iZafe Group – Privacy Notice

At iZafe Group AB, we are committed to protecting your personal data and ensuring full transparency in how we collect, use and safeguard information. As a listed Medtech company, we follow the General Data Protection Regulation (GDPR), national legislation and the security standards defined in our Information Security Management System.

1. Data Controller

iZafe Group AB

David Bagares Gata 3, 111 38 Stockholm, Sweden

Email:

We are responsible for all processing of personal data related to our services, website and products.

2. Personal Data We Process

We may process personal data when you:

  • Visit our website
  • Contact us or interact with our support
  • Enter into a customer, partner or supplier relationship
  • Use our products and connected services

Examples of data we may process:

  • Name and contact details
  • Organisational information
  • Technical device data and logs
  • Usage data related to our products and services
  • Communication history

We do not sell personal data to third parties.

3. Why We Process Personal Data

We process personal data for the following purposes:

  • Delivering and improving our services and products
  • Fulfilling contractual obligations
  • Providing customer and technical support
  • Ensuring security, preventing misuse and handling incidents
  • Meeting legal and regulatory requirements
  • Communicating with customers, partners and stakeholders

4. Legal Basis

We rely on one or more of the following legal grounds:

  • Performance of a contract
  • Legal obligation
  • Legitimate interest
  • Consent when required

5. Sharing and Transfers

We may share personal data with trusted service providers, such as IT and cloud services, partners, distributors and professional advisors.

If data is transferred outside the EU or EEA, we ensure adequate safeguards such as Standard Contractual Clauses and additional security controls.

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purpose for which it was collected or as required by law.

Data is securely deleted or anonymised when no longer needed.

7. Your Rights

Under GDPR, you have the right to:

  • Access your data
  • Request correction or deletion
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time

To exercise your rights, contact us at .

8. Security

We apply organisational and technical measures aligned with ISO 27001, including:

  • Access control and authentication
  • Encryption of data in transit and at rest
  • Logging and monitoring
  • Incident and breach response
  • Supplier risk management

9. Cookies

Our website uses necessary and analytical cookies to ensure functionality and improve user experience.

You can adjust your cookie preferences at any time.

For more details, see our Cookie Policy.

10. Updates

This Privacy Notice may be updated to reflect changes in legislation or how we process personal data. The latest version will always be available on this page.

11. Contact

For privacy-related questions or requests, please contact:

Webbdesign av Comlog Webbyrå Stockholm