Privacy Policy

Privacy Policy

 

Last Updated: 13 November 2025

 

1. Introduction

 

Your privacy is important to us at Posterstar Sweden AB (”Posterstar”, ”we”, ”us”, ”our”). This Privacy Policy explains how we collect, use, share, and protect your personal data when you visit our website posterstar.com (the ”Website”) and purchase our Products.

We are committed to processing your data in accordance with the EU General Data Protection Regulation (GDPR) and Swedish law.

 

2. Data Controller

 

The entity responsible for the processing of your personal data (the data controller) is:

Posterstar Sweden AB Org nr: 559275-7404 Adress: Edsviksvägen 31B 18233 Danderyd.

Email: [email protected]

 

3. What Personal Data We Collect and Why

 

We collect personal data in several ways, depending on how you interact with our Service. The legal basis for our processing is described for each activity.

 

A. When You Place an Order

 

  • Data Collected:
    • Full name
    • Shipping and billing address
    • Email address
    • Phone number
    • Order details (e.g., the specific product you customized)
  • Purpose: To process your order, manufacture your custom product, arrange for shipping, and handle returns or complaints.
  • Legal Basis: Performance of a Contract. This information is necessary for us to fulfill our agreement with you.

 

B. When You Make a Payment

 

  • Data Collected: Your payment details (like credit card number) are not collected or stored by Posterstar. This data is provided directly to our third-party payment providers.
  • Purpose: To securely process your payment.
  • Legal Basis: Performance of a Contract.
  • Our Providers: We use trusted payment gateways such as Klarna and Kustom . You are providing your information directly to them, and their privacy policy will apply.

 

C. When You Contact Customer Service

 

  • Data Collected: Your name, email address, order number (if applicable), and the content of your message to us.
  • Purpose: To respond to your inquiries, provide support, and resolve any issues.
  • Legal Basis: Legitimate Interest. Our legitimate interest is to provide you with excellent customer service.

 

D. When You Subscribe to Our Newsletter

 

  • Data Collected: Your email address (and possibly your name).
  • Purpose: To send you marketing communications, special offers, and inspiration.
  • Legal Basis: Consent. We will only send you newsletters if you have actively opted-in (subscribed). You can withdraw your consent at any time by clicking the ”unsubscribe” link in any marketing email.

 

E. When You Browse Our Website (Analytics & Cookies)

 

  • Data Collected: Anonymized or pseudonymized data such as your IP address, browser type, device information, and browsing behavior on our site.
  • Purpose: To analyze website performance, improve user experience, and for marketing purposes.
  • Legal Basis: Consent (for non-essential cookies) or Legitimate Interest (for essential/functional cookies). We manage this through our cookie consent tool.

 

F. When You Leave Comments

 

  • Data Collected: The data shown in the comments form, your IP address, and browser user agent string to help spam detection.
  • Purpose: To display your comment and prevent spam.
  • Legal Basis: Legitimate Interest.

 

4. Who We Share Your Data With

 

We do not sell your personal data. However, we must share it with trusted third-party partners (data processors) to provide our Service.

  • Print-on-Demand Partners: To create your custom product, we must send your order details (including your name and shipping address) to our print partner.
    • Printful
  • Shipping Companies: To deliver your order, we share your name, address, and contact details (email/phone for notifications) with our logistics partners.
    • Depending on where you order we use the local post delivery such as Postnord in Sweden.
  • Payment Processors: As mentioned in 3B, we share order information with our payment providers to process the payment.
    • Klarna and Kustom
  • IT & Analytics Providers: We use services for website hosting, analytics, and marketing.
    • Google Analytics

 

5. Data Transfers Outside the EU/EEA

 

Some of our third-party providers (e.g., for analytics or marketing) may be based outside the European Union (EU) or European Economic Area (EEA). When we transfer your data to such a country (e.g., the USA), we ensure that a legal basis for the transfer exists, such as the EU Commission’s Standard Contractual Clauses (SCCs), to ensure your data is protected to an equivalent level as within the EU.

 

6. How Long We Retain Your Data

 

We only keep your data for as long as necessary to fulfill the purpose for which it was collected.

  • Order Information: We are required by Swedish law (e.g., the Accounting Act – Bokföringslagen) to keep data related to sales for a minimum of seven (7) years.
  • Customer Service Data: Inquiries are typically stored for 2 – 3 years to manage follow-up questions and warranty claims.
  • Marketing Consent: We keep your data for marketing purposes as long as you are subscribed. If you unsubscribe, your data will be deleted or anonymized.
  • Comments: If you leave a comment, the comment and its metadata are retained indefinitely so we can recognize and approve any follow-up comments automatically.

 

7. Your Rights Under GDPR

 

You have comprehensive rights regarding your personal data.

  • Right to Access: You can request a copy of the data we hold about you.
  • Right to Rectification: You can request that we correct any inaccurate or incomplete data.
  • Right to Erasure (”Right to be Forgotten”): You can request that we delete your personal data. (Note: We cannot delete data we are legally obliged to keep, such as accounting data).
  • Right to Restriction: You can request that we limit the processing of your data.
  • Right to Data Portability: You can request to receive your data in a machine-readable format to transfer to another provider.
  • Right to Object: You can object to our processing of your data that is based on legitimate interest.

To exercise any of these rights, please contact us at [email protected]

 

8. Right to Lodge a Complaint

 

If you believe we are processing your data incorrectly or in violation of GDPR, you have the right to lodge a complaint with the Swedish supervisory authority, Integritetsskyddsmyndigheten (IMY).

Website: imy.se

 

9. Cookies

 

Our Website uses cookies for functionality, analytics, and marketing. For detailed information on which cookies we use and how you can manage your consent, please see our separate Cookie Policy (which is managed by our CookieYes tool).

 

10. Data Security

 

We take the security of your data seriously. We use technical and organizational measures, such as SSL encryption, to protect your data from unauthorized access, loss, or alteration.