Privacy Policy

SwedeVital AB(“SwedeVital”, “we”, “us”, “our”) is a Scandinavian natural health and wellness supplier registered in Sweden. We operate this website to provide information about our B2B product portfolio and to facilitate commercial partnership inquiries.

We are the data controller for personal data collected through this website. If you have any questions about how we handle your data, contact us at privacy@swedevital.com.

We collect the following categories of personal data:

• Contact and inquiry data — Name, business email address, company name, job role, and the message content you submit through our inquiry forms.

• Technical data — IP address, browser type, device type, pages visited, and session duration — collected automatically when you visit our website.

• Cookie data — Preferences and analytics data set by cookies. See our Cookie Policy for full details.

• Communication data — Records of email correspondence if you contact us directly.

We do not collect sensitive personal data (such as health data, payment card data, or government ID numbers) through this website.

We process personal data for the following purposes:

• Responding to B2B inquiries — To evaluate, respond to, and follow up on partnership requests submitted through our contact forms. Legal basis: Legitimate interest (Art. 6(1)(f) GDPR).

• CRM and lead management — To record and manage B2B partner contacts in our customer relationship management system (Merkoll). Legal basis: Legitimate interest.

• Website analytics — To understand how visitors use our website and improve our content and user experience. Legal basis: Legitimate interest or consent, depending on cookie settings.

• Legal compliance — To comply with applicable Swedish and EU law. Legal basis: Legal obligation (Art. 6(1)(c) GDPR).

We share personal data only in the following circumstances:

• CRM processor (Merkoll) — Inquiry form submissions are processed by Merkoll, our CRM platform. Merkoll acts as a data processor on our behalf under a data processing agreement.

• IT infrastructure providers — We use trusted cloud hosting and analytics providers who process data on our behalf under appropriate data processing agreements.

• Legal obligations — We may disclose data to regulatory or law enforcement authorities where required by applicable law.

We do not sell personal data to third parties. We do not share personal data for third-party advertising purposes.

We retain personal data for as long as necessary for the purposes described above:

• Inquiry data — Retained for up to 3 years from the date of last contact, or until you request deletion.

• Analytics data — Aggregated analytics data is retained for up to 26 months.

• Legal records — Records required for legal or tax compliance are retained for the statutory period (typically 7 years under Swedish law).

As a data subject in the EU/EEA, you have the following rights:

• Right of access — Request a copy of the personal data we hold about you.

• Right to rectification — Request correction of inaccurate or incomplete data.

• Right to erasure — Request deletion of your personal data, subject to applicable legal retention requirements.

• Right to restriction — Request that we restrict processing of your data in certain circumstances.

• Right to data portability — Receive your data in a structured, machine-readable format.

• Right to object — Object to processing based on legitimate interest.

• Right to withdraw consent — Where processing is based on consent, withdraw that consent at any time.

To exercise any of these rights, contact us at privacy@swedevital.com. We will respond within 30 days. You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY) at imy.se.

Where personal data is transferred outside the European Economic Area, we ensure appropriate safeguards are in place — including standard contractual clauses approved by the European Commission — in accordance with Chapter V of the GDPR.

We use cookies and similar tracking technologies on our website. For full details of the cookies we use and how to manage your preferences, please see our Cookie Policy.

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction, or alteration. These include encrypted data transmission (TLS), access controls, and regular security reviews.

We may update this Privacy Policy from time to time. Material changes will be indicated by an updated “Last updated” date at the top of this page. We encourage you to review this policy periodically.

For privacy-related enquiries or to exercise your rights: