Effective Date: 7 August 2025

Bergstrand Consultancy AB is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect personal data when you visit our website www.bergstrand.co, use our services, or interact with us in other ways.

This policy applies to all users, including, but not exclusive to, those in the European Union (EU), the United States (US), and Australia.

1. Who We Are

Data Controller:
Bergstrand Consultancy AB
Organisation Number: 5593720021
Registered Address: Bondegatan 21, 116 33 Stockholm, Sweden
Email: privacy (at) bergstrand.co

If you have any questions or concerns about this Privacy Policy, or if you wish to exercise your rights, please contact us at privacy (at) bergstrand.co.

2. What Personal Data We Collect

We may collect the following personal data when you interact with us:

• Name
• Job title
• Email address
• Work phone number
• Brand or employer
• Any query or message submitted through our contact forms
• Email address submitted to receive downloadable content

We also collect anonymised usage data through analytics tools (see Section 6).

3. How We Use Your Personal Data

We process your personal data for the following purposes:

• To respond to your queries or messages
• To provide services or information you request
• To send you newsletters or downloadable content when you sign up for them
• To analyse how users interact with our website and improve its performance
• To comply with legal obligations

4. Legal Basis for Processing (EU only)

Under the GDPR, we process your personal data based on the following legal grounds:

• Your consent, when you submit forms or subscribe to content
• Our legitimate interest, such as responding to queries or improving our website
• To comply with legal obligations

5. Data Sharing and Third Parties

We may share your data with third-party service providers who help us operate our website and communicate with you. These include:

• Substack – for managing our newsletter and subscriber list
• SiteBehaviour – for anonymised website analytics
• Webflow – our hosting provider

These providers may process or store data in jurisdictions outside your own, including the United States. We take steps to ensure that appropriate safeguards are in place, including adherence to standard contractual clauses where applicable.

6. Cookies and Analytics

We use SiteBehaviour to collect anonymised analytics data about how users interact with our website. This helps us improve functionality and user experience.

We currently do not use marketing or tracking cookies. However, we may implement the LinkedIn Insight Tag in the future to understand advertising performance. If we do, we will update this policy and request your consent where required.

If you would like to manage your Cookies, please do so here.

7. Data Retention

We retain personal data for as long as necessary to fulfil the purposes described in this Privacy Policy, or until you request deletion. Should you wish us delete your personal information sooner, please contact our data controller at privacy (at) bergstrand .co .

8. International Data Transfers

We do not directly transfer data internationally. However, some of our service providers (e.g., Substack, Webflow) may store or process data in the United States or other countries. When you submit personal information to us, it is likely that it would be stored on servers outside of the European Union. In any case, we ensure that such transfers comply with applicable legal requirements.

9. Your Rights

Depending on your location, you may have the following rights:

European Union (GDPR)

• Access your personal data
• Correct inaccurate or incomplete data
• Request deletion (“right to be forgotten”)
• Restrict or object to processing
• Data portability
• Lodge a complaint with your Data Protection Authority

United States (California—CCPA/CPRA)

• Know what categories of personal information we collect and why
• Request a copy of your personal data
• Request deletion of your personal data
• Opt-out of the sale or sharing of your personal data (Note: we do not currently sell data)
• Non-discrimination for exercising your rights

Australia

• Access and correct your personal data
• Complain to the Office of the Australian Information Commissioner (OAIC) if you believe your privacy has been breached

10. How to Exercise Your Rights

You can submit any requests to access, correct, or delete your personal data by contacting us at [privacy email address]. We will respond in accordance with the applicable data protection laws.

11. Children’s Privacy

Our website and services are not directed at children under the age of 16. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on this page, with the “Effective Date” clearly indicated.

13. Cookie Settings

To manage your cookie preferences, please click [Insert Cookie Settings Link or Button]. This link is also available in the footer of our website.

‍