Privacy Policy
This Privacy Policy explains how Thivarelsyvorlan ("we", "us") collects and processes personal data when you visit thivarelsyvorlan.world, submit forms, or communicate with us. We apply the EU General Data Protection Regulation (GDPR) and complementary Swedish national rules.
1. Data controller and contact
The controller is Thivarelsyvorlan, Lantmätargränd 36, 553 20 Jönköping, Sweden. You can reach us in writing at the postal address or through the published electronic contact paths shown on the website footer. We will verify the channel you used before replying to sensitive requests.
info@thivarelsyvorlan.world, contact@thivarelsyvorlan.world, support@thivarelsyvorlan.world, help@thivarelsyvorlan.world
2. Categories of data we process
Depending on your interaction, we may process identity and contact data (name, email, optional phone), message content you choose to send, technical connection metadata (approximate location derived from IP at regional level, browser type, device type), consent logs for cookies, and purchase or fulfillment data if you complete an order subject to separate transactional records.
3. Purposes and lawful bases
- Website delivery and security: legitimate interests in operating a secure HTTPS service, preventing abuse, and logging minimal technical evidence (Art. 6(1)(f) GDPR).
- Responding to inquiries: performance of steps prior to a contract or legitimate interests in supporting prospective customers (Art. 6(1)(b)/(f)).
- Legal compliance: tax, accounting, or regulatory obligations where applicable (Art. 6(1)(c)).
- Optional analytics or marketing cookies: consent (Art. 6(1)(a)) via the cookie banner.
4. Retention
Contact form copies are kept only as long as needed to complete the conversation and any follow-up shipment, typically up to twenty-four months unless law requires longer. Accounting records may be stored for seven years where Swedish bookkeeping rules apply. Cookie consent proofs are stored twelve months from the last update unless a shorter browser storage period applies. Technical security logs rotate within ninety days unless an active investigation requires extension.
5. Recipients and processors
We use infrastructure and messaging providers that process data on documented instructions. Providers in third countries are engaged only with Chapter V GDPR tools such as Standard Contractual Clauses or adequacy decisions. A written list of primary processors is available on request.
6. Your rights
You may request access, rectification, erasure, restriction, portability (where automated processing applies), and object to processing grounded in legitimate interests. Where consent is the basis, you may withdraw it without affecting prior lawful processing. You may lodge a complaint with the Swedish Authority for Privacy Protection (IMY) or another EU supervisory authority.
7. Children
Our shop is aimed at adults. We do not knowingly collect data from anyone below the age at which digital consent is valid in Sweden without parental authorization.
8. Automated decision-making
We do not use solely automated decisions that produce legal effects concerning you.
9. Security measures
We apply TLS for transport, role-based access to mailboxes, segregation of production credentials, periodic review of access, and staff confidentiality expectations. No online system is risk-free; please avoid transmitting unnecessary health details by email.
10. Geography, product category, and advertising context
This site is operated from Sweden (Jönköping) with pages primarily in English. Visitors may be located in the EU/EEA or other regions depending on network routing; shipping eligibility is confirmed at order level. Products discussed on this domain, including Calmora, are food supplements regulated as food, not medicinal products.
We do not use this Policy to make health claims. Promotional or informational content on the site is meant to describe product identity, labeling, availability, pricing structure, and fulfillment contacts. We do not state that any supplement diagnoses, treats, cures, or prevents disease.
Where traffic arrives through third-party advertising (for example Google Ads), campaign text and landing-page wording must be read together. Our aim is to keep on-site language consistent with platform rules for dietary supplements, EU food-information principles, and Swedish consumer-marketing expectations. Information provided here does not override the mandatory particulars printed on the physical pack you receive.
11. Changes
Material updates to this Policy will be posted with a revised last updated notice. Continued use after notification where required may be treated as acknowledgement for non-material wording fixes.