Back to Home

Privacy Policy

Last Updated: February 14, 2026

1. Introduction

At Cohabit AB, we are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.

This policy complies with the General Data Protection Regulation (GDPR) and Swedish data protection laws. By using our services, you agree to the collection and use of information in accordance with this policy.

2. Data Controller

The data controller responsible for your personal data is:

Cohabit AB

Email: support@cohabit.se

3. Information We Collect

3.1 Personal Information

When you create an account or use our services, we may collect:

  • Name and contact information (email, phone number, address)
  • Billing and payment information
  • Account credentials (username, password)
  • Corporate information (if applicable)
  • Delivery addresses and preferences
  • Customer service correspondence

3.2 Usage Data

We automatically collect certain information about your device and how you interact with our website:

  • IP address and browser type
  • Device information and operating system
  • Pages visited and time spent on pages
  • Referral source and exit pages
  • Date and time stamps

3.3 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and analyze website traffic. You can control cookie settings through your browser preferences. For more information, see our Cookie Policy.

3.4 Payment Information

Payment processing is handled by third-party payment processors (Stripe). We do not store complete credit card information on our servers. Payment processors have their own privacy policies governing the use of your information.

4. How We Use Your Information

We use the collected information for the following purposes:

  • To provide and maintain our rental services
  • To process orders, payments, and deliveries
  • To manage your account and subscriptions
  • To communicate with you about orders, services, and updates
  • To send marketing communications (with your consent)
  • To improve our website, products, and services
  • To detect and prevent fraud and security issues
  • To comply with legal obligations
  • To analyze usage patterns and trends
  • To provide customer support

5. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Contract performance: Processing is necessary to fulfill our rental services and subscription agreements
  • Consent: You have given explicit consent for specific processing activities (e.g., marketing emails)
  • Legal obligation: Processing is required to comply with legal requirements (e.g., accounting, tax laws)
  • Legitimate interests: Processing is necessary for our legitimate business interests (e.g., fraud prevention, service improvement)

6. Data Sharing and Disclosure

We may share your information with:

6.1 Service Providers

Third-party vendors who perform services on our behalf, including:

  • Payment processors (Stripe)
  • Cloud hosting providers (Supabase, Vercel)
  • Delivery and logistics partners
  • Email service providers
  • Analytics providers (Google Analytics)
  • Customer support tools

6.2 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

6.3 Legal Requirements

We may disclose your information when required by law, court order, or legal process, or to protect our rights, property, or safety.

6.4 With Your Consent

We may share your information for any other purpose with your explicit consent.

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal data, including:

  • Encryption of data in transit and at rest
  • Secure authentication and access controls
  • Regular security assessments and updates
  • Employee training on data protection
  • Secure backup and disaster recovery procedures

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Specifically:

  • Account data: Retained while your account is active and for 12 months after closure
  • Transaction records: Retained for 7 years as required by Swedish accounting laws
  • Marketing data: Retained until you withdraw consent or request deletion
  • Usage data: Typically retained for 12-24 months for analytics purposes

9. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right to Access: You can request a copy of the personal data we hold about you
  • Right to Rectification: You can request correction of inaccurate or incomplete data
  • Right to Erasure: You can request deletion of your data under certain circumstances
  • Right to Restriction: You can request that we limit the processing of your data
  • Right to Data Portability: You can request your data in a structured, machine-readable format
  • Right to Object: You can object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: You can withdraw consent at any time where processing is based on consent
  • Right to Lodge a Complaint: You can file a complaint with the Swedish Data Protection Authority (Integritetsskyddsmyndigheten)

To exercise any of these rights, please contact us at support@cohabit.se

10. International Data Transfers

Some of our service providers are located outside the European Economic Area (EEA). When we transfer your data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or adequacy decisions.

11. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information.

12. Marketing Communications

With your consent, we may send you promotional emails about new products, special offers, and other updates. You can opt out of marketing communications at any time by:

  • Clicking the "unsubscribe" link in any marketing email
  • Updating your communication preferences in your account settings
  • Contacting us directly at support@cohabit.se

Note: Even if you opt out of marketing emails, we will still send you transactional emails related to your orders and account.

13. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by posting the new policy on this page with an updated "Last Updated" date. Your continued use of our services after changes constitutes acceptance of the revised policy.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Cohabit AB

Data Protection Officer

Email: support@cohabit.se

Swedish Data Protection Authority

If you have concerns about how we handle your personal data, you have the right to lodge a complaint with:

Integritetsskyddsmyndigheten (IMY)

Box 8114

104 20 Stockholm, Sweden

Phone: +46 8 657 61 00

Website: www.imy.se

By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to our collection, use, and disclosure of your information as described herein.