We decide why and how your personal data are processed. We are responsible for processing your personal data.
We have a data protection officer.
The contact details are: dpo@stokke.com
We are an enterprise.
Important changes in this Privacy Policy version are: We have updated the sections "What personal data we process and why and how?", "In what situations do we process your personal data?", "Do we share your personal data?", "Do we transfer your personal data outside the EU or EEA?" and "Can you choose your privacy settings?".
Our privacy policy is:
Our Privacy Policy applies to:
We collect personal data:
We process your personal data in a situation that concerns:
Personalized newsletters:
You may register for our newsletter on our website. For security purposes we use the so-called double opt-in procedure (DOI procedure). This means that you first enter your e-mail address in the registration field and give your consent to receive our newsletter. We will then send you a confirmation link to the e-mail address provided. Only when you click on this confirmation link will your e-mail address be added to our distribution list for sending our newsletter. If you do not want to receive our newsletter anymore you can find an unsubscribe link in every newsletter. When clicking it, you will opt-out from our newsletters and not receive any further newsletters.
If you are a recipient of a newsletter, we are using the following information to offer you an individual newsletter experience:
If you are a customer (meaning you have bought a product on stokke.com or registered a product in our warranty portal), we are using the following information to offer you an individual newsletter experience:
And in case you have provided us with this optional information and expressly consented for the purpose of personalized newsletters, we may also use the following information to offer you an individual newsletter experience:
If you own a Stokke customer account, we will also process the information stored there. If you have expressly agreed to use of the cookies for marketing purposes on our website, we will also use this information for an individual newsletter experience, for example for these purposes:
You can see our cookie policy and manage your preferences from the cookie consent box, which you can find a link to in the footer of our website.
We collect your personal data in the following ways:
We collect your personal data from the following sources:
These are the personal data you:
We process your:
Our legal ground for processing your regular personal data is:
Personal data we process based on these legal grounds are: All personal data listed under “What personal data we process and why and how”, except for pregnancy due date.
The legal ground for our processing of your “sensitive” personal data is:
Personal data we process based on this legal ground is: Pregnacy due date
We use your personal data to automatically evaluate aspects of your personality.
This profiling:
We do not use your personal data to make automated decisions about you.
We limit the duration we store your personal data to what is necessary for our processing purposes.
We disclose your personal data to the following recipients: We may disclose your personal data to our processors. Disclosure will only take place if and to the extent necessary for us to carry out the processing activities and purposes stated under “What personal data we process and why and how” above. We only disclose personal data to processors in accordance with data processing agreements entered into with the processors. Outside of the abovementioned processors and data processing agreements, we do not disclose or share your personal data with third parties.
We may disclose your personal data to third parties if required to do so by applicable law and/or applicable orders from authorities or courts.
Our legal grounds for disclosing your personal data to the recipients are:
We transfer your personal data to:
The personal data are transferred to: Any such transfer of personal data will only take place in accordance with the GDPR chapter 5. If personal data is transferred to a third country not covered by an adequacy decision adopted by the European Commission, cf. the GDPR art. 45, transfer will only take place provided there are appropriate safeguards, and with the use of binding corporate rules or standard data protection clauses, cf. the GDPR art. 46, no. 2, letter (b) and (c).
For further information relating to transfer of personal data under this privacy policy, please contact our DPO.
We secure your personal data:
We have measures to:
If we have a reasonable degree of certainty of a breach of the security of the processing of your personal data, then we will:
We are not obliged to notify you directly if
You have specific legal rights relating to the personal data we collect from you.
We will respect your individual rights and will deal with your concerns adequately.
Where you have given consent for the processing of your personal data, you have the right to withdraw your consent at any moment.
You may ask from us information regarding personal data that we hold about you, including:
We will provide you with a copy of your personal data upon your request.
If you ask for further copies of your personal data, then we can charge you with a reasonable fee that we base on the administrative costs.
You have the right to obtain from us rectification of your personal data, that are inaccurate or incomplete, in the latter case provided you supply the corrected or supplementary information.
You have the right to request that we delete the personal data we process about you.
We must comply with this request if we process your personal data, and if:
We must not comply with this request your personal data is necessary:
You have the right to obtain from us restriction of processing of your personal data, if:
You have the right to always object to the processing of your personal data for direct marketing that was based on our legitimate interest, regardless of any reason.
If the marketing was based on your consent, you can withdraw consent.
We invite you to communicate with us about the exercise of your rights concerning the protection of your personal data.
We only accept written requests since we cannot deal with verbal requests immediately without first:
Your request should contain a detailed, accurate description of which right you want to exercise.
You must provide us with a copy of an identification document to confirm your identity, for example:
The document should contain:
Any other data contained in the copy of the identification document such as a photo or any personal characteristics, may be masked out.
We will not accept other means of assuring your identity.
If you wish to propose alternatives, we will assess them on a case-by-case basis.
Our use of the information on your identification document:
You can send your request that concerns the protection of your personal data to:
You receive our answer to your request that concerns the protection of your personal data at:
We inform you of our handling of your request that we exercise your rights (regarding the protection of your personal) within:
You can lodge a complaint to a supervisory authority:
The Supervisory Authority should within a reasonable period inform you of:
You can mandate that an organization lodges a complaint on your behalf with a Supervisory Authority.
The Supervisory Authority should within a reasonable period inform you of:
You can seek a judicial remedy in the EU and the EEA against:
You can mandate that an organization exercises your right:
You can choose why and how we process your personal data in your privacy settings:
We self-assess that the: