandlingen av dina personuppgifter, exempelvis om du bestrider deras riktighet eller om behandlingen är illegal but you opposeätter dig radering. Vid begränsning får vi endast lagra uppgifterna eller behandla dem med ditt samtycke eller för att fastställa, utöwhat or försvara rättsliga anspråk. We inform you när begränsningen upphör. 

Rätt till dataportabilitet: Om vi behandlar dina personuppgifter baserat på consent or agreement do you have rätt att få dem i ett strukturerat, maskinläsbart format and that få them överförda till en annan personuppgiftsansvarig, däIs it är tekniskt möjligt. 

Rätt att invända: You can invända mot vår processing of your personal data if it is based on på berättigat interest. We hår only continuesätta treatment if we can show berättigade skäl som vägives heavier än your interests. However, you always rätt att invända mot behandling för direct marketingföring, which impliär att vi omedelbart måste upphöra med sådan treatment.

Right not to be subject to automated decision-making: You have the right not to be subject to decisions based solely on automated processing, including profiling, if these decisions significantly affect you. Exceptions apply if the decision is necessary for the performance of a contract or is permitted by law. If an automated decision has been made, with or without profiling, you can request that it be reviewed or contested. We are committed to fully automated decision-making that has a legal or otherwise significant effect by using customer data. Springt data processor Shopify uses limitt automated decision-making to prevent fraud that has no legal or otherwise significant effect on you. Services that include elements of automated decision-making include: 

  • Temporary blacklist of IP addresses associated with repeated failed transactions. This blacklist remains for a few hours. 

  • Temporary blacklist for credit cards linked to rejected IP addresses. This blacklist remains for a few days. 

12. HOW TO EXERCISE YOUR RIGHTS  

You can contact us via the contact details provided at the end of the privacy notice if you want to opt outöva någon av dina rättigheter enligt GDPR. Att utöva dina rättigheter är kostnadsfritt, såexpand your requestädid not run är repetitive, unfounded or unreasonable, tå we have rätt att ta ut en rimlig avgift eller neka begäran. 

För att säkerställa att vi behandlar begäran korrekt kan vi behöva verify your identity. We answer your requestäran inom en månad, men vid komplexa äthe render or hög workload can the response time förlängas med upp till två månader. I sådana fall informerar vi dig om förlängningen inom den första månaden. 

Observera att vissa rättigheter är begränsade enligt GDPR och endast gäller under specifika förutsättningar. If we cannot fulfill your reqäran informs you about scälen, in accordance with gällande lag.

13. CHANGES

We update this privacy notice as needed to ensure that the information is accurate and up to date. You are responsible for staying informed by reading the latest version, which is always available at this link: Privacy Policy – Scandinavian SkiPass. If we make significant changes and are legally required to inform you, we will notify you of this. 

14. QUESTIONS OR COMPLAINTS 

For more information about our privacy practices, if you have any questions, or if you want to make a complaint, please contact us via email jacob.kistner@gmail.com or by mail using the following information: Scandinavian SkiPass AB, Toppvägen 4, 832 96 Frösön, Jämtlands County, Sweden 

If you är missnöjd with vår behandling av dina personuppgifter kan du lämna complaintsål to the Swedish Authority for Privacy Protection (IMY):  

  • Phone: 08-657 61 00. 

  • Postal address: The Swedish Authority for Privacy Protection, Box 8114, 104 20 Stockholm. 


You can also contact a supervisory authority in your country of residence. A list of the EU's supervisory authorities can be found here: https://edpb.europa.eu/about-edpb/about-edpb/members_en.