This policy describes how Glanser processes (collects, uses, stores, and in some cases shares) personal data in connection with:

• visits to our website
• contact with us
• business relationships
• marketing and outreach

We process personal data in accordance with GDPR and applicable Swedish legislation.

Glanser AB, reg. no. 5595489039], is the data controller.

Contact: Niclas Frid

privacy@glanser.com

Gjuterigatan 9, 553 18 Jönköping, Sweden

When you contact us

When you contact us or book a meeting, we process data in order to understand and respond to your request.

This includes:

• name
• email address
• phone number
• company affiliation
• message or other information you share

When you visit our website

In order for the website to function and improve over time, we process certain technical information.

This may include:

• IP address
• device and browser information
• which pages are visited
• approximate geographic location (city/region)

In a business relationship

In a customer or partner relationship, we process contact details and communication required to deliver and develop the collaboration.

For marketing and outreach

We work with targeted B2B communication. This means that we sometimes contact relevant individuals in companies where we assess that our services may be of interest.

In this context, we may process:

• name
• email address
• role or title
• company / group
• business-related information

Sources of the data:

• public sources (e.g. company websites)
• professional networks such as LinkedIn
• databases and partners

We process personal data in order to:

• respond to inquiries and book meetings
• deliver and follow up on our services
• operate, analyze, and improve our website
• communicate relevant and business-related content
• carry out targeted B2B marketing

Our ambition is that communication should be relevant and value-creating.

Contract

When we process data in order to:

• enter into or fulfill a contract

Legitimate interest

When we:

• contact companies for B2B purposes
• analyze and develop our business

Our legitimate interest is to offer relevant services to companies.We carry out a balancing test to ensure that the processing is proportionate.

Consent

When we:

• use non-essential cookies
• carry out certain digital marketing activities

Consent can be withdrawn at any time.

We use cookies to:

• ensure that the website functions
• analyze usage
• (if you consent) improve marketing

You can change your settings at any time via the cookie settings on the website.

We share personal data with providers that help us operate our business, such as:

• IT and hosting providers
• analytics tools
• CRM and email systems
• marketing platforms
• meeting booking systems

These providers act as data processors and process data only in accordance with our instructions.

Some providers may process personal data outside the EU/EEA.

In such cases, we ensure that an adequate level of protection is in place through:

• EU Standard Contractual Clauses
• or equivalent safeguards

We store personal data only as long as it is justified based on the purpose.

Typical retention periods:

• contact requests: up to 24 months
• marketing data: until you object or the data is no longer relevant
• customer data: during the contract period and according to legal requirements
• technical logs: typically 30–90 days

You have the right to:

• access your personal data
• request correction
• request deletion
• object to processing (especially direct marketing)
• request restriction
• receive your data (data portability)

Right to object to marketing:You can at any time object to the use of your data for direct marketing. In such case, such processing will cease.

To exercise your rights, contact us at privacy@glanser.com.

You also have the right to lodge a complaint withthe Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten).

We do not use personal data for automated decision-making or profiling that has legal or similarly significant effects.

We work with technical and organizational measures to protect personal data against unauthorized access, loss, or manipulation.

We may update this policy. The latest version is always published on our website.