Who are we?
Our website address is https://omnihalsa.com and we refer to it as OmniHälsa. The materials are coming from public available data if they are incomplete or wrong you may ask us to correct them. The web and material collection is driven by our collaborative international IT and Web developer teams. The marketing and third party advertisement is driven by AdLanda Reklambyrå (Org nr. 700607-XXXX) . And the financial collection of orders is supported by BehJoo Gruppen AB (Org. nr. 559113-7145).
Our goal is to provide you with a positive experience on our websites and in using our products and services.
This Privacy Statement outlines your rights to privacy and our commitment to safeguarding your personal data. OmniHälsas’ ambition is to be fully transparent in our privacy practices and the choices you can make regarding your personal data that is processed by OmniHälsa. Services refers to any products, services, content, features, technologies or functions and all related websites, applications and services offered to us by us. Platform refers to the websites, mobile applications, mobile websites or any other online properties through which we offer you our Services.
OmniHälsa is a platform that facilitates business for traders and considered as a marketplace. OmniHälsa delivers services to private and public businesses (Customers) worldwide. OmniHälsa’s head office is located in Stockholm, Sweden. OmniHälsa company is located in the EU/EEA area and are therefore subject to European data protection and privacy regulations and directives. Our privacy policies and guidelines respect and comply with applicable privacy legislation. All major decisions regarding privacy in OmniHälsa are made at a corporate level.
This Privacy Statement can be found at our omnihalsa.com submenu of info on every page of omnihalsa.com.
The Statement provides information about data processing carried out by OmniHälsa when OmniHälsa determines the purpose and means of the processing (OmniHälsa as data controller) as well as data processing performed on behalf of our customers based on their instructions (the Customer as a data controller and OmniHälsa as a data processor).
Why may we collect your personal data?
Personal data is information that can identify you as an individual person, such as name, email address, street address, IP address or phone number. Any of your interactions with our platform is tracked, so by analyzing these, we can provide you better services. Processing your personal data is necessary for us to serve you or our customers.
We only use your personal data when permitted by law. Most of the time, we will use your personal data under the following circumstances:
– When we need to fulfill the contract we are about to enter into or that we have entered into with you.
– Whenever it is necessary for our legitimate interests to improve our Services and provide you with a secure Platform.
– Whenever we have to comply with legal or regulatory obligations.
In certain circumstances we may also process your personal data based on your consent. If we do so, we will inform you of the reason and category of personal data to be processed at the time we ask your consent.
Below is a description of how we use your personal data (and what legal basis we rely on to do so. We also identify what our legitimate interests are whenever necessary).
For the purpose of providing access and providing the Services through our Platform
–If you sign in to the Platform using your email ID, we will use your email address to identify you as a user and allow you to access our Platform
-If you sign in through your Facebook or Google Plus account, we will use your first and last name on your Facebook or Google Plus profile and your Facebook or Google Plus email address to identify you as a user on our Platform and allow you to access our platform.
-The above login information is also used by us to provide you with our Services in accordance with our terms and conditions.
-We use your email address and mobile number (via SMS) to make suggestions and recommendations about our Services that may be of interest to you.
With the help of your login information, which includes your email address, we map the different devices (such as computers, mobile phones, tablets) that you use to access our Platform. This allows us to link your activity across our Platform across devices and helps us give you a seamlessly integrated experience no matter what device you are using.
We process the information described above based on our legitimate interest in improving your experience on our Platform and in ensuring the proper performance of the contract we have entered into with you.
We process the information described above for the proper execution of your agreement with you and on the basis of our legitimate interest in performing marketing activities to provide you with Services that may be of interest to you.
To Improve Your Platform Experience
We use clickstream data to
– Provide targeted content, for example, by providing you with more relevant search results whenever you use our Services.
– Determine how much time you spend on our Platform and how you navigate through our Platform so that we can understand your interests and improve our Services based on this data. For example, we may provide you with suggestions on content you can visit based on the content you have accessed.
– Monitor and communicate the effectiveness of targeted advertising campaigns for our business partners and for internal business analytics.
We use your location data for the following purposes:
– To compile anonymous and aggregated information about the characteristics and behaviors of OmniHälsa users, including for business analysis, segmentation, and anonymous profile development.
– To improve the performance of our Services and customize the content we target you. For example – with the help of location data, we show nearby ad lists to improve your shopping experience.
– To measure and monitor your interaction with third party advertising banners that we place on our Platform.
To provide you with a secure Platform
– We use your access data and unique identifiers from your device to manage and secure our Platform (including troubleshooting, data analysis, testing, fraud prevention, system maintenance, service, communication and data storage).
– We analyze your communications through our chat feature to prevent fraud and to promote security by blocking spam or abusive messages that may have been sent to you by another user.
We process the information described above to properly comply with our contract with you, to improve our services and on the basis of our legitimate fraud prevention interests.
What data do we collect about you?
Data provided by direct interaction
Registration and other account information
When you register on our Platform, you will be required to provide your email address, phone number, social media like Google or Facebook account, etc.
If you decide to purchase our Services, you will be asked to provide billing information, which are required elements of the advertisement. Without this data, we will not be able to provide the Services.
Communication via chat functionality on our Platform
When you use our chat feature to communicate with other users, we collect information that you choose to provide to other users through this feature.
Depending on the choices you make at login to our Services or during the process of using our Services, you may choose to additionally provide the following personal data:
The types of data that OmniHälsa collects about you may be:
-Your own and the Customer’s contact details such as name, address, telephone/mobile number, and mail.
-Information about the date of birth, age, and gender
-Your interests and preferences and interests
-Feedback, comments or questions that are left by you
-The content you have uploaded such as photos and video
-Unique user information such as login ID, username, password and security question
-Financial information such as credit card information
-Website traffic information as provided by your web browsers such as browser type, language and the address of the website from which you arrived and other traffic information such as IP address
-Clickstream behavior such as which links you click and when
-Other personal data contained in your profile on third-party social networks (Facebook, Twitter, LinkedIn, etc.)
We may also in some cases compare a collected IP address with a geographic map service to derive your general location.
If you make a post, comment or similar on OmniHälsa, such information can be read and used by anyone with access to the site and used for purposes over which neither OmniHälsa nor you have control. Information, which you submit to OmniHälsa is on your full responsibility. OmniHälsa will publicize any comment, testimonial or similar made by you without your prior consent when you post them; it is supposed that you agreed that it goes public.
As a data controller, OmniHälsa does not collect sensitive personal data about you.
How do we collect personal data?
In general, OmniHälsa collects data directly from you. We may collect information about you from our partner companies or third parties.
In some cases, we may also collect information about you from other legitimate sources if you have given your consent that the party collecting the personal data may share this with others. These sources may be third-party data aggregators, OmniHälsas’ marketing partners, public sources or third-party social networks. OmniHälsa will be able to combine personal data about you obtained from one source with data obtained from other sources. This gives us a more complete picture of you as a contact person, which also gives us the possibility of serving you in a more relevant way with a greater degree of personalization.
Automatic Data Collection Tools
OmniHälsa uses a variety of technologies to collect information about your movements on the web as well as interest and preferences, which you have freely made available.
Data We Collect Automatically When You Use Our Services
When you interact with our Platform or use our Services, we automatically collect the following information about you:
We collect device-specific information, such as operating system version or unique identifiers. For example, the name of the mobile network you are using. We associate this device with the device identifiers of your OmniHälsa account.
Depending on the permissions on your device, if you post an article on our Platform, we will automatically collect and process information about your current location. We use various technologies to determine location, including IP address, GPS, Wi-Fi hotspots, and mobile data towers. Your location data allows you to view user articles near you and help you publish articles in your area.
Customer and Registration Data
Technical details, including your device’s Internet Protocol (IP), time zone, and operating system. We will also store your login information (registration date, date of last password change, date of last successful login), the type and version of your browser.
We collect information about your activity on our Platform, including the websites you used to access our Platform, the timestamp of each visit, searches you performed, listings or banner ads you accessed, your interaction with those advertising ads. advertising or listings, duration of your visit and the order in which you accessed the content on our Platform.
Do we collect data from minors?
Our Services are not intended for children under 16 and we do not knowingly collect data from anyone under 16. If we realize that a person under 16 has given us their data, we will delete that data immediately.
Cookies are small text files that contain a string of characters and uniquely identify a browser. They are sent to a computer by website operators or third parties. Cookies are placed on your computer to collect standard internet log information and visitor behaviour information. This information is used to track visitor use of the website and to compile statistical reports on website activity.
Most browsers are initially set up to accept cookies. However, you may be able to change your browser settings to cause your browser to refuse third-party cookies or to indicate when a third-party cookie is being sent. If you would like to know more about cookies and how they work, please visit www.allaboutcookies.org.
Depending on the company managing them:
– Own cookies:
Are those which are sent to the user’s system from a system or domain managed by the editor and from which the service requested by the user is provided.
– Third party cookies:
Are those which are sent to the user’s system from a system or domain that is not managed by the editor but by another company processing the data obtained through the cookies.
Depending on the period of time that they remain active:
– Session cookies: Are those cookies designed for gathering and storing data while the user is using a web page. They are usually used to store information that is only intended for providing the service requested by the user on one single occasion (e.g. a list of purchased products).
– Persistent cookies: In this type of cookie data continues to be stored on the system and may be accessed and processed during a specific period of time by the manager of the cookie, which may range between several minutes and several years.
Depending on their purpose:
– Technical cookies: Are those which allow the user to browse a website, platform or application and use the different options or services offered, such as, for example, controlling data traffic and communication, identifying the session, accessing restricted areas, recalling the parts of an order, carrying out the process for purchase of an order, making a request to register for or participate in an event, using security elements during browsing, storing contents for the transmission of videos or sound or sharing content through social networks.
– Analytical cookies:
Are those which enable the manager to monitor and analyse the behaviour of the users of the websites to which they are linked. The information collected by means of this type of cookie is used to measure the activity of the websites, applications or platforms and to draw up browsing the profiles of the users of such websites, applications and platforms in order to introduce upgrades on the basis of the analysis of the data on the use of the service by users.
– Advertising cookies:
Are those which enable the most efficient management possible of the advertising space that the editor has included in a website, application or platform from which the requested service is provided on the basis of criteria such as the edited content or the frequency with which the advertisements are shown.
– Behavioural advertising cookies:
Are those which enable the most efficient management possible of the advertising space that the editor has included in a website, application or platform from which the requested service is provided. These cookies store behavioural information about users obtained through the ongoing observance of their browsing habits, which allows a specific profile to be defined in order to show advertising on the basis of such profile.
The data processed by cookies is required for the aforementioned purposes in order to protect our legitimate interests and those of third parties pursuant to Article 6 sec. 1 sent. 1 lit. f GDPR.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article or listing, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Data Used: The contact us submission data — IP address, user agent, name, email address, website, and message — is submitted to the Akismet service (also owned by Automattic) for the sole purpose of spam checking. The actual submission data is stored in the database of the OmniHälsa and is emailed directly to the admin of the site. This email will include the submitter’s IP address, timestamp, name, email address, website, and message.
Data Synced (?): Post and post metadata associated with a user’s contact us submission. The IP address and user agent originally submitted with the comment are synced, as well, as they are stored in post meta.
Embedded content from other websites
Articles or listings on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Data Used: This feature will send a hash of the user’s email address (if logged in to the site or WordPress.com — or if they submitted a comment on the site using their email address that is attached to an active Gravatar profile) to the Gravatar service (also owned by Automattic) in order to retrieve their profile image.
This feature only records activities of a site’s registered users.
Data Used: To deliver this functionality and record activities around site management, the following information is captured: user email address, user role, user login, user display name, WordPress.com and local user IDs, the activity to be recorded, the WordPress.com-connected site ID of the site on which the activity takes place, the site’s Jetpack version, and the timestamp of the activity. Some activities may also include the actor’s IP address (login attempts, for example) and user agent.
Activity Tracked: Login attempts/actions, post and page update and publish actions, comment/pingback submission and management actions, plugin and theme management actions, widget updates, user management actions, and the modification of other various site settings and options. Retention duration of activity data depends on the site’s plan and activity type. See the complete list of currently-recorded activities (along with retention information).
Data Synced (?): Successful and failed login attempts, which will include the actor’s IP address and user agent.
Data Used: In order to record page views via WordPress.com Stats (which must be enabled for page view tracking here to work) with additional loads, the following information is used: IP address, WordPress.com user ID (if logged in), WordPress.com username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code.
Activity Tracked: Page views will be tracked with each additional load (i.e. when you scroll down to the bottom of the page and a new set of posts loads automatically). With Google Analytics a page view event will also be sent to our Google Analytics account with each additional load.
Data Used: Commenter’s name, email address, and site URL (if provided via the comment form), timestamp, and IP address. Additionally, a jetpack.wordpress.com IFrame receives the following data: WordPress.com blog ID attached to the site, ID of the post on which the comment is being submitted, commenter’s local user ID (if available), commenter’s local username (if available), commenter’s site URL (if available), MD5 hash of the commenter’s email address (if available), and the comment content. If Akismet (also owned by Automattic) is enabled on the site, the following information is sent to the service for the sole purpose of spam checking: commenter’s name, email address, site URL, IP address, and user agent.
Activity Tracked: The comment author’s name, email address, and site URL (if provided during the comment submission) are stored in cookies. Learn more about these cookies.
Data Synced (?): All data and metadata (see above) associated with comments. This includes the status of the comment and if Akismet is enabled on the site, whether or not it was OmniHälsaas spam by Akismet.
This feature is only accessible to users logged in to WordPress.com.
Data Used: In order to process a post like action, the following information is used: IP address, WordPress.com user ID, WordPress.com username, WordPress.com-connected site ID (on which the post was liked), post ID (of the post that was liked), user agent, timestamp of event, browser language, country code.
Activity Tracked: Post likes.
Activity Tracked: A cookie (akm_mobile) is stored for 3.5 days to remember whether or not a visitor of the site wishes to view its mobile version. Learn more about this cookie.
We may contact you via push notification function we analyze the performance and efficacy of communication by using the following data.
Data Used: IP address, WordPress.com user ID, WordPress.com username, WordPress.com-connected site ID and URL, Jetpack version, user agent, visiting URL, referring URL, timestamp of event, browser language, country code. Some visitor-related information or activity may be sent to the site owner via this feature. This may include: email address, WordPress.com username, site URL, email address, comment content, follow actions, etc.
Activity Tracked: Sending notifications (i.e. when we send a notification to a particular user), opening notifications (i.e. when a user opens a notification that they receive), performing an action from within the notification panel (e.g. liking a comment or marking a comment as spam), and clicking on any link from within the notification panel/interface.
Data Used: The following information (made available from the visitor’s browser) is collected and sent to Automattic’s Demand Partners: IP address, geographical data (derived from the IP address), user agent, operating system, device type, unique user ID (randomly generated identifier), current URL, and IAB (Interactive Advertising Bureau) interest category. Log data (IP address, geographical data, user agent, operating system, device type) is stored for 30 days. The unique user ID is stored in cookies and is retained for 1 year.
Activity Tracked: Ad impressions, video-related events (i.e. pause, mute, 100% plays, etc.) or errors, and ad click events. Various cookies are used for the following purposes: delivering targeted advertisements to specific visitors, storing user identifiers, and collecting anonymous ad platform stats.
Image views are recorded on the site.
Data Used: If image view tracking is enabled, the following information is used: IP address, WordPress.com user ID (if logged in), WordPress.com username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code.
Activity Tracked: Image views.
If you have given your consent, we will send you a newsletter to inform you about news on [our products and services] and to point out offers of our Business and distributors or other third parties. Your data will not be passed on by us to those third parties to whose offers we refer you through the newsletter, unless you have consented to this.
You can unsubscribe from the newsletter at any time by clicking on the corresponding link at the end of the e-mail. The legal basis for sending the newsletter is Article 6 sec. 1 sent. 1 lit. a GDPR.
Data Used: To initiate and process subscriptions, the following information is used: subscriber’s email address and the ID of the post or comment (depending on the specific subscription being processed). In the event of a new subscription being initiated, we also collect some basic server data, including all of the subscribing user’s HTTP request headers, the IP address from which the subscribing user is viewing the page, and the URI which was given in order to access the page (REQUEST_URI and DOCUMENT_URI). This server data used for the exclusive purpose of monitoring and preventing abuse and spam.
Activity Tracked: Functionality cookies are set for a duration of 347 days to remember a visitor’s blog and post subscription choices if, in fact, they have an active subscription.
When you play a video on the site we track your behaviour and analyze it by using the following information.
Data Used: For video play tracking via WordPress.com Stats, the following information is used: viewer’s IP address, WordPress.com user ID (if logged in), WordPress.com username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code. If Google Analytics is enabled, video play events will be sent there, as well.
Activity Tracked: Video plays.
Data Used: In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user.
Activity Tracked: Failed login attempts (these include IP address and user agent). We also set a cookie (jpp_math_pass) for 1 day to remember if/when a user has successfully completed a math captcha to prove that they’re a real human. Learn more about this cookie.
Data Synced (?): Failed login attempts, which contain the user’s IP address, attempted username or email address, and user agent information.
We track users behavior when they search the site by using the following data.
Data Used: Any of the visitor-chosen search filters and query data in order to process a search request on the WordPress.com servers.
Data Used: When you use official sharing buttons, each button loads content directly from its service in order to display the button as well as information and tools for the sharing party. As a result, each service can, in turn, collect information about the sharing party. AddToAny sharing button is active on the site, information such as the sharing party’s IP address as well as the page URL will be available for each service, so sharing counts can be displayed next to the button. When sharing content via email (by Akismet), the following information is used: sharing party’s name and email address (if the user is logged in, this information will be pulled directly from your account), IP address (for spam checking), user agent (for spam checking), and email body/content. This content will be sent to Akismet (also owned by Automattic) so that a spam check can be performed.
This feature is only accessible to users logged in to omnihalsa.com.
Data Used: In order to process a comment like, the following information is used: WordPress.com user ID/username (you must be logged in to use this feature), the local site-specific user ID (if the user is signed in to the site on which the like occurred), and a true/false data point that tells us if the user liked a specific comment. If you perform a like action from one of our mobile apps, some additional information is used to track the activity: IP address, user agent, timestamp of event, blog ID, browser language, country code, and device info.
Activity Tracked: Comment likes.
You may choose which cookies you want on this website by setting your browser. For further information on you opt-out choices, please see below.
Third parties and subcontractors that provide services
Google Analytics: This cookie allows us to see information on user website activities including, but not limited to, page views, source and time spent on a website. The information is depersonalized and is displayed as numbers, meaning it cannot be tracked back to individuals. This will help to protect your privacy. Using Google Analytics we can see what content is popular on our website and strive to give you more of the things you enjoy reading and watching.
Data Used: Please refer to the appropriate Google Analytics documentation for the specific type of data it collects. WooCommerce (owned by Automattic) and this feature simultaneously and having all purchase tracking explicitly enabled, purchase events will send Google Analytics the following information: order number, product id and name, product category, total cost, and quantity of items purchased.
Activity Tracked: This feature sends page view events (and potentially video play events) over to Google Analytics for consumption. Some additional events are also sent to Google Analytics: shopping cart additions and removals, product listing views and clicks, product detail views, and purchases.
OmniHälsa uses Google Analytics a web analytics service provided by Google for www.omnihalsa.com websites as well as where activated for the websites of our OmniHälsa users.
You can prevent data collection via Google Analytics by clicking this link: Opt-Out-Link
An “Opt-out Cookie” shall then be applied to your website which shall prevent any future collection of your data when visiting this website.
Additional information on how Google handles personal data in its advertising network can be found here: Advertising and Privacy.
Google Analytics Remarketing: Places cookies on your computer, which means that after you leave our website, Google can show you advertisements about OmniHälsa that you might be interested in, based on your previous behavior on our website. This information is not personally identifiable.
Google AdWords: By using Google AdWords code, we are able to see which pages helped lead to contact us submissions. This allows us to make better use of our paid search budget. This information is not personally identifiable.
OmniHälsa uses Google AdWords, an analytics service provided by Google, and Google AdWords, conversion tracking, as well as Google AdWords Remarketing on our www.omnihalsa.com website.
Google AdWords stores a cookie for conversion tracking on the computer’s hard drive (so-called “conversion cookie”) when the site visitor clicks on a Google-served ad. These cookies lose their validity after 30 days and are not used for personal identification. When certain pages are visited on our website, Google and OmniHälsa may recognize that the page visitor has clicked on the ad and has been redirected to this page.
The information obtained through the conversion cookies is used to generate statistics for AdWords customers who use conversion tracking. These statistics tell us the total number of users who clicked on the ad served by Google and viewed a page with a conversion tracking tag. More information about Google AdWords Terms of Service and Privacy can be found here.
With Google AdWords Remarketing, Google sets a cookie in the terminal’s browser, which automatically enables interest-based advertising by means of a pseudonymous cookie ID and based on the pages visited by the OmniHälsa user / page visitor. If the user has consented to sharing his web history with Google, then Google can use the history of the visit to the OmniHälsa website, along with the Google analytics data and the Google AdWords data in order to create targeted audiences for cross device remarketing. The user can permanently disable the setting of such cookies by installing the browser plug-in available at the following link: https://www.google.com/settings/ads/onweb/
Google Adwords Remarketing: Places cookies on your computer This means that after you leave our website Google can show you advertisements about OmniHälsa that you might be interested in, based on your previous behavior on our website. This information is not personally identifiable.
You can prevent the information generated by the Google cookie about your use of our websites from being collected and processed by Google in the future by downloading and installing Google Analytics Opt-out Browser Add-on for your current web browser. This Add-on is available at http://tools.google.com/dlpage/gaoptout.
Google AdWords and Google DoubleClick
OmniHälsa also uses the cross-device capabilities of Google AdWords and Google DoubleClick from the provider Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
This feature allows the Google Analytics remarketing ad groups described above, to be linked to the cross-device features of Google AdWords and Google DoubleClick. In this way, interest-based, personalized advertising messages that have been adapted to the particular user based on their previous usage and browsing behavior on one terminal (e.g., cell phone) may also be displayed on another user’s terminal (e.g., tablet or PC).
Once the user has given their consent, Google links the web and app browsing history to the corresponding Google account for this purpose. In this way, the same personalized advertising messages can be displayed on each device on which the user logs on with his Google Account. To support this feature, Google Analytics collects Google-authenticated IDs of users who are temporarily linked to our Google Analytics data to define and create audiences for cross-device ad promotion. The site visitor can permanently object to cross-device remarketing / targeting by disabling personalized ads in their Google Account: https://www.google.com/settings/ads/onweb/. If the site visitor wishes to object to Google’s general tracking process, the conversion tracking cookies can be disabled by setting the browser to block cookies from the domain www.googleadservices.com: https://www.google.de/settings/ads.
The aggregation of the collected data in the Google account of the site visitor takes place exclusively on the basis of his consent, which he can give or revoke on Google (Article 6 (1) (a) GDPR). For data collection operations that are not merged into the user’s Google Account (for example, because they do not have a Google Account or have objected to the merge), the collection of data is based on Art. 6 (1) (f) GDPR. The legitimate interest arises from the fact that OmniHälsa has an interest in the anonymous analysis of the website visitors for advertising purposes.
On the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer within the meaning of Article 6 (1) (f) GDPR, we use the web analysis service, Google Signals. Via Google Signals, Google provides us with reports on cross-device user numbers, as well as different groups of users, based on different device combinations. In order to do so Google uses the data of users who have activated the option “personalized advertising” in their Google account settings. Google Signals can only be used with activated IP anonymization. As a result, your IP address will be abbreviated by Google within the member states of the European Union or in other states that have ratified the Convention on the European Economic Area prior to its transmission to the United States. Thus, no conclusions can be drawn as to the identity of a single user. You can object to the collection of your data via Google Signals, at any time via disabling “personalised advertising” in your Google Account: https://support.google.com/ads/answer/2662922?hl=en Additional information on how Google handles personal data in its advertising network can be found here: Advertising and Privacy
OmniHälsa also uses Google Tag Manager, a solution operated by Google, that allows OmniHälsa to manage so-called website tags(including, for example, Google Analytics and other Google marketing services in our online offering) using an interface. The tag manager itself (which implements the tags) does not process users’ personal data. With regard to the processing of users’ personal data, reference is made to the following information about Google’s services.
Usage Policy: https://www.google.com/analytics/tag-manager/use-policy/.
On our websites you can watch videos uploaded on YouTube (a Google company) or Vimeo (Vimeo Inc., 555 West 18th Street, New York, NY 10011, USA (“Vimeo”)) that are integrated via iFrame. The iFrames are set in a way that a connection is established when you click on the “play” button. If you are logged in to YouTube or Vimeo account at the same time when you press play, YouTube resp. Vimeo may associate your surfing behavior with your user profile. You can prevent such data processing by logging out of your account before visiting our websites. As this is the service of a third party, we have no influence on the processing of such data by Google or Vimeo. The purpose and scope of data collection and the further processing and use of the data by Google or Vimeo as well as your rights and setting options for the protection of your privacy can be found in the relevant information on data protection at https://policies.google.com/privacy?hl=en/ or https://vimeo.com/privacy.
If you’re logged in to Google, your data will be assigned directly to your account when you click on a video. If you do not wish to associate with your profile on YouTube, you must log out before activating the button.
Google stores your data (even for non-logged-in users) as usage profiles and evaluates them. According to Article 6 (1) (f) of the GDPR, such an evaluation is based on the legitimate interests of Google in the display of personalized advertising, market research and / or tailor-made design of its website. You have a right to object to the creation of these User Profiles, and you must be directed to YouTube to use them.
Legal basis for this data processing is Art. 6 para. 1 sent. 1 lit. f GDPR. The purpose and legitimate interest is to increase the visibility of this website and the attractiveness and user-friendliness of our services.
OmniHälsa uses the Google Maps map service via an API and also embeding custom maps. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use Google Maps, it is necessary to save your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.
The use of Google Maps is in the interest of making our website appealing and to facilitate the location of places specified by us on the website.
Further information about handling user data, can be found in the data protection declaration of Google at https://policies.google.com/privacy?hl=en/.
OmniHälsa may use the so-called “Facebook Pixel”. “Facebook Pixel” is a product of the social network Facebook.
In the case of explicit consent (via Facebook settings), this may track the behavior of users after they have seen or clicked on a Facebook ad. This process is designed to evaluate the effectiveness of Facebook advertisements for statistical and market research purposes and may help to optimize future advertising efforts.
Other retargeting, remarketing, referral advertising, conversion tracking, and online marketing tools
Based on the legitimate interest in the analysis, optimization and economic operation of our online offer, as well as in analyzing user behavior in order to optimize both the OmniHälsa website and the OmniHälsa advertising, as well as where necessary, based on explicit consent OmniHälsa uses the following online marketing services.
OmniHälsa uses the following online marketing services.
The OmniHälsa website may use Bing Ads technology to collect and store data that is used to create usage profiles using pseudonyms. This service enables us to track user activity on our website when it has reached our website via advertisements from Bing Ads. If the page visitor reaches our website via such an ad, a cookie is set on their computer. On our website may Bing UET tag be integrated. This is a code used to store some non-personally identifiable information about the use of the website in connection with the cookie. This includes, among other things, the length of time spent on the website, which areas of the website were accessed, and which advertisements have reached the website. Information on the identity of the respective site visitor, as well as forms for entering personal data are not recorded.
The collected information is transmitted to Microsoft servers in the USA and stored there for a maximum of 180 days. The collection of the data generated by the cookie and related to the use of the website as well as the processing of this data can be prevented by deactivating the setting of cookies by the site visitor in their browser.
In addition, based on the user’s preferences, Microsoft may be able to track usage behavior across multiple electronic devices through cross-device tracking, enabling it to display personalized advertising on or in Microsoft websites and apps. This behavior can be disabled by the site visitor at https://choice.microsoft.com/en-us/opt-out.
LinkedIn Conversion Tracking
OmniHälsa may use the analysis and conversion tracking technology of the LinkedIn platform. LinkedIn’s technology can show you more relevant, interest-based advertising.
We also receive aggregated and anonymous reports from LinkedIn on ad activities and information about how site visitors interact with our website. For more information on LinkedIn privacy, please visit: https://www.linkedin.com/legal/privacy-policy.
َOmniHälsa relies on MailChimp to help us when we need to inform our customers of new updates and other stuff.
OmniHälsa uses Twilio Sendgrid for the sending of order confirmations,renewal notifications, billing information as well as notifications and newsletters. It uses inventory data, contract data from
Activity Tracked: A cookie (akm_mobile) is stored for 3.5 days to remember whether or not a visitor of the site wishes to view its mobile version. Learn more about this cookie.
We host advertisements from AdSense and other advertising agencies, you should review their policy separately.
Google advertising cookies
Amazon Associates: (Affiliate Partner and Native Site Ads.)
Booking.com: (Affiliate Partner)
We are also may use other affiliate networks including third-party vendors and ad networks serving ads like Adtraction, Adprofit, Adrecord, Criteo och TradeDoubler. You can visit those websites to opt out of targeted advertising: aboutads.info, adrecord.se, adprofit.se, criteo.com.
When placing an order, you must provide data necessary to complete the order. The data provided in the order form will be stored in the database and will be stored there until the expiry of the limitation period for claims under the concluded contract. Each order is recorded in the database as a separate item. The legal basis for collecting and processing this data is Art. 6 para. 1 sentence 1 lit. b GDPR. The above-mentioned principles for data processing also apply in this context.
Payment for the order is made via PayPal or Stripe. In this regard, PayPal and Stripe are an independent personal data administrator.
PayPal (PayPal Inc.)
Data Used: Transaction amount, transaction currency code, product title, product price, product ID, order quantity, PayPal payer ID, and PayPal transaction ID.
Activity Tracked: The PayPal payer ID, transaction ID, and HTTP referrer are sent with a payment completion tracking event that is attached to the site owner.
Data Synced (?): PayPal transaction ID, PayPal transaction status, PayPal product ID, quantity, price, customer email address, currency, and payment button CTA text.
Stripe payment service provided by Stripe Inc., which allows users to make online payments.
To ensure greater security, we only share the information necessary to execute the transaction with the financial intermediaries handling the transaction. Some of our services may also enable the sending of timed messages to you, such as emails containing invoices or notifications concerning the payment.
Data Used: For payments with PayPal or Stripe: purchase total, currency, billing information. For taxes: the value of goods in the cart, value of shipping, destination address. For checkout rates: destination address, purchased product IDs, dimensions, weight, and quantities. For shipping labels: customer’s name, address as well as the dimensions, weight, and quantities of purchased products.
Third Party Links
Webspace for the OmniHälsa Blog
Which third parties does OmniHälsa receive data from?
We may receive personal information about you from various third parties [and publicly available sources] as described below:
– Certain technical and usage information from analytics providers such as Google.
– Business operation-related contact data from advertising networks, such as data providers related to operations and service partners (Example: Business Activity Information).
– Service usage data on the platform related to the services or transactions. (Example: data directly related to advertisements posted on the platform to prevent fraud and report such cases to their respective entities) or when someone report your advertisement and provide us with some additional information
What automated decision making and/or profiling we do with user data
We have no automated decision making or profiling however we may use available profilings that is provided by Google Analytics, Facebook, or any similar third parties that are provided above.
How long does OmniHälsa retain your data?
We will only keep your personal data for as long as necessary to serve the purposes for which we collect it, including for the purposes of meeting any legal, accounting or reporting requirements.
In determining the appropriate retention period for personal data, we consider the amount, nature and sensitivity of personal data, the potential risk of damage by unauthorized disclosure or use of your personal data, the reasons why we process your personal data, personal and if we are able to comply with those reasons by other means and the applicable legal requirements.
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
OmniHälsa will only retain your personal data for as long as necessary for the stated purpose, while also taking into account our need to answer queries or resolve problems and to comply with legal requirements under applicable laws.
This means that we may retain your personal data for a reasonable period after your last interaction with us. When the personal data collected is no longer required in this way, we destroy or delete it in a secure manner. We may process data for statistical purposes, but in such cases, data will be anonymized.
Where does OmniHälsa store your data?
The data we collect about you will be stored and processed both inside and outside the EEA on secure servers to provide the best possible user experience.
If you have questions regarding the retention period of your personal data, please contact us using contact us form.
Do we share your data with any body?
We may need to share your personal data with the parties below for the purposes of above in What personal data we collect and why we collect it.
We may share your personal data with third parties for other purposes but only in the following contexts:
– Business partners
OmniHälsa may share your personal information with our partners in the event that this is legitimate from a business perspective. For example, if you purchase a service on behalf of your employer that we provide through one of our certified partners.
The police and/or other authorities may demand the handover of personal information from OmniHälsa. In these cases, OmniHälsa will only hand over the data if there is a court order or another legal obligation to do so.
-Mergers and acquisitions
In connection with mergers, acquisitions or divestiture of all or parts of OmniHälsas’ business, the acquiring entity as well as its consultants and OmniHälsas’ will obtain access to data managed by the OmniHälsa entity/entities involved and this may in some cases include personal data. In which case, such external parties will enter into a Non-Disclosure Agreement (NDA) with OmniHälsa, which will also cover potential disclosure of personal data.
We may share data with our affiliated companies located within or outside the EEA that assist us in providing business operations services such as product improvement, customer support and fraud detection mechanisms. Any sharing of personal data within the OmniHälsa outside the European Economic Area (“ EEA ”) will always be subject to safeguards as described in International Transfers, or a data transfer agreement that clearly defines the obligations ensure adequate technical and organizational measures to protect their data.
– Third Party Service Providers:
We use third party service providers to assist us with some aspects of our Services, such as cloud storage services such as Hostgator. Service providers may be located inside or outside the ” EEA “.
We carry out controls on third party service providers and require them to respect the security of their personal data and to deal with them in accordance with the law. We do not allow them to use your personal data for their own benefit and only allow them to process your personal data for the purposes specified and in accordance with our instructions.
Where we also send your data
Visitor comments may be checked through an automated spam detection service.
Information that maybe published on other OmniHälsa networks:
Where and when your listing is relevant to other platforms managed and developed by OmniHälsa, mainly your personal information visible to other users in your public profile and all listers page we may republish this in our other network including our social media channels. Be aware that unauthorized indexers or data aggregators may also without our permission (although is not permitted and is against our copyright) keep or publish your public information, so be sure that what you make public on OmniHälsa the extent of distribution could be unrestricted to OmniHälsa and it’s social medias.
International data transfers
Whenever we transfer your personal data outside the EEA, we guarantee a similar degree of protection by ensuring that at least one of the following safeguards is implemented:
-We will only transfer your personal data to countries that the European Commission considers to provide an adequate level of data protection. For more information see European Commission: Adequacy of personal data protection in countries outside the European Union (EU)
-Whenever we use certain service providers, we may use specific contracts approved by the European Commission that give personal data the same protection as they have in Europe. For more information, see European Commission: Contract templates for the transfer of personal data to third countries.
-When we use service providers in the United States of America (US), we may transfer data to them if they are part of the Privacy Shield, which requires them to have similar protection of personal data shared between Europe and the US. USA. For more information, see European Commission: EU-US Privacy Protection Shield .
You may receive a copy of the relevant and implemented safeguards by contacting us via the contact us form.
How does OmniHälsa protect your data?
OmniHälsa takes the trust you place in us seriously. OmniHälsa is committed to preventing unauthorized access, disclosure or other deviant processing of your data. Further, OmniHälsa is committed to ensuring proper use of the information, to maintain data integrity and to secure data availability. As part of our commitment, we utilize reasonable and appropriate physical, technical, and administrative procedures and measures to safeguard the information we collect and process.
We use information to restrict various forms of abuse of the OmniHälsa services, such as fraudulent activities, denial of service attacks, spamming, unauthorized logins and other actions that violate our Terms & Conditions, or are prohibited by law.
All information we receive about you is stored on secure servers, and we have implemented technical and organizational measures that are appropriate and necessary to protect your personal data. OmniHälsa continually assesses the security of our network and the suitability of its internal security information program that is designed to (a) help protect your data from accidental or unlawful loss, access or disclosure, (b) identify reasonable foreseeable risks for OmniHälsa network security, and (c) minimize security risks, including through risk assessments and regular testing. In addition, we ensure that all payment data is encrypted using SSL technology.
Please note that despite the measures we have taken to protect your data, data transfer over the Internet or other open networks is never completely secure and there is a risk that your personal data will be accessed by unauthorized third parties. OmniHälsa has implemented a number of security measures, including:
-Secure operating environments
OmniHälsa stores your data in secure operating environments that are only accessible to OmniHälsa employees and subcontractors on a need-to-know basis. OmniHälsa also follows generally accepted industry standards in this respect to prevent unauthorized access to or misuse of data about you.
– Encryption of payment information
OmniHälsa uses industry-standard encryption to provide protection for sensitive financial information, such as credit card information, sent over the Internet (e.g., when you make payments through OmniHälsas’ Market).
– Prior authentication for account access
OmniHälsa requires its registered users to verify their identity (e.g. login ID and password) before they can access or make changes to their account in order to prevent unauthorized access.
- We do provide email proxy & relay services to reduce unwanted email.
– Please review the privacy policies of any third party sites that OmniHälsa is hyperlinked to personally.
For the encryption (HTTPS over TLS) of OmniHälsa websites of the OmniHälsa user we use the free service “Let’s Encrypt“. Through the certificates, we can offer a so-called transport encryption, which protects the communication to a OmniHälsa website from access by unauthorized third parties.
Please note that these protections do not apply to the personal data that you choose to share in public areas such as comments or public profile.
What does OmniHälsa on data breach event?
In the case of a data breach, System administrators will immediately go through affected users and will ask users to reset passwords. If a data breach is detected, we will notify users both via the site and email newsletter within 72 hours.
What happens on the event of ownership change or investments?
Why may we contact you?
Communication and Marketing
We will communicate with you via email, SMS or notification via the application associated with our Services / Platform to confirm your registration, inform you if your ad listing has started / expired and for other transactional messages related to our Services. . Since such transactional messages are mandatory for us, you cannot decline them.
You may, however, ask us at any time to stop sending you marketing communications by simply accessing the opt-out link in your email or SMS message or changing your communication settings in your account. If you have trouble changing your settings, please contact us via the contact us form..
You may receive marketing communications from us if:
-You have requested such information;
-You use our Platform or Services;
-You provided us with your details when participating in a contest; or
-You have registered for a promotion.
OmniHälsa sends out information to the contact persons of our customers to keep them informed about OmniHälsa, services and other relevant subjects.
Emails to users that aren’t customers are only sent if they have requested information and consented to the communication by subscribing to the newsletter.
OmniHälsa creates interest profiles to communicate as relevant information as possible to you. We use the user’s email address, other information that has been freely given and use of OmniHälsa digital channels.
What rights do you have over your data?
If you have an account on OmniHälsa or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Under certain circumstances, and under the terms of data protection laws, you have the rights to your personal data.
If you wish to use any of the following rights, please access your profile settings or contact us via the contact us form :
– Right to request access to your personal data (known as “data subject’s access request”). This allows you to receive a copy of the personal data we have about you and to verify that we are processing it under the law.
– Right to request corrections to any data we have about you. This allows you to correct any incomplete or incorrect data we have about you, although we are required to verify the accuracy of the new data you provide to us.
– Right to request limitation of processing of your personal data. This allows you to request the suspension of processing of your personal data in the following circumstances: (a) if you want us to determine the accuracy of the data; (b) whenever our use of the data does not comply with the law; (c) whenever you need us to keep your data, even if you do not need it, in case you need to establish, exercise or defend yourself against legal proceedings; or (d) if you disagree with our use of your personal data, although we are required to verify that there are superior legitimate interests in order to continue to use them.
– Right to request the deletion of your personal data. This allows you to request that we delete or remove your personal data whenever there is no good reason for us to continue processing it. You also have the right to ask us to delete or remove your personal data whenever you have successfully exercised your right to refuse processing (see below), whenever we have processed your information unlawfully or whenever we are required to delete it. Your personal data for local law enforcement purposes. Please note that for certain purposes we may be legally required to retain your data. Please refer to our third party section about web hosting.
– Right to object to the processing of your personal data whenever we use a legitimate interest (or the legitimate interest of a third party) and whenever there is something related to your personal situation that leads you to contest its processing in these terms, as you consider that this could have a fundamental impact on their fundamental rights and privacy. You also have the right to object whenever we process your personal data for direct marketing purposes. In some cases, we may demonstrate that we have legitimate and compelling reasons that override your rights and privacy to process your information.
– Right to request the portability of your personal data to you or a third party. We will provide you, or provide a third party of your choice, with your personal data in a structured, commonly used, and electronically readable format. Please note that this right only applies to automated information for which you initially gave your consent for use or in situations where we have used the information for the purpose of fulfilling the contract we have entered into with you.
– Right to withdraw consent at any time to the processing of your personal data. This does not affect the legality of any processing we have already carried out based on your prior consent.
No fees: You will not have to pay any fees to access your personal data (or exercise any of the other rights). However, we may charge you a reasonable fee if your request is manifestly unfounded, repetitive or excessive. On the other hand, we may refuse to fulfill your request under these circumstances.
Response Time: We try to respond to all legitimate requests within one month. Occasionally, we may take more than a month if your order is particularly complex or if you have placed multiple orders. In that case, we will notify you and keep you informed.
In addition, you have the right to make a complaint to the responsible data protection authority at any time pursuant to email@example.com.
However, before you make a complaint to the data protection authority, we would like to have the opportunity to address your concerns at first instance, so please use contact us form .
How to contact us
How will OmniHälsa inform you about changes to our privacy statement?