Privacy policy
Your privacy is important to us. It is Tavex AB’s policy to respect your privacy and to comply with applicable laws and regulations regarding any personal information we may collect about you, including on our website, https://smyckesguld.se, and other websites we own and operate.
Personal data is any information about you that can be used to identify you. This includes information about you as a person (such as your name, address and date of birth), your devices, payment details and also information about how you use a website or online service.
If our website contains links to third-party sites and services, please be aware that these sites and services have their own privacy policies. After following a link to third-party content, you should read their published privacy policy for information on how they collect and use personal data. This privacy policy does not apply to your activities after you leave our website.
This policy is valid from May 23, 2024.
Last updated: May 23, 2024.
Information we collect
The information we collect falls into two categories: ‘voluntarily provided’ information and ‘automatically collected’ information.
“Voluntarily provided” information refers to any information you knowingly and actively give us when you use or participate in any of our services and promotions.
“Automatically collected” information refers to any information automatically sent by your devices when you use our products and services.
Log data
When you visit our website, our servers may automatically log standard data provided by your browser. It may include your device’s IP address, your browser type and version, the pages you visit, the time and date of your visit, the time you spend on each page and other details about your visit.
In addition, if you encounter certain errors while using the site, we may automatically collect data about the error and the circumstances surrounding its occurrence. This data may include technical details about your device, what you were trying to do when the error happened and other technical information related to the problem. You may or may not be notified of such errors, even at the moment they occur, that they have occurred or what the nature of the error is.
Be aware that although this information itself may not be personally identifiable, it may be possible to combine it with other data to personally identify individuals.
Device data
When you visit our website or interact with our services, we may automatically collect data about your device, such as
- Type of device
- Operating system
- Geolocation data
The data we collect may depend on the individual settings of your device and software. We recommend that you check the policies of your device manufacturer or software provider to learn what information they make available to us.
Personal data
When you interact with Tavex AB, we may request personal data to facilitate your transactions or subscribe you to our services. This information may include:
- Name
- E-mail address
- Personal identification number
When you decide to sell your gold through the Tavex AB website, we require this information to communicate with you about the status of your transaction and ensure the safe and efficient processing of your sale.
User-generated content
We define “user-generated content” as any form of content, such as reviews, ratings, images and videos, that you voluntarily provide for publication on our website or for reuse on our social media channels. This content is usually linked to the account or email address from which it was sent.
Please note that any content you submit to Tavex AB for publication will become public upon publication after our review or vetting process. Once published, it can be accessed by third parties and is no longer protected by this privacy policy. We encourage you to consider the sensitivity of any information you provide under this category.
Legitimate grounds for processing your personal data
We collect and use your personal data only when there is a legitimate business reason to do so. We limit the collection of personal data to what is strictly necessary to facilitate your transactions and interactions with our services, such as buying or selling gold, receiving payments or sending communications related to our services.
Collection and use of information
We collect personal data through various interactions on our website that allow us to offer a tailored and secure service. This information is collected when you:
- Sell gold jewelry to us, where we offer leading market prices and ensure a secure transaction.
- Order a gold evaluation kit via our website to safely send your gold to us for evaluation.
- Subscribe to receive updates via email or our social media channels on the latest gold prices, investment products and other services.
- Using a mobile device or browser to access our content, improving your experience with optimized service and content delivery.
- Contacting us via email, social media or other similar technologies for inquiries, support or feedback.
- Interact with our brand by mentioning us on social media, which helps us understand and respond to customer perceptions and needs.
We use the information collected to:
- Provide you with core features and services of our platform, such as real-time updates on gold prices and the availability of our buying services.
- Deliver the products and services you have requested, such as gold valuation kits and instant transaction processing for the sale of your gold.
- Communicate effectively with you about your transactions, ensuring transparency and satisfaction in our service delivery.
- Improve your overall experience by personalizing our interactions and offers based on the data you provide combined with market research.
In addition, we may combine the personal data you directly provide with automatically collected information and general market data from reliable sources. This integration allows us to customize and improve your experience based on your specific preferences and interactions. For example, if you provide your location, we may adjust the content and services offered to adapt them to local market conditions, currency and language preferences, ensuring a seamless and customized experience on our website.
We ensure that the personal data we collect is not processed in a way that is contrary to these purposes. Our commitment is to use this data responsibly, maintaining transparency and integrity in all our customer interactions while protecting your privacy and security according to industry best practices.
Security of your personal data
We are committed to protecting your personal information through commercially acceptable means to prevent loss, theft, and unauthorized access, disclosure, alteration, or destruction. We use a range of security measures including encrypted communication channels, secured databases and strict internal policies for handling all personal data.
Because no electronic storage or transmission method is completely secure, Tavex AB cannot guarantee the absolute security of your personal data. We recommend that you also take measures to protect your personal data when using our services, such as choosing strong passwords and not sharing your personal data publicly on our platforms.
How long we keep your personal data
We keep your personal data only for as long as we need it. This time may depend on what we use your information for, in accordance with this privacy policy. For example, if you have provided us with personal information such as an e-mail address when contacting us about a specific request, we may retain this information for the duration of your request and for our own records so that we can effectively handle similar requests in the future. If your personal data is no longer required for this purpose, we will delete it or make it anonymous by removing all details that identify you.
However, if necessary, we may retain your personal data to comply with a legal, accounting or reporting obligation or for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes.
Children’s integrity
We do not target any of our products or services directly to children under the age of 13 and do not knowingly collect personal data from children under the age of 13.
Disclosure of personal data to third parties
We may disclose personal data to:
- a parent company, subsidiary or affiliate of our company
- third party service providers to enable them to provide their services, including (without limitation) IT service providers, data storage, hosting and server providers, advertising networks, analysts, debugging logs, collection agencies, maintenance or problem resolution service providers, marketing providers, professional advisors and payment system operators
- our employees, contractors and/or related entities
- our existing or potential agents or business partners
- credit reference agencies, courts, tribunals and regulators, if you fail to pay for goods or services we have provided to you
- courts, tribunals, regulators and law enforcement authorities, as required by law, in connection with any actual or anticipated legal proceedings, or to establish, exercise or defend our legal rights
- third parties, including agents or subcontractors who help us provide information, products, services or direct marketing to you
- third parties to collect and process data
- an entity that buys, or to which we transfer all or substantially all of our assets and operations
Third parties we currently use include:
- Google Analytics
- MailChimp
International transfers of personal data
The personal data we collect is stored and/or processed in Sweden, or where we or our partners, affiliates and third-party service providers have facilities.
The countries where we store, process or transfer your personal data may not have the same data protection laws as the country where you originally provided the information. If we transfer your personal data to third parties in other countries: (i) we will carry out these transfers in accordance with the requirements of applicable law; and (ii) we will protect the transferred personal data in accordance with this Privacy Policy.
Your rights and control over your personal data
Your choice: By providing Personal Data to us, you understand that we will collect, hold, use and disclose your Personal Data in accordance with this Privacy Policy. You do not have to provide personal data to us, but failure to do so may affect your use of our website or the products and/or services offered on or through it.
Information from third parties: If we receive personal data about you from a third party, we will protect it in accordance with this privacy policy. If you are a third party providing personal data about someone else, you represent and warrant that you have that person’s consent to provide the personal data to us.
Marketing consent: If you have previously agreed to us using your personal data for direct marketing purposes, you can change your mind at any time by contacting us using the details below.
Access: You can request information about the personal data we hold about you.
Correction: If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant or misleading, please contact us using the details provided in this Privacy Policy. We will take reasonable steps to correct information that is found to be inaccurate, incomplete, misleading or out of date.
Non-discrimination: We will not discriminate against you for exercising any of your rights over your personal data. Unless your personal data is required to provide you with a specific service or offering (for example, processing and fulfilling orders), we will not deny you goods or services and/or charge you different prices or rates for goods or services, including by granting discounts or other benefits or imposing penalties or providing you with a different level or quality of goods or services.
Data breach notification: We will comply with laws applicable to us in the event of a data breach.
Complaints: If you believe that we have breached a relevant data protection law and wish to make a complaint, please contact us using the details below and provide us with full details of the alleged breach. We will promptly investigate your complaint and respond to you in writing, with the outcome of our investigation and the steps we will take to address your complaint. You also have the right to contact a supervisory authority or data protection authority in relation to your complaint.
Unsubscribing: To unsubscribe from our email database or opt-out of communications (including marketing communications), please contact us using the details provided in this Privacy Policy, or opt-out using the unsubscribe options provided in the communication. We may need to request specific information from you to help us confirm your identity.
Use of cookies:
We use “cookies” to collect information about you and your activity on our website. A cookie is a small data file that our website stores on your computer and accesses each time you visit, so we can understand how you use our website. This helps us to serve you content based on the preferences you have indicated.
Please see our Cookie Policy for more information.
Business transactions:
If we or our assets are acquired, or in the unlikely event that we go bankrupt or cease trading, we would include data, including your personal data, among the assets transferred to any parties acquiring us. You acknowledge that such transfers may occur, and that the parties acquiring us may, to the extent permitted by applicable law, continue to use your Personal Data under this Policy, which they will be required to adopt as the basis for any ownership or usage rights we have over such information.
Limits of our policy:
Our website may link to external websites that are not operated by us. Please be aware that we have no control over the content and policies of these websites, and cannot accept responsibility or liability for their respective privacy practices.
Amendments to this policy:
We may, at our discretion, change our privacy policy to reflect updates to our business processes, current acceptable practices, or legislative or regulatory changes. If we decide to change our privacy policy, we will post the changes here via the same link through which you access this privacy policy.
If required by law, we will ask for your consent or give you the opportunity to opt-in or opt-out, as applicable, of any new uses of your personal data.
Additional information for compliance with the General Data Protection Regulation (GDPR) (EU)
Data Controller / Data Processor
The GDPR distinguishes between organizations that process personal data for their own purposes (known as ‘data controllers’) and organizations that process personal data on behalf of other organizations (known as ‘data processors’). We, Tavex AB, located at the address indicated in our contact section, are a data controller with respect to the personal data you provide to us.
Legal basis for processing your personal data
We will only collect and use your personal data when we have a legal right to do so. In any case, we will collect and use your personal data lawfully, fairly and transparently. If we seek your consent to process your personal data, and you are under the age of 16, we will seek your parent’s or guardian’s consent to process your personal data for that specific purpose.
Our legal bases depend on the services you use and how you use them. This means that we only collect and use your information on the following grounds:
Consent from you:
Where you give us consent to collect and use your personal data for a specific purpose. You can withdraw your consent at any time using the facilities we provide; however, this will not affect any use of your information that has already taken place. You can provide a physical address to receive orders. While you can change or delete this address at any time, this will not affect orders that have already been shipped. If you have any further questions about how to withdraw your consent, please feel free to ask using the details provided in the Contact Us section of this Privacy Policy.
Performance of a contract or transaction
Where you have entered into a contract or transaction with us, or to take preparatory steps before we enter into a contract or transaction with you. For example, if you buy a product, service or subscription from us, we may need to use your personal and payment data to process and deliver your order.
Our legitimate interests
Where we consider it necessary for our legitimate interests, such as providing, operating, improving and communicating our services. We consider our legitimate interests to include research and development, understanding our audience, marketing and promoting our services, actions taken to operate our services effectively, market analysis and actions taken to protect our legal rights and interests.
In accordance with the law
In some cases, we may have a legal obligation to use or retain your personal data. Such cases may include (but are not limited to) court orders, criminal investigations, government inquiries and regulatory obligations. If you have any further questions about how we retain personal data to comply with the law, please feel free to ask using the details provided in the Contact Us section of this Privacy Policy.
International transfers outside the European Economic Area (EEA)
We will ensure that all transfers of personal data from countries within the European Economic Area (EEA) to countries outside the EEA are protected by appropriate safeguards, for example by using standard data protection clauses approved by the European Commission, or the use of binding corporate rules or other legally accepted means.
Your rights and control over your personal data
Restrict: You have the right to request that we restrict the processing of your personal data if (i) you are concerned about the accuracy of your personal data; (ii) you consider that your personal data have been processed unlawfully; (iii) you need us to retain the personal data solely for the purpose of making a legal claim; or (iv) we are considering your objection in relation to processing based on legitimate interests.
Objection to processing: You have the right to object to the processing of your personal data based on our legitimate interests or the public interest. If this is done, we will need to provide compelling legitimate grounds for the processing that override your interests, rights and freedoms, to proceed with the processing of your personal data.
Data portability: You may have the right to request a copy of the personal data we hold about you. Where possible, we will provide this information in CSV or other easily readable machine-readable format. You may also have the right to request that we transfer this personal data to a third party.
Erasure: You may have the right to request that we erase the personal data we hold about you at any time, and we will take reasonable steps to delete your personal data from our current records. If you ask us to delete your personal data, we will let you know how the deletion affects your use of our website or products and services. There may be exceptions to this right for specific legal reasons which, if applicable, we will indicate to you in response to your request. If you cancel or delete your account, we will delete your personal data within 90 days of deleting your account. Please be aware that search engines and similar third parties may still retain copies of your personal data that has been made public at least once, such as certain profile information and public comments, even after you have deleted the information from our Services or deactivated your account.
Contact us for more information
If you have any questions or concerns about your privacy, you can contact us:
Via dpo@tavex.se or tavex@tavex.se