Privacy Policy for Textalk

Last updated: February 11, 2026

At Textalk AB and our subsidiaries, we are committed to protecting your privacy and processing your personal data correctly in accordance with applicable data protection legislation, including the EU General Data Protection Regulation (GDPR). We are transparent about how we handle data so that you can feel confident about how your information is used. Here, we explain what information we collect, why we collect it, how we use it, how long we keep it, and what rights you have.

This policy applies to individuals who use websites, products, and services provided by Textalk and our subsidiaries, as well as customer representatives who communicate with us or have agreements with us. The policy does not apply to users of our customers’ platforms, where we instead act as a data processor on behalf of our customers under separate agreements.

Data Controller

Textalk AB, company registration number 556586-1472, is the data controller for the processing described in this policy, unless otherwise stated for a specific service.

Textalk AB

Krokslätts fabriker 12

431 37 Mölndal, Sweden

Contact regarding data protection issues: gdpr@textalk.se

When does the policy apply?

This policy applies when we, as the data controller, process your personal data in connection with your use of administrative tools, related websites, and other digital tools provided by Textalk and its subsidiaries, insofar as these involve the processing of personal data.

This includes when you:

• use our administrative web interfaces and service platforms,
• use our experimental or sandbox environments,
• use support pages or sites with supplementary documentation,
• use other related web services or APIs,
• contact our customer support via phone, email, or chat,
• represent a company that has an agreement with us.

Personal data we collect

We process the following categories of personal data necessary to deliver our services:

• Name and contact details for contracting parties and primary customer contacts
• Name and contact details linked to logged-in users of our services
• Communication via email, web chat, or support cases
• Technical logs (IP address, timestamps, system events)
• Information for billing, contracts, and customer administration

In addition, we may process further information in our tools if you provide consent for such processing.

Why we process data

Delivering the service

We process personal data to manage logins, accounts, and permissions. The legal basis for this processing is the performance of the applicable service agreement.

Customer support and communication

We process personal data to provide support via email or chat. The processing is based on the applicable service agreement. In order to use certain built-in chat functions, your consent may also be required.

Operations, security, and troubleshooting

We process technical information to prevent intrusions, detect errors, and ensure stable operation of our services. The legal basis is our legitimate interest in maintaining a high level of IT security and protecting our systems and your personal data against unauthorized access or misuse.

Contracts and finance

We process data to manage billing, customer relationships, and statutory requirements under accounting legislation. The legal basis is both the contract and our legal obligations.

Business relationships

We process personal data to maintain contact with existing and potential customers, for example in connection with inquiries, quotations, or other communications. The purpose is to ensure smooth communication and good service. The legal basis is our legitimate interest.

Sharing of personal data

We may share personal data within the Textalk group (including subsidiaries) for the operation and development of our services. We may also engage trusted sub-processors who process personal data on the basis of a valid legal ground.

If such processing requires your consent, this will be indicated in the relevant consent management platform (CMP), where you will receive information about which data is shared, with which recipients, and for what purpose.

We may also disclose personal data if required by law or to respond to a request from a public authority.

Storage period

We do not retain your personal data longer than necessary for each purpose or as required by law. When the data is no longer needed, it will be deleted or anonymized.

The storage period may vary depending on the category of data. For example, data related to contracts and billing must be retained for at least seven years in accordance with accounting legislation. Technical logs are normally stored for a limited period (usually up to 12 months) to enable operations and troubleshooting.

Your rights

Since Textalk AB is established in Sweden, GDPR generally applies to our processing. In general, your rights include:

• Right of access: To obtain a copy of the data we process about you.
• Right to rectification: To request correction of inaccurate data.
• Right to erasure: To request deletion of data no longer needed.
• Right to restriction: To limit how we use your data in certain cases.
• Right to object: To object to processing based on legitimate interest.
• Right to data portability: To receive your data in a structured format.
• Right to withdraw consent: To withdraw consent at any time.

You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY) if you believe we are processing your data incorrectly.

Security

We take the security of personal data very seriously. We work both technically and organizationally to protect data against unauthorized access, loss, or misuse. Our measures include access controls, encryption, firewalls, and regular security testing of our systems and processes.

Changes to this policy

We may update this policy as needed to reflect changes in legislation or our services. The latest version is always published on our website.