Privacy Policy

Last updated: 13 February 2026

The protection of your personal data is important to us. We are constantly working to improve our processing of your personal data.

This Privacy Policy contains information about how Välinge Innovation AB and primarily its Swedish subsidiaries (“Välinge”) process and handle your personal data in accordance with the European General Data Protection Regulation (“GDPR”). This policy also applies to Välinge companies outside of Sweden in situations where the GDPR is applicable.

We encourage you to review this policy. This policy can be supplemented with specific information regarding certain collection or processing activities relating to personal data. We may also ask for your consent for particular processing activities. If specific information is provided or if consent is requested, this will be in addition to, and will take preference over, this policy.

You will find all our contact details in Section 14.

1. Main concepts

Personal data is information that, individually or in combination with other information, can be used to identify, locate or contact a natural person. Examples of personal data include name, email address, phone number and IP address.

Processing of personal data means any kind of handling of personal data, for example when we collect information about a customer in order to deliver a product. In Section 5 you can read about the purposes for which we may process your personal data.

The data controller is the company that determines which personal data shall be collected, the purposes for which it is processed, and the means of such processing. It is the data controller’s responsibility to ensure that the processing of personal data is carried out in accordance with the GDPR.

2. Who controls your personal data?

Välinge Innovation AB or the subsidiary of Välinge Innovation AB with which you have been in contact, is the data controller, or, where applicable, such a subsidiary jointly with Välinge Innovation AB, and is therefore responsible for compliance with the obligations concerning the processing of your personal data. However, the contact information provided at the end of this policy applies regardless of which Välinge company is the controller of your personal data in the relevant case.

3. What types of data do we collect?

When you get in touch with us, for example via email or phone, or when you visit our website, we process personal data. Depending on the situation, we may collect or ask for the following personal data:

Identification and contact data
  • Name
  • Email address
  • Address
  • Phone number
  • Country and/or region
Professional data
  • Which company you work for
  • Job title
  • Which industry you work in
Communication data
  • Other data included in the communication
  • Usernames on Facebook, LinkedIn, Instagram and Twitter when communicating with Välinge through social media, as well as other information that you may provide.
Technical data
  • The URL through which you can access our web pages, your IP address, user-type, browser type, language and device and operating system information.

4. Information from other sources

Based on publicly available information, we may also supplement the personal data registered with us. If you are a customer, we may also supplement your personal data with additional contact information.

Expressions of interest and other collection of personal data may also take place on Välinge’s partners’ websites, including LinkedIn and Facebook, in which case the partner provides Välinge with the relevant personal data.

In addition, personal data included in a whistleblowing report submitted in accordance with Välinge’s whistleblowing procedures may be processed.

5. Purposes and legal basis

We always strive to process only the personal data that is necessary to fulfil our commitments to you. In addition, personal data may be processed for certain limited purposes. (For recruitment purposes, see Section 10.)

The personal data you provide is used for the following purposes (and corresponding legal basis) – unless otherwise specifically stated:

  • To communicate with you and respond to requests (legitimate interest)
  • To fulfil our commitments under an agreement with you or in accordance with law (performance of a contract or legal obligation), or, if you are a representative, employee or otherwise represent a company that has entered into an agreement with us, legitimate interest. Välinge’s legitimate interest in this processing is to fulfil a contractual or legal obligation.
  • Sales and marketing activities in the form of direct marketing, which may include product offers and other content that may be of interest to you in to provide a more personalised experience, as well as social media updates, unless you or your company have instructed us not to do so (see further Section 6) (legitimate interest).
  • Customer care and information about our products (legitimate interest).
  • To obtain statistics and information about user behaviour in order to improve our website, social media channels and the user experience (legitimate interest or consent where explicitly stated).
  • To maintain a customer register (performance of a contract and legitimate interest).

Välinge’s legitimate interest in the above-mentioned processing, unless otherwise specifically stated, is to be able to offer you or your company better services (by developing and analysing the business and communicating with you or your company) and to provide you with relevant information.

6. Newsletters and other direct marketing

For example, when you or your company are or become a customer of Välinge or have shown interest in our products (including our technologies and services) and activities (e.g. by subscribing to our newsletter), we may send you our newsletter or other direct marketing via email. These emails may contain information about our products, events and other updates from Välinge.

You can update your subscription settings and opt out of future marketing emails by following the link provided at the bottom of all our marketing emails or by contacting us directly.

7. Cookies

Välinge processes the personal data generated by cookies set when you visit our website, including your IP address.

If you consent to the use of the cookies that require consent, unique identifiers, information about your device and information about how you use the website are also processed.

For more information on the cookies we use, how we use them, their purposes and their storage periods, please see the cookie information (cookie banner and cookie policy) available on our website.

8. How long do we save your personal data?

We process personal data for no longer than is necessary to fulfil the purposes stated above or as required by law or contract.

Thereafter, we delete your personal data or anonymise it in such a way that it can no longer be linked to you.

In general, we store your personal data when you or your company declare an interest in our technologies, products or services for as long as the relevant technology, product or service is offered by Välinge. We also generally store your personal data for the duration of any ongoing business relationship or active dialogue with you or your company and for three (3) years thereafter.

We process personal data relating to subscribed email newsletters or other direct marketing until you terminate your subscription.

Personal data collected on the basis of you consent is processed until you withdraw your consent.

Välinge may also store your personal data for a longer period if required by law, by a governmental authority or court decision, due to a legal dispute or when there is a risk of such a dispute or similar circumstances.

For example, we store accounting data in accordance with the Swedish Accounting Act, which results in a storage period of seven (7) years from the end of the accounting period, and personal data relating to whistleblowing cases for no longer than two (2) years after the case has been closed unless otherwise required by law or unless the personal data is necessary to establish, exercise or defend legal claims.

For information about the storage periods for cookies that are stored on your device, see Section 7 above.

9. Who has access to your personal data?

We constantly strive to ensure that your personal data is processed only by those who need to access it. Generally, personal data is available to employees within Välinge who work in the marketing, legal, finance and communications departments. In addition, personal data may be processed by other employees at Välinge with whom you are in direct contact.

10. Job applications and recruitment

If you apply to work with us, we may, where relevant, process, among other things the following personal data about you in order to manage the recruitment process, including candidate evaluation, communication and documentation (legitimate interest):

• Contact information (such as name, address, email address and phone number).
• Employment history and education.
• Language skills and other work-related skills.
• Social security number, national ID number or other government-issued identification number.
• Date of birth.
• Gender.
• Citizenship and status regarding work permits.
• Background checks.
• Results from personality tests.
• Information about references and information provided by such references.
• Other information that you may provide us, for example in your résumé, application or other information relating to your qualifications for employment.

Välinge’s legitimate interest in the abovementioned processing, unless otherwise specifically stated, is to recruit qualified personnel in order to operate the business effectively.

If processed by us, your personal data will be stored for up to two (2) years after the recruitment process has ended. Thereafter, your personal data will be deleted unless you have given your consent for us to retain it. However, certain personal data may be processed for a longer period if required by law, by a governmental authority or court decision, due to a legal dispute or where there is a risk of such a dispute or similar circumstances.

More information about how we, or a third party (such as recruitment agency), process personal data in connection with recruitment may be provided in connection with a specific recruitment process.

11. Sharing information with our partners and others

We do not sell, rent, distribute or otherwise make your personal data available to third parties. However, we may share personal data with our international offices and companies within the same corporate group, as well as with partners or suppliers, for the purposes stated in this policy and in order to provide services to us, primarily to maintain and support our IT systems.

Such third parties may act as data processors on our behalf, joint controllers or independent controllers. Välinge always take the necessary measures, to protect your personal data, when such data is shared.

12. Security, storage and transfer

We use administrative, technical and physical security measures to protect the personal data you provide against accidental, unlawful or unauthorised destruction, loss, modification, access, disclosure or use, and always strive to have secure IT solutions for both our and your protection.

If Välinge transfers your information outside of the EU/EEA, such transfers, where no other appropriate safeguard is available, normally take place based on the European Commission’s standard contractual clauses in accordance with Article 46 of the EU General Data Protection Regulation. You can read more about appropriate safeguards at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection_en

13. Your rights regarding your personal data

In accordance with the GDPR, you are entitled to receive information about which personal data we process about you and how such data is processed. You may also request that we rectify incorrect personal data, erase personal data, or, under certain circumstances, transfer your personal data to another data controller at your request (“data portability”).

You may also object to the processing of certain personal data or request that the processing of your personal data be restricted. You have the right to object to the processing of personal data that we carry out on the basis of a legitimate interest. In such cases, we must demonstrate that there are compelling legitimate grounds for the processing.

You also have the right to object at any time to the processing of your personal data for direct marketing purposes. If you have given us your consent to the processing of personal data, you are also entitled to withdraw your consent at any time. If you withdraw your consent, we will delete the personal data processed on the basis of that consent, unless we are required to retain it by law.

Please note that the restriction or deletion of your personal data may affect the delivery of information within the customer relationship and may also affect any ongoing contact with you.

If you wish to withdraw your consent, or request access to your personal data, rectification, erasure, restriction, objection, or data portability, please contact us using the email address provided in the contact details section below.

14. Contact information

If you have questions about our processing of personal data or wish to exercise your rights, please find our contact details below.

Välinge Innovation AB
Company registration number: 556462-4723
Prästavägen 513
263 64 Viken
Sweden
Phone number: +46 (0)42 23 78 15
Email: gdpr@valinge.se

15. Updates to this Privacy Policy

This Privacy Policy (including any appendices) may be updated from time to time to reflect changes in our privacy practices. In the event of significant changes, we will inform you by posting a clear notice on our website and will indicate at the top of the policy when it was last updated.

16. Contact details of the Swedish Authority for Privacy Protection

If you have questions or believe that Välinge has processed your personal data incorrectly, you have the right to lodge a complaint with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten, IMY).
Website: www.imy.se
Email: imy@imy.se

Powered by  GDPR Cookie Compliance
Cookie overview

A cookie is a small textbased file stored on your browsing device (e.g. computer, phone or similar unit) that records information about your web-browsing. This website uses cookies, including first party and third party tracking applications, in order to provide you full website functionality, perform analyses and improve your user experience. For these purposes, we gather information about the web page user and web-browsing patterns. Please find to the left more information and options for each cookie category (such as purpose of use, cookie issuer and cookie duration). By clicking Enable All Cookies you accepts all cookies and gives us your consent to share the information with third parties, e.g. our third party cookie providers. You may instead approve or reject specific cookie category by clicking on each cookie category to the left and then choosing your option but please note that this will not assist us with improving your user experience. Click Save Settings after you have selected all your preferred cookie options. You may always change your cookie settings later.