Aumla AB
Privacy Policy
General information
Aumla AB (“Aumla”, “we”, “us”) is committed to protecting the privacy, integrity and security of your personal data.
We are fully aware of the importance of your privacy. We would, therefore, like to take this opportunity to give you a quick overview about our security measures and how we protect your personal data.
This Privacy Policy explains how information about you is collected, used and disclosed by Aumla and our subsidiaries when you use our website aumla.se or aumla.passion.io (the “Website” or the “Service”) or when you otherwise interact with us. Regarding the Service, we comply with the applicable laws and regulations.
As you use our Service we want you to know how we collect, store and process your information. We created this Privacy Policy for you to get all the information you need to protect your privacy. We would like you to carefully read all the information we provide you and if there are any questions left, please do not hesitate to contact us at any time support@aumla.se
1. Who is responsible for processing your personal data?
Aumla AB is the legal entity which is the controller and therefore responsible for the lawful processing of personal data we collect. Aumla owns and operates the web site www.aumla.se , aumla.passion.io and aumlaacademy.com
2. What kind of information qualifies as Personal Data?
“Personal Data” shall mean any information relating to an identified or identifiable natural person (‘Data Subject’), e.g. your name, your address, your telephone number or your e-mail address. An identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his physical, physiological, mental, economic, cultural or social identity.
3. What kind of personal data do we collect?
Primarily, Aumla collects personal data directly from you when you contact us or when submitting any kind of information to us, e.g when you sign up to an account. We collect personal data such as your name and your contact information such as your phone number, your e-mail address and your physical address. We may also collect date such as job title and function, and other personal data concerning your preferences relevant to our services.
During an inquiry for our services, we may collect information about you from the references that you have provided. Even though you do not directly provide us with any Personal Data we may collect anonymous information about you, such as Google Analytics data.
3.1 Information you submit to us
The use of our Website and Service requires you to create an account in our app or website (aumla.se & aumla.passion.io). When you create an account we will ask you for your Personal Data, in particular for your name, postal address and email address.
3.2 Information we get from your use of Service
As described in sec. 3 we may collect information concerning your usage behaviour. We may collect different data in this regard. For example we may collect information about how you got to our Website and how you use our Service. This means we may take a look on operating systems you use our Service with. We also may aggregate which parts of our Service you use the most.
3.3 Information related to your business
Business related information, including information provided in the course of the contractual or client relationship between you or your organisation and Aumla, or otherwise voluntarily provided by you or your organisation, and other personal data concerning your preferences relevant to the service(s) for which you hired us; Employment related information, such as names of employees, job title and function, and other personal data relevant for consultancy services.
3.4 Information from surveys
In our mission to increase Health and Wellbeing, we also perform surveys regularly.
Information collected in these services includes contact information, career information, health and wellbeing information, work related preferences and other subject related information.
4. How do we collect your personal data?
We may collect your personal data under the following circumstances:
When you or your organisation engage in services, from us
When you or your organisation provides, or offer to provide, services to us
When you correspond with us by e-mail or or when you correspond directly with us, including conversation with our consultants or experts by phone or directly face-to-face
When you or your organisation make a request or otherwise interact with our web page
When you attend our courses, seminars or other events, or signing up to receive other information from us
5. How will we use your personal data?
Unless you give us your separate and express consent to other uses of your Personal Data, we collect, store and process the Personal Data that you submit to us only to the extent required for you to use our Service, or to the extent that such use is allowed in accordance with other legal provisions, even without your consent, in particular for responding to your inquiries.
The Personal Data you directly submit to us will only be used to identify you as a customer of our Service, to contact you if necessary and to issue invoices. We will store all Personal Data you submitted directly to us in our database. All Personal Data will be handled by Aumla and aumla.Passion.io in strict confidence according to legal provisions.
Besides, we only collect anonymous information about you to provide better service to all of our users. We will use the anonymous information to evaluate our Service activities and improve our Service.
We may use your personal data (only) for the following purposes:
To maintain adequate records of you
To provide, administer and manage health and wellbeing services or solutions
To administer and manage communication with you
To administer and manage our relationship with you as a participant at our courses, seminars or other events
To administer and manage our relationship with you as a subscriber
To provide you with information and offers related to our services.
The above-mentioned purposes will be processed on one or more of the following legal grounds:
Because it is necessary for us to do so to perform our services in accordance with a contract between you and us
Because it is necessary based on our legitimate interests
Because it is necessary to comply with our legal obligations such as to keep records of our accounting or taxation purposes
5. 1 Disclosure and transfer of your personal data
We will only transfer or process personal data to third parties if this is required for statutory or legal reasons and/or if we have your explicit consent to do so. One third party we share the data with is Passion.io, as Passion.io provides end users access to our products and services that are created with PassionApps.com; another party we share your data with is the author and/or owner which created the products and services you subscribed to, in order for him/her to provide the necessary services for you.
We shall be entitled to collect, process and use your personal data for the purpose of identifying, delimiting and removing malfunctions and errors in the Service. If the requirements are met, we may collect, process and use personal data that is necessary to uncover any unlawful use of the Service.
Other third parties includes service providers we have retained in connection with the legal services we provide, such as consultants, experts and other health specialists such as companies providing health and wellbeing services relevant to the service(s) for which you hired us.
We only collaborate with parties that process personal data within the EU/EEA. To the extent that your personal data will be transferred to a country outside the EU/EEA, not recognised by GDPR as providing an adequate level of protection for personal data, such transfer will be covered by a framework recognised by GDPR and relevant authorities to ensure providing an adequate level of (such as the EU Commission’s standard contractual clauses).
5. 2 What information do we collect from our customers and why?
We collect our customers name, email, shipping and billing address, payment details, company name, phone number, IP address, information about orders you initiate, information about the device and browser you use.
We use this information to provide our customers with the Services, including supporting and processing orders, risk and fraud screening, authentication, and payments. We also use this information to improve our Services.
We use some of the personal information you provide us to conduct some level of automated decision-making — for example, we use certain personal information (for example, IP addresses or payment information) to automatically block certain potentially fraudulent transactions for a short period of time.
5.3 When and why do we share this information with third parties?
Aumla works with a variety of third parties and service providers to help provide our customers with the Services and we may share personal information with them to support these efforts.
We may also share your information in the following circumstances:
to prevent, investigate, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of our Terms of Service or any other agreement related to the Services, or as otherwise required by law.
to conform to legal requirements, or to respond to lawful court orders, subpoenas, warrants, or other requests by public authorities (including to meet national security or law enforcement requirements).
Personal information may also be shared with a company that acquires our business or the business of an author and/or owner whose app you visit or access, whether through merger, acquisition, bankruptcy, dissolution, reorganization, or other similar transaction or proceeding.
6. Google Analytics
The following web analytic service is used to improve the user experience of our Services:
We use Google Analytics, a service for the marketing analysis of this Website, of Google Inc. (“Google”). Google Analytics uses codes consisting of text and numbers, which will be stored on your computer and which allow for an analysis of the use of the Website (“Cookies”). The information generated by the Cookie about your use of the Website (including your IP address) will be transferred to and stored by a Google Server. Google will use this information, to evaluate your use of the Website, to prepare reports about the Website activities for the Website operators and to provide further services connected to the use of websites and the use of the Internet. Google may transfer this information to third parties, if legally obliged to do so or if third parties process these data on behalf of Google. In no case, Google will connect your IP address with other data from Google.
You can remove or deactivate such Cookies using the settings of your computer; in such a case you might not be able to fully use all functions of this Website. By using this Website you agree to the processing of your personal data by Google to the extent and purpose stated above. You can refuse to allow your data to be passed on by using a deactivation add-on for browsers under https://tools.google.com/dlpage/gaoptout?hl=en.
7. Facebook Plugin
The Aumla app uses social plugins (“Plugins”) of the social network facebook.com, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). You can view the list of Facebook social plugins and see what they look like.
If you click on a page of our Website that contains this sort of Plugin, your browser establishes a direct connection with the Facebook servers. Facebook directly transfers the Plugin content to your browser which embeds the latter into the Website. We cannot influence the scope of data that Facebook collects with the help of this Plugin, meaning that the information we provide is based on our current knowledge.
The embedding of the Plugin informs Facebook that you accessed the respective page of our Website. If you are logged into Facebook, Facebook can assign the visit to your Facebook account. If you interact with the Plugins, e.g. by clicking on the “Signup with Facebook” button, the corresponding information is transmitted from your browser directly to Facebook, where it will be saved. If you are not a member of Facebook, it is still possible for Facebook to identify and save your IP address. For information on the purpose and scope of the data collection and the further processing and utilisation of the data by Facebook, as well as your rights in this respect and the settings that you can adjust to protect your privacy, please consult Facebook’s data protection information: http://www.facebook.com/policy.php.
If you are a member of Facebook and want to prevent Facebook from collecting data on you via our Website and linking this data to your member data stored with Facebook, you may not signup with Facebook and log out of Facebook before you visit our Website. You will be able to connect our Service with Facebook via the Facebook Signup with Facebook” button on our Website. If you do so your email-address and your Facebook User-ID will be transferred to and stored by PassionApps.com and Passion.io. The Facebook privacy rules apply to the usage of the Signup with Facebook” button. If you do not want your data transferred in the aforementioned way, please refrain from using the “Signup with Facebook” button.
8. Cookies
We make use of cookies to store session information, to help you sign up for our Services, to protect your data and to provide users with a customised Service through identifying unique visitors and their respective usage patterns. Cookies are identifiers (miniature text files) that can be saved temporarily or permanently on a User’s hard drive by the server. Cookies guarantee the consistency of each communication process. Temporary cookies can be used to identify which visits are all part of a single session. Permanent cookies are for pre-recognizing a user, for instance so that individual settings can be made. Users are free to decide whether to let their browser use cookies. All browser programs allow cookies to be deactivated or deleted. When we use cookies no personally identifiable information will be collected.
All information, whether on data processors on our premises or on servers acting on our behalf, remains in complete control of us at all times.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
9. Comments
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
10. Media
If you upload images to the Aumla app you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
11. Stripe /Squarespace/ Apple / Google
If you choose to use our Service we will process payments through our third party credit card processor. All such transactions will be governed by the Stripe privacy policy at stripe.com/privacy. We do not receive or store credit card information into our servers. We receive a transaction “token” and a one-time use ID number so we can validate that the transaction has been successfully completed. Because we do not retain your credit card information, you will need to re-enter your information each time you make a payment.
12. Keep your personal information up to date
You will be able to update your account information that you submitted to us at any time. We would like you to change or delete your information in case it is wrong.
13. Newsletter
You will be able to subscribe to our newsletter on our Website. After you subscribe, we will send you an email to confirm your subscription. Until you unsubscribe to our newsletter, we will use your email address for our own promotion purposes, e.g. providing content related to freelance, ux and web development, if you have given your consent to it. You may cancel your subscription at any time and free of charge by using the link in the newsletter or sending us a notification to: support@aumla.se
14. Security
We employ technical and organizational measures including two-step verification process, password and physical security measures in order to safeguard the Service against loss, theft, misuse, destruction, access, alteration or the disclosure of your data by unauthorized persons.
Despite regular controls a complete protection against all dangers is, however, not possible. The access to your account is possible only after entering your personal password. You should always treat your access information confidentially and close the browser window, once you have ended your communication with us, particularly if you share the use of the computer with others.
We cannot warrant security for data transmitted to our Service because unfortunately, the transmission of information via the internet is not completely secure. Passion.io, Independence284 GmbH is based in Germany. The information we collect is governed by the applicable German law and European directives. If you have any queries about the security of our Service, please do not hesitate to contact us at any time on support@aumla.se
15. Retention periods
We will not keep your personal data longer than what is necessary with regards to the respective purposes of the processing. We will store your personal data for as long as you are a client, or for as long as it is necessary in order to determine whether a business relationship is established or not. Practically, this means that personal data will be sorted out when it is no longer up-to-date or necessary with regards to the purposes for which they were collected or if we have a legal obligation to store the data.
16. Your rights
When we process personal data about you, you as registered have a number of rights. You have the right to contact us at any time with respect to these, and if you wish to exercise any of the rights described below, you can reach us most easily at support@aumla.se
We reserve the right to take appropriate protective and security measures in order to ensure that you are the person you claim to be when you contact us. If you cannot satisfactorily demonstrate your identity, we may not be able to respond to your request.
Access to personal data
You have the right to know what personal data we process about you. If you wish to know, you can get a compiled register extract from us that contains all the personal data we process about you.
Correction and deletion
If we process your personal data incorrectly or if we no longer need the data, you are entitled to have it deleted. If the data is incomplete, you have the right to have it supplemented. Please keep in mind that we may not be able to provide you with our services if you request to have your personal data deleted.
Data portability
In certain circumstances you have the right to receive the data that we process about you in a general, written, machine-readable and structured format. You have the right to do so for the personal data that you have provided to us and which we process with your consent or when the personal data is required to enter into or complete an agreement.
Restrictions to processing
Under certain conditions, you have the right to request that we restrict our processing of your data. This means that we mark the data so that in future we only process it for certain specific purposes. We may not be able to provide you with our services if we restrict the processing of your personal data.
Right to make objections
You have the right to object to the processing of personal data that is carried out to perform a task in the public interest, as part of an exercise by a public authority or after a balance of interests. We do not process your personal information for any of these purposes or on any of these grounds. Therefore, you cannot direct any objections towards our processing on this basis.
Right to lodge a complaint
You have the right to lodge a complaint with the Swedish Data Protection Authority if you believe that we are processing your personal data in an inappropriate manner. You can read more about this on the Swedish Data Protection Authority's website.
We aim to keep your personal data accurate, current, and complete. We encourage you to let us know by contacting us if any of your personal data is not accurate or has changed since you provided us with it.
17. Changes
We may change this Privacy Policy from time to time. We will not reduce your rights under this Privacy Policy without your explicit consent. If we make changes, we will notify you by revising the date at the bottom of the policy and, if the changes are significant, we will provide you with additional notice (such as adding a statement to our Website). To better protect your privacy you may review the Privacy Policy whenever you access the Service to stay informed about our information practices.
18. How to contact us
For more information about our Privacy Policy or if you have any questions, please contact us at: info@aumla.se
This Privacy Policy is applicable from 2020-01-27.