NeuraWin Tech AB - Privacy Policy
Last Updated: November 30,2025
Quick Navigation
Quick Navigation
-
Important information and who we are
NeuraWin Tech AB ("NeuraWin", "we", "us", or "our") is a company organized under the laws of Sweden and acts as the data controller for the personal data described in this Privacy Policy. This Policy explains how we collect and process personal data about visitors to our websites, prospects, customers, partners, and suppliers, and how data protection law safeguards your rights. Our websites and services are not intended for children under 16, and we do not knowingly collect data relating to children in this age group. If you have questions about this Policy or wish to exercise your rights, please contact: privacy@neurawin.net You have the right to lodge a complaint with your local supervisory authority, but we encourage you to contact us first so we can address your concerns.
-
The data we collect about you
Personal data means any information relating to an identified or identifiable natural person. We may collect, use, store, and transfer the following categories of personal data:
-
Identity data:
name, title, role or position, and organization.
-
Contact data:
email address, telephone number, postal or business address, and communication handles
-
Usage and technical data:
IP address, browser type, device identifiers, pages visited, time and date of visits, and other analytics information collected through cookies and similar technologies.
-
Transaction and relationship data:
information about services you have purchased or used, billing contact details, and correspondence related to our business relationship
-
Marketing and communications data:
Your preferences in receiving marketing from us and your communication preferences. We do not intentionally collect special categories of personal data (such as health data, political opinions, or religious beliefs) or data about criminal convictions and offences through our standard website and commercial processes.
-
-
How your personal data is collected
We collect personal data through a combination of:
-
Direct interactions:
when you fill in forms, request information, subscribe to communications, sign up for events, or communicate with us by email, phone, or other channels.
-
Automated technologies:
when you interact with our websites, we automatically collect technical and usage data using cookies, logs, and similar tracking technologies
-
Third parties and public sources:
we may receive technical, contact, or business data from analytics providers, hosting providers, payment and CRM systems, or from publicly available sources such as professional networks, where permitted by law.
Our use of cookies is described in our separate Cookie Policy, where applicable.
-
-
How we use your personal data
We only use your personal data when permitted by law and for specific, legitimate purposes. The main purposes are:
- To operate and improve our websites, products, and services
- To respond to inquiries, provide support, schedule demos, and manage our business relationship with you or your organization.
- To perform and administer contracts, including service delivery, billing, and account management.
- To send relevant information about our services, events, and updates, in line with your preferences and applicable marketing rules
- To maintain security, prevent misuse or fraud, and protect our legal rights.
- To comply with legal, regulatory, and auditing obligations.
We rely on the following legal bases under GDPR:
- Performance of a contract or steps taken at your request before entering a contract
- Our legitimate interests in operating and developing our business, where your interests and fundamental rights do not override those interests.
- Compliance with legal obligations.
- Your consent, where required (for example, certain marketing or non- essential cookies), which you can withdraw at any time.
We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects.
-
Disclosures of your personal data
We do not sell your personal data. We may share personal data with:
You can manage cookies by:
- Service providers acting as processors who provide IT, hosting, analytics, CRM, communication, or other operational services, subject to contractual and confidentiality obligations.
- Professional advisers such as lawyers, auditors, and accountants where necessary for our legitimate business purposes.
- Affiliated or successor entities in the context of corporate transactions (merger, acquisition, or reorganization), where the recipient will continue to use data in accordance with this Policy.
- Public authorities, regulators, or other parties where required by law, regulation, or to protect rights, property, and safety.
We require all third parties to respect the security of your personal data and process it only on our instructions and in accordance with applicable law
-
International transfers
Some service providers or partners may be located outside the European Economic Area (EEA). When personal data is transferred outside the EEA, we ensure an adequate level of protection by using:
- Countries recognized by the European Commission as providing an adequate level of data protection
- Appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.
You may contact us for more information about the specific safeguards used for transfers
-
Data security
We implement appropriate technical and organizational measures to protect your personal data from accidental loss, unauthorized access, alteration, or disclosure. Access to personal data is limited to those employees, contractors, and service providers who have a business need to know and are bound by confidentiality obligations.
If a data breach occurs that is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant authority where required by law
-
Data retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. Retention periods are determined by:
- The nature and sensitivity of the data
- The purpose of processing and whether it can be achieved by other means. Applicable legal, regulatory, and contractual requirements.
When personal data is no longer needed, we will delete or anonymize it in a secure manner.
-
Your legal rights
Depending on your location and applicable law (including GDPR), you may have the following rights regarding your personal data:
-
Right of access:
to obtain a copy of the personal data we hold about you.
-
Right to rectification:
to correct inaccurate or incomplete data.
-
Right to erasure:
to request deletion of your data in certain circumstances
-
Right to object:
to object to processing based on legitimate interests or to direct marketing.
-
Right to data portability:
to receive your data in a structured, commonly used, machine-readable format and transmit it to another controller
-
Right to withdraw consent:
where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
You will not normally have to pay a fee to exercise these rights, but we may charge a reasonable fee or refuse a request that is clearly unfounded, repetitive, or excessive. We may need to request additional information to verify your identity and ensure your rights are respected. To exercise any of these rights, please contact privacy@neurawin.net
-
-
Changes to this Privacy Policy
We keep this Privacy Policy under regular review and may update it from time to time. When we make changes, we will post the updated Policy on our website and revise the "Last updated" date above.
We encourage you to review this Policy periodically to stay informed about how we handle your personal data