ARTICLE 1: PREAMBLE
The purpose of this privacy policy is to inform users of the Website:
This policy supplements the legal notices and General Terms and Conditions of Use of the Website, as well as the Cookie Policy.
In this policy, “Marieholm” refers to: Marieholm Salt Specialties AB, a Swedish limited company with its registered office at 70 Marieholmsgatan 70, Gothenburg – 415 02, Sweden.
ARTICLE 2: PRINCIPLES RELATING TO THE COLLECTION AND PROCESSING OF PERSONAL DATA
In accordance with Article 5 of the GDPR, all personal data collected on this Website is processed in accordance with the following principles:
| 1. Lawfulness, fairness, and transparency | Your data is processed in a lawful, transparent, and understandable manner, and you are informed of how it is used. |
| 2. Specific and limited purpose | Data is collected only for explicit and legitimate purposes, as described in Article 3 below, and will not be used subsequently in a manner incompatible with those purposes. |
| 3. Minimization and relevance | Only data that is strictly necessary for the purposes is collected and processed. |
| 4. Accuracy and updating | We make every effort to ensure that your data is accurate and, if necessary, updated. All reasonable measures will be taken to ensure that inaccurate data is deleted or corrected without delay. |
| 5. Storage limitation | Your data is only kept for as long as is necessary to fulfill the purposes for which it was collected. |
| 6. Security | Your data is processed in such a way as to ensure appropriate security of the data collected, protected against unauthorized access, unlawful processing, loss, destruction, or accidental damage through appropriate technical or organizational measures. |
Legal basis for processing:
The processing of your data is only lawful if at least one of the following conditions is met:
ARTICLE 3: PERSONAL DATA COLLECTED AND PROCESSED WHEN BROWSING THE WEBSITE
Article 3.1: Data collected
When you use the Website, Marieholm collects information about you or the people accompanying you, including:
Article 3.2: When is your personal data connected?
Your personal data may be collected when browsing the Website, using forms, or during any exchange with the publisher, in accordance with the purposes detailed below.
Article 3.3: Purposes of processing
The table below sets out the purposes for which we process your data, the legal basis for this processing, and the associated retention periods:
| Purpose/Activity | Data collected | Legal basis for processing | Retention period |
|---|---|---|---|
| Responding to your requests and providing customer service. | Last name, first name, email address, phone number, geographical area of residence, nature of your request, and additional information provided in connection with your request. | Depending on the request: Processing necessary for the performance of a contract to which you are a party, or for the implementation of pre-contractual measures.Or processing based on our legitimate interest in responding to user requests. | For the duration of the request processing, then up to 24 months after the last interaction for internal follow-up purposes. In the event of a complaint or dispute, for the duration of the legal limitation period in accordance with applicable national laws. |
| Ensuring the security of the Website, preventing and detecting security incidents and fraud attempts. | Connection data: IP address, connection timestamp, server logs (requests, errors); session ID; information relating to the visitor’s device and browser; traces of security events (e.g., connection attempts (successful/failed)). | Processing based on our legitimate interest in ensuring the secure operation of our Website and information system. | Up to 13 months from collection. |
| Ensuring the proper functioning, maintenance, and technical support of the Website, | Technical data, including application logs, error logs, page load times, cache data; technical session cookies, session ID, connection status; IP address (in case of diagnosis), browser and device information; voluntarily provided information, error captures. | Processing based on our legitimate interest in ensuring the proper functioning, maintenance, and improvement of our Website and online service. | Up to 13 months from collection. |
| Analyzing traffic and use of the Site in order to improve navigation, ergonomics, and performance of the Site. | Aggregated and pseudonymized browsing data (pages viewed, duration of visit, browsing path, clicks), device and browser data, and anonymized IP address. This data does not allow for the direct or indirect identification of users. | Processing based on our legitimate interest in measuring the audience of our Site and optimizing the user experience and the quality of our services (audience measurement cookies exempt from consent). | Up to 13 months from collection. |
| Analyzing website traffic, measuring the effectiveness of our marketing activities, and personalizing the content and advertisements displayed. | Cookie identifiers and browsing data (pages viewed, duration of visit, clicks, user path, interactions with content and advertisements), technical data (browser, device, language), and approximate geographic data (approximate country or region via IP address). | Processing based on your consent, collected via the cookie banner. | Up to 13 months from collection. |
| Managing requests from data subjects to exercise their rights regarding personal data protection. | Information provided by the data subject: name, email address, type of request, any supporting documents, date of request and date of response. | Processing necessary to comply with a legal obligation. | For the time necessary to process the request, then archived for 3 years for evidentiary purposes in order to demonstrate the Group’s compliance with legal obligations. |
Marieholm may retain certain personal data beyond the periods indicated above when such retention is necessary to comply with legal or regulatory obligations, or to exercise or defend legal rights.
Article 3.4: Data hosting
The Website: www.jozosalt.com
is hosted by ORDERLAND Webhosting AB, a simplified joint stock company, whose VAT number is SE556680874601,
Whose registered office is located at Kungsgatan 56, 411 08 Gothenburg, Sweden
Email: support@oderland.se Website: https://orderland.se
Data storage location: Sweden
Additional information: https://www.oderland.se/villkor-policies/integritetspolicy/
Article 3.5: Who has access to your data:
A) Access to your data within Marieholm
Access to personal data collected on the Website is strictly limited to individuals within our company who need this information to perform their duties.
The main categories of employees concerned are:
B) Transfer of your data to third parties
Subject to adequate safeguards, we may transfer certain personal data to third parties, but only in the following cases:
Service providers and subcontractors
Your data may be shared with service providers acting on our behalf, such as: hosting providers, IT and technical services, statistical analysis tools, lawyers, auditors, etc.
Your data may also be transferred to service providers when necessary to provide a service you have requested (e.g., product delivery, payment services, sending newsletters if you have consented to this).
These service providers are bound by a subcontracting agreement requiring them to process your data only in accordance with our instructions and in compliance with applicable regulations.
Local authorities (legal or regulatory obligations)
We may disclose certain data when required by law, in particular to the tax authorities, the competent judicial or administrative authorities, or to defend our rights in court.
Guarantees and transfers outside the EU:
If your data is transferred to recipients outside the European Union, we ensure that appropriate safeguards are in place (standard contractual clauses, certification, or data protection agreement).
The transfer is only carried out when the recipient country ensures a sufficient level of protection or when contractual guarantees in accordance with the GDPR are provided.
Purpose of the transfer:
Data transfers are carried out only for the purposes for which the data was collected, in accordance with the purposes described in Article 3.3.
Article 3.5: Use of cookies
When you visit our Site, cookies and similar technologies may be installed on your device. These technologies are used to:
Cookie consent and management:
Non-essential cookies are only placed after you have given your consent via our cookie banner, which is displayed when you first visit our Site. If you give your consent, your choice will be stored for 6 months by default. After 6 months, you will be asked again to choose your cookie preferences.
After confirming your choice, you can manage and change your cookie preferences at any time by clicking on the Axeptio cookie icon visible throughout your browsing on our Site (at the bottom of your screen) or by clicking [ here ]. You can also manage your preferences directly in your browser settings. Depending on your choices, certain features of the Site may be affected.
For more information, please see our Cookie Policy.
ARTICLE 4: DATA CONTROLLER
Personal data is collected by Marieholm Salt Specialties AB, a Swedish limited company with its registered office at 70 Marieholmsgatan 70, Gothenburg – 415 02, Sweden.
If you have any questions about your personal data or wish to exercise your rights, you can contact the data controller as follows:
ARTICLE 5: YOUR RIGHTS
You have the right to obtain information and access your personal data collected by Marieholm, subject to applicable legal provisions.
You also have the right to have your data corrected, to request its deletion or to restrict its processing. You may also exercise your right to data portability and your right to object to the processing of your personal data, in particular when it is used for marketing purposes.
Under applicable law, you also have the option of setting instructions regarding the storage, deletion, and communication of your personal data after your death.
To exercise these rights, you can contact us by email at [email] or via the contact form available on our Website.
In order to guarantee the confidentiality and protection of your personal data, you may be asked to prove your identity in case of reasonable doubt. In this case, a copy of the front of an official identity document may be requested, solely for the purpose of verifying your identity. In addition, our team may contact you if additional information is required to process your request.
Requests are processed within a maximum of 30 days of receipt. This period may be extended by two additional months in the event of complexity or a high number of requests, in accordance with applicable regulations. We will inform you of any extension and the reasons for the delay within one month of receiving the request.
When you request the deletion of your data, please note that this deletion will result in the permanent deactivation of your account, which means that you will no longer be able to log in.
Finally, you have the right to lodge a complaint with the Swedish Data Protection Authority (Integritetsskyddsmyndigheten), the lead supervisory authority, or with the competent supervisory authority in the country where you have your habitual residence, place of work, or where the alleged infringement was committed, in accordance with applicable regulations.
ARTICLE 6: WHAT ARE YOUR OBLIGATIONS?
Accuracy of Personal Data
As a User of the Website or a Customer of Marieholm, you acknowledge that you are aware of the importance of the accuracy of your Personal Data.
You therefore undertake to provide only accurate Personal Data during your exchanges and/or when entering into a contract with us, when requesting Services, and throughout your use of the Website, and to keep this data up to date.
In this regard, you may request the rectification or erasure of your data as provided for in Article 5.
Management of Personal Data of minors
We do not knowingly collect or solicit Personal Data from minors.
Please ensure that your children do not provide us with any Personal Data without your permission. In the event that such data is provided, you may contact the Data Protection Officer, whose contact details are provided in Article 4, to have this information deleted.
Optional fields
In general, failure to fill in the fields marked with an asterisk (*) on the Websites will prevent us from providing you with all or part of the Services we offer and the features of the Website. Your requests may not be processed optimally.
The other fields are optional and are intended to improve the quality of the Services offered to you.
When a form includes an optional field, we ask that you only enter information that is strictly objective and essential to your request and that you never provide sensitive data (such as passwords, credit card numbers, health data, etc.).
Sensitive Personal Data
We do not collect any so-called sensitive Personal Data.We remind you that data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as genetic and biometric data for the purpose of uniquely identifying a natural person, data concerning health, or data concerning a natural person’s sex life or sexual orientation are considered sensitive Personal Data.
If you voluntarily provide us with sensitive Personal Data, particularly in the context of special requests related to your reservation, you acknowledge that you have given us your explicit consent to process these specific categories of Personal Data.
ARTICLE 7: GENERAL INFORMATION AND MODIFICATION OF THE PRIVACY POLICY
In the event that any clause in this Privacy Policy is declared invalid, in particular due to a change in legislation, regulations, or a court decision, this shall in no way affect the validity of the other clauses in the Policy.
This Privacy Policy and the documents to which it refers are governed by Swedish law.
This Privacy Policy is subject to updates, which will be posted online. The previous Privacy Policy will then be automatically replaced by the new version. The new version will be immediately enforceable against you. Use of this Website is subject to the Privacy Policy in effect at the time of use.
In order to stay informed of any changes and updates, we recommend that you consult the Privacy Policy regularly. Marieholm may, but is not obliged to, provide information about updates by posting a message on this Website or by sending an email.
This Policy was published on January 26, 2026.
ARTICLE 8: DEFINITIONS
“Customer”: a natural person, whether or not they hold a Customer Account, who uses the Website.
“Customer Account”: space made available to a Customer on the Website following their registration under the terms and conditions set out in the Terms of Use and/or Terms and Conditions of Sale. This Customer Account is strictly personal, individual, non-assignable, and non-transferable to a third party. The Customer Account is accessible via the Customer’s username and password.
“Personal Data” or “Data”: This refers to “any information relating to an identified or identifiable natural person; An “identifiable natural person” is a natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person” according to Article 4 of the GDPR.
For example, data that allows you to be identified, such as your title, surname, first name, and email address, are Personal Data.
“Applicable Regulations”: this refers to all existing or future regulations and standards applicable to Users and the Site, including: legislation and regulations applicable to Internet platforms such as the Site and concerning the protection of personal data.
“General Data Protection Regulation” or “GDPR”: Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
“Site(s)”: refers to the website hosted at the following link: www.jozosalt.com and the associated subdomains.
“User”: any natural person accessing the Site, on their own behalf or on behalf of a legal entity, and who, as such, has the capacity and/or power to enter into contracts through the Site, whether they are a simple visitor or a Customer.