Privacy Policy

Last updated: 03.03.2026

1. Data Controller

Company name: Lukas Brune
Sole trader: Lukas Brune
Organisation number: 19990717-1731
Address: Näsberg Losvägen 241, 827 72 Korskrogen, Sweden
Email: lukas@lukas-crafting.se

I am the data controller responsible for processing personal data in accordance with the EU General Data Protection Regulation (GDPR).

2. Personal Data Collected

I may collect and process the following personal data:

  • Name

  • Email address

  • Phone number (if provided)

  • Company name (if provided)

  • Information submitted via the contact form

  • IP address and technical browser data

Providing this data is voluntary, but necessary to respond to your inquiry.

3. Purpose and Legal Basis

Personal data is processed for the following purposes:

  • Responding to inquiries submitted via the contact form

  • Providing services to clients within the EU

  • Managing business relationships

  • Fulfilling legal obligations under Swedish law (e.g., accounting requirements)

Legal bases under GDPR (Art. 6):

  • Performance of a contract

  • Legitimate interest (communication and business operations)

  • Legal obligation

4. Contact Form

When you submit a message via the contact form:

  • The data you provide is used solely to process your request

  • The data is not used for marketing without your consent

  • Messages may be stored for documentation and business purposes

5. Data Retention

Personal data is stored only as long as necessary for the purposes described above.

Accounting-related data is stored in accordance with Swedish bookkeeping law (normally 7 years).

Inquiry data without a business relationship is deleted after a reasonable period.

6. Data Sharing and Transfers

Personal data may be shared with:

  • Web hosting providers

  • IT service providers

  • Accounting services

Data is processed within the EU/EEA whenever possible.

If data is transferred outside the EU/EEA, appropriate safeguards (such as Standard Contractual Clauses) are applied.

Personal data is never sold.

7. Your Rights Under GDPR

As an EU resident, you have the right to:

  • Access your personal data

  • Rectify inaccurate data

  • Request deletion (“right to be forgotten”)

  • Restrict processing

  • Data portability

  • Object to processing

  • Lodge a complaint with the Swedish Authority for Privacy Protection (IMY)

8. Data Security

Appropriate technical and organisational measures are implemented to protect personal data against unauthorized access, loss, or misuse.

9. Contact

For privacy-related questions or to exercise your rights, please contact:

lukas@lukas-crafting.se

10. Cookies

This website uses cookies.

Cookies are small text files stored on your device. They help ensure proper website functionality and improve user experience.

Types of cookies used:

  • Necessary cookies – required for technical operation of the website

  • Security cookies – used to protect against spam and abuse

  • Analytics or marketing cookies (if enabled) – used only with your consent

Where required by law, a cookie banner is displayed to obtain your consent before non-essential cookies are set.

You can control or delete cookies via your browser settings.

11. WordPress

This website is built using WordPress.

WordPress may store technical cookies necessary for:

  • Website functionality

  • Security features

  • Login sessions (if applicable)

These cookies are based on legitimate interest (Art. 6(1)(f) GDPR).

12. Google Fonts

This website may use Google Fonts provided by Google Ireland Limited.

To display fonts properly, your browser may connect to Google servers, which may process your IP address.

Legal basis:

  • Legitimate interest in consistent website presentation (Art. 6(1)(f) GDPR)

If Google Fonts are hosted locally on this server, no connection to Google servers occurs.

13. Google reCAPTCHA

This website uses Google reCAPTCHA to protect the contact form from spam and abuse.

Provider:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

reCAPTCHA analyzes user behavior (e.g., IP address, mouse movements, time spent on site) to distinguish humans from bots.

Legal basis:

  • Legitimate interest in preventing spam and ensuring website security (Art. 6(1)(f) GDPR)

More information:
https://policies.google.com/privacy

14. International Data Transfers

Some third-party services (e.g., Google services) may process data outside the EU/EEA.

Where applicable, data transfers are safeguarded using:

  • EU Standard Contractual Clauses (SCCs)

  • Adequacy decisions by the European Commission

15. Updates to This Policy

This Privacy Policy may be updated from time to time to reflect legal or technical changes.