Privacy Policy

    Last updated: 2025-10-07

    At Grit& Studios AB ("Grit&", "we", "our", "us"), we are committed to protecting your privacy and handling your personal data responsibly. This Privacy Policy explains how we collect, use, and protect your information when you interact with our services, in compliance with the General Data Protection Regulation (GDPR) and other applicable European data protection laws.

    Data Controller

    The data controller is:

    Grit& AB

    Vallgatan 3, 411 16 Gothenburg, Sweden

    Email: privacy@gritand.com

    Information We Collect

    • Personal Information: Name, email address, company details, and other information you provide when contacting us.
    • Usage Data: How you use our website and services.
    • Technical Data: IP address, browser type, device information, and cookies.
    • Communication Data: Preferences, messages, and inquiries you send us.

    Legal Basis for Processing

    • Consent: When you voluntarily provide data or accept cookies.
    • Contract: When processing is necessary to respond to your inquiries or deliver requested services.
    • Legal Obligation: When required by law or regulations.
    • Legitimate Interest: To improve our services, maintain security, and communicate relevant updates, provided your rights are not overridden.

    How We Use Your Information

    • Respond to inquiries and provide requested services
    • Communicate with you about our services, opportunities, and updates
    • Improve our website, services, and user experience
    • Ensure security, fraud prevention, and compliance with laws
    • Support business operations, including potential business transfers

    Data Retention

    • We keep your personal data for up to 3 years from the date of our last interaction with you, unless a longer retention period is required by law.
    • After this period, we securely delete or anonymize your data.

    Information Sharing

    • We do not sell or trade your personal data.
    • Trusted service providers who help us operate our website and services (under strict confidentiality and security obligations)
    • Authorities or regulators when required by law
    • Business partners or acquirers in case of a merger, acquisition, or transfer of assets
    • If your data is transferred outside the EU/EEA, we ensure adequate protection through EU Commission adequacy decisions or Standard Contractual Clauses (SCCs).

    Cookies and Tracking

    • We use cookies and similar technologies for website functionality, analytics and performance monitoring, and marketing and advertising.
    • You can manage or withdraw your cookie consent at any time through your browser settings or our cookie banner.

    Data Security

    • We implement appropriate technical and organizational measures to protect your data, including:
    • Secure storage and encryption
    • Regular security assessments
    • Staff training in data protection

    Your Rights

    Under GDPR, you have the right to:

    • Access the personal data we hold about you
    • Correct inaccurate or incomplete information
    • Delete your personal data ("right to be forgotten")
    • Restrict processing in certain cases
    • Object to processing based on legitimate interests, including marketing
    • Data portability – request a copy of your data in a machine-readable format
    • Withdraw consent at any time (without affecting prior lawful processing)
    • Lodge a complaint with your local supervisory authority

    Contact Us

    If you have any questions about this Privacy Policy or our data practices, please contact us at privacy@gritand.com or through our contact page.