Privacy Policy

Data privacy is very important to Herobility. We want to be open and transparent with our handling of your personal data.

We therefore have a policy that sets out how your personal data will be processed and protected.

Who is the controller of your personal data?

Herobility is the controller of the personal data you send to us and is responsible for your personal data in accordance with applicable data protection regulations.

Smartshake AB
Järnmalmsgatan 2
721 32 Västerås

Organisation number: 556915-4643
CEO: Mikael Bergström
VAT registration number: VAT-NR SE556915464301


Where do we store your data?

The data we collect from you is stored within the European Economic Area (EEA), but may also be transferred to and processed in a country outside the EEA. Any such transfer of your personal data will be in accordance with applicable law.

For transfers outside the EEA, Herobility applies standard type contractual clauses and privacy safeguards as protection in countries without an adequate level of protection decision from the European Commission.

 

Who has access to your data?
Your data may be shared within Smartgroup (Herobility + Smartshake AB) We may share personal data with others but only where permitted by law. Those with whom personal data is shared may include government agencies, companies we work with regarding: logistics, marketing or other suppliers. We have signed data processing agreements with suppliers who process personal data on our behalf.

We never forward, sell or trade your data for marketing purposes to third parties outside SmartGroup. Data forwarded to third parties is only used for the purpose of providing our services to you. You can find the different categories of third parties under each individual process below.

 

On what legal basis is the data processed?
Each time we process personal data that we collect from you, we will inform you whether the provision of the personal data is required by law or mandatory in order to enter into a contract and whether it is mandatory to provide the personal data and the possible consequences if you choose to do so.

 

What are your rights?
Right of access:

You have the right to request information about the personal data we hold about you at any time. You can email us at info@herobility.com and we will send you your personal information by email.

 

Right to data portability:
Whenever Herobility processes your personal data in an automated way following your consent or pursuant to a contract, you have the right to receive a copy of your data in a structured, plain and machine-readable format transferred to you or another party. This includes only the personal data you have provided to us.

Right to rectification:
You have the right to request rectification of your personal data if it is inaccurate, including the right to complete incomplete personal data.

If you have an account or club membership with Herobility, you can edit your personal information on your account and membership pages.

Right to erasure:
You have the right to delete any personal data processed by Herobility at any time, with the exception of the following situations

  • you have an ongoing case with customer service
  • you have a pending order that has not yet been shipped or has been partially shipped
  • you have an unpaid debt with Herobility, regardless of payment method
  • you are suspected of having or having misused our services in the last four years
  • your debt has been resold to a third party in the last three years or one year for deceased customers
  • your credit application has been rejected within the last three months
  • if you have made purchases, we keep your personal data related to the transaction for accounting purposes


Your right to object to the processing of personal data on the basis of a legitimate interest:

You have the right to object to the processing of your personal data based on Herobility's legitimate interest. Herobility will not continue to process the personal data unless we can demonstrate a legitimate reason for the process that overrides your interests and rights or due to legal claims.

Your right to refuse direct marketing:
You have the right to opt-out of direct marketing, including profile analysis conducted for direct marketing purposes.
You can opt out of direct marketing in the following ways:

  • Follow the instructions in each marketing mailing
  • Change the settings of your Herobility account

 

Right to restriction:
You have the right to require Herobility to restrict the processing of your personal data in the following circumstances:

  • If you object to the processing of your personal data on the basis of Herobility's legitimate interest, Herobility shall restrict any processing of the data during the pendency of the legitimate interest investigation.
  • If you have claimed that your personal data is inaccurate, Herobility must restrict all processing of that data pending an investigation into the accuracy of the personal data.
  • If the processing of the personal data is contrary to law, you may object to the erasure of the personal data and instead request restriction of the use of your personal data.
  • If Herobility no longer needs the personal data but it is necessary for you to defend yourself against legal claims.

 

How can you exercise your rights?
We take data protection very seriously. You can contact our customer service department at any time with inquiries regarding your rights listed above.

 

Data Protection Officer:
We have appointed a Data Protection Officer to ensure that we continue to process your personal data in a transparent, accurate and lawful manner. You can contact our Data Protection Officer at anders@smartshake.com and enter Personal Data in the subject line.

 

Right to lodge a complaint with a supervisory authority:
If you believe that Herobility is processing your personal data in an unlawful manner, you may contact us. You also have the right to lodge a complaint with a supervisory authority.

 

Updates to our Privacy Notice:
We may need to update our Privacy Notice. The latest version of the Privacy Notice is always available on our website. We will notify you of any material changes to the Privacy Notice, such as the purpose of the use of your personal data, the identity of the agent or your rights.

You can read more about how we use your data here:

 

Online purchases

Why do we use your personal data?
We use your personal data to manage your online purchase at Herobility by processing your orders and returns through our online services and sending you notifications about the delivery status or in case of problems with the delivery of your items.

We use your personal data to process your payments.

We also use your data to handle complaints and warranty issues regarding products.

Your personal data is used to identify you and to confirm that you are of legal age to make online purchases and to confirm your address with external partners.

We want to offer you different payment options and will make an analysis of what payment options are available to you as well as your payment history and credit checks.

 

What types of personal data do we process?
We process the following categories of personal data

  • contact details such as name, address, email address and telephone number
  • payment details and payment history
  • credit information
  • order information

If you have a Herobility account, we also process your personal data related to the account or membership, such as

  • account or membership ID
  • shopping history

Who has access to your personal data?
Your personal information that is forwarded to third parties is only used to provide the services listed above to you, for companies to verify your address, for communications companies to send you an order confirmation, and to warehousing and distribution companies in connection with the delivery of your order. Payment providers for processing your payment. Credit reference agencies for identity and credit checks and debt collection agencies.

Please note that many of these companies have an independent right or obligation to process your personal data.

 

On what legal basis is your personal data processed?
The processing of your personal data is necessary for Herobility to provide the service and deliver your order to you.

 

How long do we keep your data?
We keep your data as long as you are an active customer.

 

Automated decision making:
When you apply for credit as a payment method, we make an automated decision regarding the credit application. You have the right to express your opinion and contest the decision with a member of staff.


Direct marketing

Why do we use your personal data?
We use your personal data to send you marketing offers, information surveys and invitations by email, text message, phone call and letter.

In order to optimise your experience of Herobility, we provide you with relevant information, recommend products, send reminders about items left in your shopping basket and send personalised offers. All of these services are based on your previous purchases, what you have clicked on and information you have shared with us.

 

What types of personal data do we process?
We process the following categories of personal data

  • contact details, such as email address, telephone number and postcode
  • whether you want updates for children (if you choose to provide them to us)
  • gender (if you choose to provide it)
  • which products and offers you have clicked on

If you have a Herobility account, we also process the personal data you have submitted in connection with the account and membership, such as

  • name
  • address
  • shopping history
  • how you navigated and clicked on the website

 

Who has access to your personal data?
Data forwarded to third parties is only used to provide the service listed above to media agencies and technology providers for the distribution of physical and digital direct marketing.

We never forward, sell or trade your data for marketing purposes to third parties outside SmartGroup.

On what legal basis is your personal data processed?
The processing of your personal data is based on your consent when you agree to direct marketing. This is with the exception of marketing by mail, including catalogues, sent to you on the basis of your legitimate interest.

 

Your right to withdraw consent:
You have the right to withdraw your consent to the processing of personal data and to refuse direct marketing at any time.

If you do so, Herobility will not be able to send you any further direct marketing offers or information based on your consent.

 

You can opt out of direct marketing in the following ways:

  • Follow the instructions in each marketing mailing
  • Change your Herobility account settings

 

How long do we keep your data?
We keep your data for direct marketing purposes until you withdraw your consent.

For the purposes of email marketing, we will consider you as an inactive customer if you have not opened an email in the last year.

After that, your personal data will be deleted.

 

Herobility account

Why do we use your personal data?
We use your personal data to establish and manage your personal account in order to provide you with a personalized and relevant experience on Herobility.

We provide you with your order history and details of your orders and enable you to manage your account settings (including marketing preferences). We also provide you with easy ways to maintain accurate and up-to-date information, such as contact and payment details. In addition, we enable you to store items in your shopping basket, provide you with size recommendations and allow you to rate and review items you have purchased from us.

In order for us to provide you with relevant product recommendations, Herobility processes your page visits and browsing on our digital platforms, your shopping history and product reviews as well as data you have provided to us via your account.

 

What kind of personal data do we collect?
We always process your email address and the password you provide to us when you open your Herobility account.
We process the following categories of personal data if you choose to share them with us:

  • contact details such as name, address and telephone number
  • gender
  • country
  • account settings
  • encrypted credit card information

 

We process the following categories of personal data if you make a purchase

  • order history
  • delivery information
  • payment history

 

We also process the following categories of personal data in connection with your cookies

  • click history
  • visit and browsing history

 

Who has access to your personal data?
Data passed on to third parties is only used to provide the services listed above and for the purpose of optimising the website we use website companies and analytics tools to rate products.

 

On what legal basis is your personal data processed?
The processing of your personal data for your account is based on your consent when you create your Herobility account.

The processing of your personal data for the purpose of providing you with relevant information is based on our legitimate interest.

Your right to withdraw consent:
You have the right to withdraw your consent to the processing of personal data at any time. If you do so, the account will cease to exist and Herobility will not be able to provide the services listed above to you.

 

How long do we keep your data?
We keep your data for as long as you have an active Herobility account.

You have the right to terminate your account at any time, and if you choose to do so, your account will cease to exist and you will be considered inactive. We will retain your personal information if required to do so by law and if there is an open dispute.

After your account has been closed, your data will be deleted.

 

Your right to object to the processing of your data:
You have the right to object to the processing of your personal data based on Herobility's legitimate interest by contacting info@herobility.com. Your account will then be deleted and we will not be able to provide our services to you.

 

Customer Service

Why do we use your personal data?
We use your personal data to handle enquiries from you, handle complaints and warranty issues relating to products and technical support via email, our chat facility, telephone and social media.

We may also contact you if there is a problem with your order.

 

What types of personal data do we process?
We will process any data you provide to us, including the following categories

  • contact details such as name, address and telephone number
  • date of birth
  • payment details and payment history
  • credit information
  • order information
  • account or membership number
  • all correspondence relating to the case

 

Who has access to your personal information?
Data forwarded to third parties is only used to provide the services listed above to a customer service representative in Asia.

 

On what legal basis is your personal data processed?
The processing of your personal data is based on Herobility's legitimate interest.

 

How long do we keep your data?
We keep your data for 100 days in the case of telephone and email messages and for 12 months in the case of case management.

 

Your right to object to the processing of personal data based on legitimate interest:
You have the right to object to the processing of your personal data based on Herobility's legitimate interest. Herobility will not continue to process the personal data unless we can demonstrate a legitimate reason for the process that overrides your interests and rights or on the basis of legal claims.

 

Competition

Why do we use your personal data?
We process your data when you participate in our competitions. Your personal data is used for Herobility to contact contest participants about the contest, before and after an event, to identify contest participants, to verify the age of contest participants, to contact the winners, and to send and follow up on prize mailings.

 

What types of personal data do we process?
We process the following categories of personal data

  • contact details such as name, email address and telephone number
  • age
  • information submitted to the competition

 

Who has access to your personal data?
Data forwarded to third parties is only used to provide the services listed above to carriers for the delivery of prizes.

 

On what legal basis is your personal data processed?
The processing of your personal data is based on your consent when you choose to participate in a competition.

 

Your right to withdraw consent:
You have the right to withdraw your consent to the processing of personal data at any time. If you do so, Herobility will not be able to provide the services listed above to you.

 

How long do we keep your data?
We will keep your personal data for 45 days after the competition has ended if we no longer have a use for your contact details.

 

Development and improvement

Why do we use your personal data?
We use the data to evaluate, develop and improve our services, products and systems for all our customers. For this purpose, we do not analyse your data on an individual level, but all processing is done using pseudonymised data.

This includes analysis to make our services more user-friendly, such as adapting the user interface to facilitate the flow of information or to highlight features frequently used by our customers in our digital channels and to improve IT systems in order to increase security for our visitors and customers in general.

The analyses are also used to develop and continuously improve the logistical flow of goods by calculating purchases, inventories and deliveries as well as our resource capacity from a sustainability perspective by streamlining purchasing and scheduling of deliveries.

Furthermore, we use the data to plan the establishment of new stores and warehouses and to improve our product range.

 

What types of personal data do we process?
We process the following categories of personal data if you have chosen to provide them to us:

  • customer number
  • date of birth
  • gender
  • country
  • account settings

We process the following categories of personal data if you have made a purchase:

  • order history
  • delivery information
  • payment history

We also process the following categories of personal data related to cookies:

  • click history
  • visit and browsing history

Who has access to your personal data?
Data passed on to third parties is only used for the purpose of providing the services listed above. We use web analytics companies to analyse our customers' online behaviour on a general level.

 

On what legal basis is your personal data processed?
The processing of your personal data for the purpose of developing and improving our services and products, is based on our legitimate interest.

 

How long do we keep your data?
We keep your data as long as you have an active Herobility account or membership.

After your account or membership has been terminated, your data will be deleted.

 

Your right to object to the processing of your data:
You have the right to object to the processing of your personal data based on Herobility's legitimate interest by contacting info@herobility.com. Your account will then be deleted and we will not be able to provide our services to you.

 

Compliance with legal obligations

Why do we use your personal data?
We use your personal data to comply with the requirements of laws, court orders and governmental decisions.

This includes using your personal data to collect and verify accounting information to comply with accounting regulations.

 

What types of personal data do we process?
We process the following types of personal data

  • customer number
  • order number
  • name
  • address
  • transfer account
  • transfer date

 

Who has access to your personal data?
Your data will be shared within SmartGroup (Herobility+ Smartshake).

We share your personal data with IT companies that provide accounting system solutions.

 

On what legal basis is your personal data processed?
The processing of your personal data is necessary for Herobility to fulfil its obligations under the law.

 

How long do we keep your data?
We keep your data in accordance with the accounting rules in Sweden and your country.

 

Prevention of abuse and crime

Why do we use your personal data?
We use your personal data to prevent loss by ensuring compliance with the terms and conditions and to detect and prevent misuse of our services.

Your personal data is used to prevent and investigate misuse of our online services, loss and fraud, by analysing online purchasing behaviour.

 

What types of personal data do we process?
We process the following categories of personal data:

  • contact details, such as name, address, telephone number and email address
  • club membership ID
  • customer number
  • video recordings
  • order history
  • delivery information
  • payment history

 

Who has access to your personal data?
Your personal data that is forwarded to third parties is only used for the purposes stated above. We share your data with companies for exception-based reporting.

Incidents and frauds may be shared with insurance companies, legal authorities or local or global law enforcement agencies to conduct investigations. Please note that these recipients have an independent right or obligation to process your personal data.

 

On what legal basis is your personal data processed?
The processing of your personal data for the purpose of preventing misuse of our services is based on our legitimate interest.

 

How long do we keep your data?
We keep your data for as long as we need to prevent and/or report fraud and other crimes.

 

Your right to object to the processing of your data:
You have the right to object to the processing of your personal data based on Herobility's legitimate interest by contacting info@herobility.com. Your account will then be deleted and we will not be able to provide our services to you.

 

Cookies or cookies

A cookie is a small text file that is stored on your computer or mobile device and retrieved from there on subsequent visits to the website in question. If you use our services, we assume that you accept the use of cookies.


How do we use cookies?
We use persistent cookies to save your choice of home page and to save your details if you select "Remember me" when you log in.

We use cookies to save your favourite products.

We use session cookies for example when you use the product filtering function, to check if you are logged in or if you have added an item to your shopping basket.

We use cookies from both first and third parties in order to collect statistics and user data in aggregate and individual form in analytics to optimize the website and show you relevant marketing material.

Some third-party cookies are introduced by services displayed on our websites that are not under our control. They are inserted by companies that provide social media services, such as Twitter, Facebook and Vimeo, and allow users to share content on the website, as indicated by their respective icons.

We also use third-party cookies that perform tracking across multiple domains in order for us to provide marketing on other websites/channels to you.

What types of personal data do we process?
We only link your cookie ID to the personal data you provide and that is collected in connection with your account or Club membership, if you are logged into your account or Herobility.com.

Who has access to your personal data?
Data passed on to third parties is only used to provide the above services to you, analytical tools in order to collect statistics to optimise our website and present relevant material to you.

On what legal basis is your personal data processed?
We only link your cookies to your personal data if you are logged into the Herobility account.

If you are logged in to your account, the legal basis is based on your legitimate interest.

How long do we keep your data?
Herobility does not store your personal data. You can easily delete cookies from your computer or mobile device via your browser. For instructions on how to manage and delete cookies, go to the ""Help"" option in your browser. You can choose to disable cookies or receive a notification each time a new cookie is sent to your computer or mobile device. Please note that if you choose to disable cookies, you will not be able to use all the features of our website.

Below are the dates, so you know when our privacy and security policy was last updated.

2018-05-25