Get started

Data Privacy Policy

Last Updated: 2025-03-10

Berget AI AB (“we,” “our,” or “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you visit our website https://berget.ai in compliance with the General Data Protection Regulation (GDPR) and other applicable laws.

1. Data Controller

Berget AI AB, org. no. 559504-7522, is responsible for the processing of The Personal Data.

gdpr@berget.ai or dpo@berget.ai

2. What Personal Data We Collect

We may collect the following types of personal data:

  • Identity Data: Name, username, or similar identifiers.
  • Contact Data: Email address, phone number, mailing address.
  • Technical Data: IP address, browser type, operating system, referring URLs, and device identifiers.
  • Usage Data: Information about how you use our website (e.g., pages visited, time spent).
  • Marketing Data: Preferences for receiving communications from us.

3. How We Collect Your Data

We collect data through:

  • Direct interactions: When you fill out forms, subscribe to newsletters, or contact us.
  • Automated technologies: Cookies, analytics tracking, and log files.
  • Third-party sources: Payment processors, analytics providers, or advertising networks.

4. Purpose of Data Processing

We use your personal data for the following purposes:

Purpose Legal Basis
To provide and maintain our website Legitimate Interest
To process inquiries and customer service requests Performance of a Contract
To send marketing communications Consent
To improve website security and prevent fraud Legitimate Interest
To comply with legal obligations Legal Obligation

Marketing & Communications:

We only send marketing emails if you have given explicit consent. You can opt out at any time by clicking the “unsubscribe” link in our emails.

5. Cookies & Tracking Technologies

We use cookies and similar tracking technologies to improve user experience. You can manage your cookie preferences through our Cookie Settings page or your browser settings.

6. Data Sharing & Third Parties

We do not sell your data. However, we may share data with:

  • Service Providers: Hosting, analytics, and marketing partners.
  • Legal Authorities: If required by law or to protect our rights.
  • Business Transfers: In case of mergers, acquisitions, or asset sales.

All third parties are contractually required to comply with GDPR and maintain data security.

7. Data Retention

We retain personal data only as long as necessary for the purposes outlined in this policy. Retention periods depend on the type of data:

  • Customer inquiries: Up to 1 year
  • Marketing data: Until consent is withdrawn
  • Website analytics: Up to 26 months

When no longer needed, data is securely deleted or anonymized.

8. Data Security

We implement technical and organizational security measures to protect your data, including:

  • Encrypted data storage
  • Access controls and authentication
  • Regular security audits
  • Secure communication via HTTPS

9. Your Rights Under GDPR

As an EU resident, you have the following rights:

  • Right to Access: Request a copy of your personal data.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your data (“right to be forgotten”).
  • Right to Restriction: Limit how we process your data.
  • Right to Data Portability: Receive your data in a structured, machine-readable format.
  • Right to Object: Object to data processing for marketing or legitimate interests.
  • Right to Withdraw Consent: If processing is based on consent, you can withdraw it anytime.

To exercise your rights, contact us at gdpr@berget.ai. We will respond within one month.

10. International Data Transfers

We see no reason whatsoever to transfer data outside of the EEA, but in the case that we should be ordered by a customer to transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards, such as:

  • Standard Contractual Clauses (SCCs) approved by the European Commission.
  • Adequacy decisions for countries recognized by the EU as providing sufficient protection.

11. Complaints & Supervisory Authority

If you believe we have violated GDPR, you can contact us at gdpr@berget.ai to resolve the issue.

File a complaint with your local Data Protection Authority (DPA), Integritetsskyddsmyndigheten (IMY) Email: imy@imy.se Phone: +46(0)‭8-657 61 00

12. Changes to This Policy

We may update this policy from time to time. Any changes will be posted on this page with an updated revision date.