Privacy Policy
At Riskely, we care deeply about your privacy. For us, data protection is not just a legal requirement – it’s about trust, respect, and transparency in every interaction.
When you communicate with us, participate in our events, or use our services, you should feel confident about how we handle your personal data.
Who is responsible for processing your data
Riskely AB is the data controller for personal data processed in connection with our website, marketing activities, customer communication, and support.
When our customers use Riskely’s SaaS platform, we process personal data on their behalf as a data processor. Such processing is governed by a separate Data Processing Agreement (DPA), which is signed as part of the SaaS subscription.
What data we collect
We only collect the information we need to provide a great experience and maintain strong business relationships.
This may include:
- Contact details: name, email address, phone number.
- Professional information: position, organization, industry.
- Communication data: emails, meeting notes, support tickets.
- Usage data: how you interact with our products or emails.
- Technical data: IP address, browser type, and system logs (used only for security and troubleshooting purposes).
We do not collect any sensitive personal data.
Why we process your data
We process personal data to:
- Communicate with customers, suppliers, and partners.
- Manage agreements, orders, and invoicing.
- Provide support and improve our services.
- Inform you about updates, events, or news (when you have given consent).
- Fulfil legal obligations such as accounting or regulatory requirements.
Legal basis for processing
We rely on the following legal bases for processing personal data:
| Purpose | Legal basis |
|---|---|
| Managing customer and supplier relationships | Performance of contract |
| Communication and support | Legitimate interest |
| Marketing and newsletters | Consent |
| Fulfilling legal obligations (e.g., accounting) | Legal obligation |
You may withdraw your consent at any time by contacting us.
How long we keep your data
We keep personal data only for as long as necessary for the purpose it was collected.
As a general guideline:
- Customer and contact details are stored for up to three years after the end of the business relationship.
- Marketing consents are kept for up to two years after your last interaction.
- Support communications are kept for up to twelve months after resolution.
- Accounting records are retained for seven years, in accordance with legal requirements.
When data is no longer needed, it is securely deleted or anonymized.
Who has access to your data
We never sell your personal data.
Your data may be shared with:
- Service providers assisting us with hosting, communication, and support.
- Affiliated companies within our corporate group, when necessary to fulfil agreements.
- Authorities, if required by law.
All service providers are bound by agreements ensuring GDPR compliance and appropriate security measures.
Where data is processed
We primarily process and store personal data within the EU/EEA.
If data is transferred outside the EU/EEA, we use the European Commission’s Standard Contractual Clauses and apply additional safeguards such as encryption and access control.
How we protect your data
We use both technical and organizational security measures to prevent unauthorized access, loss, or disclosure of personal data.
These include:
- Encrypted data transfers
- Access control and role-based permissions
- System logging and monitoring
- Regular security assessments
Your rights
You have the right to:
- Request access to your personal data.
- Have incorrect or incomplete information corrected.
- Request deletion or restriction of processing.
- Object to certain types of processing, such as marketing.
- Receive your data in a portable, machine-readable format.
- Withdraw your consent at any time.
If you believe our processing violates applicable data protection laws, you may file a complaint with the Swedish Authority for Privacy Protection (IMY) at www.imy.se.
Contact us
If you have questions, wish to exercise your rights, or simply want to talk to us about data protection, please contact:
info@riskely.com
Last Updated: June 2025
We may update this privacy policy from time to time to reflect changes in our practices or legal requirements.
The latest version is always available on our website.At Riskely (”we”, ”us”), protecting your privacy is important for an effective, secure, and seamless collaboration. This policy describes how we handle your personal data, including the legal basis and your rights.
