en

Privacy Policy

English

Privacy policy English


Nature TRIBE by Body-Wisdom Torsås
Brändabo 704, 38593 Torsås
Org.nr. 730307-7148

1. General

This privacy policy sets out how we, as the data controller, collect and process your personal data in connection with you registering for and using our docue.com service. We process all personal data in accordance with the requirements of the EU General Data Protection Regulation (GDPR). Our users can include both private individuals and legal entities. Depending on the context, the provisions of this privacy policy can be applied to either private individuals, legal entities or both.

This privacy policy constitutes, together with our terms of use, an agreement on the processing of personal data in such situations where we are considered to process personal data on your behalf or for the company you represent (so-called "DPA" = data processing agreement). Legally, we are then the personal data controller and you or the company you represent are the personal data controller.

2. Purpose and purposes of the processing of personal data

We process personal data so that we can identify the users of the docue.com web service and forward the documents you created in the service to the desired recipients. In addition, we may use the personal data for notifications about the service, direct marketing, invoicing and statistics.

Our communications may be personally targeted. Our aim is to filter out the messages that are unlikely to interest you. The processing of your personal data is based on the customer agreement you enter into with us when you register in our service. A prerequisite for opening your user account is that you provide mandatory information during the registration process.

3. Personal data to be processed

We process one or more of the following personal data:

  • First and last name

  • Social security number

  • Postal address

  • Telephone number

  • Email address

  • Professional reference group (official, student, etc.)

  • Technical data collected through cookies (e.g. IP address, browser type)

  • Credit card details and bank account information

Without your separate consent or other legal obligation, we will not review, edit or delete any contractual materials or documentation or related signatures on your user account. You can independently invite people as users in our service. You are responsible for having the right to process the personal data you enter into our service when you create content and invite others. You are also responsible for other obligations under data protection law in relation to such data, with the exception of the safeguards we have undertaken ourselves in accordance with Chapter 7 below. For example, make sure that you do not share the user rights to your account with people who do not have the right to review said information. You are the personal data controller for the personal data you enter yourself in the document and signature database on your account, while we are the personal data processor.

4. Regular data sources

As a rule, we collect the necessary personal data from you, either directly or via cookies, when you register in our web service and update the information in your user account. In some cases, your information may be entered into our system by a third party – for example, your colleague who invites you to use the joint account for your company. In these cases, you have the opportunity to correct and delete your data from our service within the framework specified in the point "The data subject's rights". In these situations, we encourage you to contact the party that provided your information in the first instance.

5. Our personal data assistant

Only people who have reason to access the data due to their work or position have access to your personal data. All our employees are bound by an appropriate confidentiality agreement. Our partners who process personal data on our behalf, as well as their employees and subcontractors, are covered by similar confidentiality agreements. The selection of our partners includes a detailed data protection assessment.

Important partners and group companies that process personal data on our behalf are:

  • Booking system: Calendly

  • Payment services: Zettle

Personal data may also be processed to a limited extent by service providers, customer service providers, software developers, accountants and consultants for the SMS and email generators we use. The selection of these partners includes an equally thorough data protection assessment. We inform about any significant changes regarding our partners before the changes are implemented. We agree on the processing in writing with each of our partners and expect our partners to comply with the level of data protection set out in this privacy policy. When processing personal data, we are responsible for our partners' actions as for our own. We do not disclose document content saved in our service or related personal data to third parties unless required by law.

For technical reasons, your personal data may be transferred outside the European Union (EU) or the European Economic Area (EEA). A prerequisite for the transfer is that the European Commission has established that the level of data protection in the country of destination is sufficient or that the receiving party outside the EU undertakes to take the appropriate protective measures required by the data protection legislation (GDPR). Upon request, we will personally provide you with up-to-date information on all our partners that process personal data and further clarify the safeguards mentioned in this paragraph in the event that the data is possibly transferred outside the EU.

6. Storage period of personal data

As a rule, we will store your personal data as long as you have a user account in our service. To delete your user account, you need to log in to the service and send us a request via the chat function. If you have both a personal and a company workspace, please indicate in your request which workspace you want to delete.

In some cases, we may delete user accounts that have been inactive for a long time. In these cases, we will notify you in advance of possible deletion actions.

7. Protection of personal data

Access to databases

Our users' personal data is only accessible to people who, due to their work or position, have the right to access such data. The processing of personal data is confidential, which is ensured by supervision and appropriate confidentiality agreements. Each personal data processor has its own username and password for the databases that contain your personal data, so that the personal data processors can be continuously identified. Only employees and others who have received permission have access to Docue's workspaces.
Servers

Document material and user data are stored on servers for which proven security and protection principles are used. This means, among other things, that extensive protection against fire and power outages is used, and that a careful selection process and access control is applied to employees. All data is regularly backed up on a separate backup server. Incoming and outgoing data communications on the servers are monitored using firewalls. Server providers monitor the data communication in real time and immediately intervene against the threats identified through the analysis.
Protection of data communications and documents

We encrypt all our data communication between the computer and the server through SSL technology. The documents to be signed are encrypted with a security code that is sent to the recipient of the signature link. A 256-bit HASH seal is calculated for each document after all signatures have been collected. The seal is stored on the server together with the document and with its help it is possible to discover afterwards if the document is changed after the signatures. In other words, the seal can be used to check afterwards whether the act was done in our service or not. All documentation is stored in encrypted form on the server.
Users' login details and user rights

Each user has a personal username and password. If the user logs into our service from a different device or browser than usual, the login includes two-step verification for additional verification. Then, in addition to their password, the user must enter the one-time code that is sent to the user's phone to log in. In this way, we confirm that the user who logs in is the true owner of the user account.
Data breach information

Even careful procedures cannot guarantee that a data breach in a computer system is impossible. If we become aware of a data breach concerning personal data that we hold, and the breach is likely to lead to a high risk to your rights or freedoms, we will inform you of the breach without undue delay. All probable risk situations will be investigated in detail and reported to the regulatory authority.

8. Rights of the data subject

As a registered user, you have several rights regarding your personal data. Send an e-mail to the address nicole@nature-tribe.se if you want to take any of the actions listed below or have questions about your rights. We forward your request for action to our partners who process personal data.
Please note that as we are not responsible for the content of the documentation or related signatures produced by our users – you or others – on their own Contract Accounts and for fiduciary reasons do not review these materials, we cannot extend the measures below to any personal data found in these materials.
Right to review and obtain information

At your request, we will provide you with all personal data we have about you in our customer register. The information is provided in a structured, commonly used and machine-readable format. You can also check the contact and payment information you last entered in your user account settings yourself.
Right to rectification

At your request, we will correct incorrect personal data about you collected in our customer register. You can also update your contact and payment information yourself from the settings of your user account.
Right to erasure

At your request, we will delete all personal data relating to you from our customer register, unless there is a specific legal basis for retaining the data (e.g. unpaid invoices). Invoking the right to erasure means that your user account will be closed.
Right to restrict processing

You can limit our processing of your personal data if you have a legal basis for this (e.g. incorrect data).
Right to object

You have the right to object to the processing of your personal data for direct marketing purposes. If we contact you, we will likely do so by e-mail. At the end of each of our direct marketing messages there is a button, with which you can easily remove yourself from our direct marketing list.
Right to complaint

You have the right to transfer your case to the supervisory authority if you believe that the processing of personal data concerning you violates relevant legislation. The Swedish Privacy Authority is the national supervisory authority for matters relating to personal data.

9. Our Cookie Policy

We reserve the right to change this cookie policy when deemed necessary. Please check this cookie policy when using our website to ensure that you understand the current policy at the time.

We continuously update this cookie policy. The latest version was updated on 2025-04-24.

Our website uses cookies and similar technologies. It helps us to provide you with a good user experience when you visit our website and it helps us to improve the website.

Cookies are small text files consisting of letters and numbers that we store in your browser or on the hard drive of your computer - provided that you agree to this when you visit our website. Cookies contain information that is transferred to your computer's hard drive.

Cookies contain unique references that are used to distinguish you from other users. Cookies also enable information from the website to be collected. This means that our website can provide you with a personalized experience by, for example, remembering your settings and preferences (such as the choice of language on the website), while we are provided with statistics about how you interact with our website.

Cookies are not harmful to your devices (like viruses or malware are). Some still prefer not to share their information, for example to avoid targeted advertising.

We use the following types of cookies:

  • Necessary cookies: Necessary cookies are required for the operation of our website.

  • Analytical cookies: Analytical cookies allow us to identify and count the number of visitors and see how visitors move around the website when they use it. This helps us to improve the website, for example by making sure that users can easily find what they are looking for. Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information about metrics (number of visitors, bounce rate, etc.).

  • Functional cookies: Functional cookies are used to identify you when you return to our website. This allows us to adapt our content to you personally, and thereby, for example, greet you by name and remember your preferences.

  • Marketing cookies: Marketing cookies are used to analyze our marketing results.

  • Personal cookies: Personal cookies tailor online ads to reflect the content you've previously shown interest in.

  • Targeted cookies: Targeted cookies record your visit to our website, which pages you visited and which links you followed. We use this information to make our website and the advertising displayed on it more relevant to you. For this purpose, we may also share information with third parties.

Please note that third parties in the table below may also use cookies, which is something we have no control over. The third parties listed below may include, for example, customer service and communication providers, advertising/marketing providers, review sites, and providers of external services such as web traffic analysis services and chatbot services. These third-party cookies are likely to be analytical, functional or targeted cookies. For more information on how third parties handle cookies, see the respective party's privacy policy/cookie policy.

Apart from strictly necessary cookies, the main cookies we (and third parties) use in connection with our website are listed in the table below:

We use cookies:

  • To track how visitors use our website.

  • To record whether you have seen specific messages that we display on our website.

  • To keep you logged in to our website.

  • To capture and analyze information such as the number of views and shares of content.

  • To customize advertising based on how you use our website. Some partners, such as Google, may use cookies to show you targeted advertising. Read how Google uses your data.

We can only use cookies if you have given your consent. When you visit our website for the first time, you will be greeted by a cookie banner where you can choose to accept or reject our cookies.

You can update your cookie settings and your consent on our website by opening the cookie banner again. The cookie banner can be found in the footer of our website.

You can always choose to decline the use of cookies. However, if you turn off necessary cookies, some pages and functions of our website may not work correctly. You can also manage cookies via your browser settings or device settings.

Use the links below for information on how to manage cookies in different browsers:

  • Google Chrome

  • Microsoft Edge

  • Safari

  • Mozilla Firefox

You can delete cookies or choose not to be tracked by cookies directly by the relevant third party (for example, you can disable Google Analytics on their website).

You can read more about cookies and how they are regulated on the Norwegian Post and Telecommunications Authority's website.

10. Additional information

We are happy to provide you with more information about our data processing and your rights in connection with data protection. As part of industry practice and good practice, we also allow audits of our data protection practices.

For further questions: nicole@nature-tribe.se