Sverigepass logo

Privacy Notice

Last updated: June 5, 2026

This Privacy Notice describes how Nord Tech Creative (trading as “Sverigepass”, “we”, “us”, “our”) collects, uses, and shares personal data when you use sverigepass.com and related services (the “Service”). Nord Tech Creative acts as the data controller for the personal data described here.

1. Personal data we collect

  • Account data: name, email address, password (hashed), language preference.
  • Usage data: chapters viewed, quiz answers, progress, feature usage.
  • Device & technical data: IP address, browser type, device identifiers, log data.
  • Support data: messages you send to us.
  • Payment-related data: processed by our reseller Paddle (see Section 4). We receive limited transaction metadata (order ID, plan, status), not full card details.

2. Purposes and legal bases

  • Provide the Service (contract): create accounts, deliver content, track progress.
  • Security & fraud prevention (legitimate interests): protect users and the platform.
  • Product improvement & analytics (legitimate interests): understand usage and improve features.
  • Customer support (contract / legitimate interests): respond to your requests.
  • Legal compliance (legal obligation): tax, accounting, and regulatory requirements.

3. Cookies

We use strictly necessary cookies to keep you signed in and to remember preferences. We may use analytics cookies to measure usage. You can control cookies through your browser settings.

4. Sharing with recipients

  • Paddle — our Merchant of Record. Paddle processes payments and handles tax compliance, invoicing, and refunds for our one-time access passes. See Paddle's Privacy Notice.
  • Service providers / subprocessors: hosting, authentication, email delivery, analytics, and support tooling.
  • Professional advisers: legal, accounting, and audit.
  • Authorities: when required by law or to protect rights, property, or safety.

5. International transfers

Where personal data is transferred outside the EEA/UK, we rely on adequacy decisions or Standard Contractual Clauses (SCCs) with appropriate supplementary safeguards.

6. Retention

We keep personal data for as long as your account is active and for as long as needed to comply with legal obligations (e.g., tax records). After that we delete or anonymize the data.

7. Your rights

Under the GDPR you have the right to access, rectify, erase, restrict, port, and object to processing of your personal data, as well as to withdraw consent at any time. You may also lodge a complaint with your local supervisory authority (in Sweden, Integritetsskyddsmyndigheten / IMY). We respond to verified requests within one month.

8. Security

We use appropriate technical and organizational measures including encryption in transit, access controls, and least-privilege practices to protect your data.

9. Contact

Nord Tech Creative, Stockholm, Sweden. For privacy requests, contact privacy@sverigepass.com.