Privacy Policy

How we protect and handle your personal information

Last updated: November 15, 2025

Lumen Drift

Kungsträdgårdsgatan 18

111 47 Stockholm, Sweden

Phone: +46 8 472 5193

Email: [email protected]

Our Commitment to Your Privacy

At Lumen Drift, we respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, store, and protect information when you interact with our website and services.

We operate in accordance with the General Data Protection Regulation (GDPR) and Swedish data protection laws. Your trust matters to us, and we handle your information with care and transparency.

Information We Collect

Information You Provide Directly

When you interact with our services, you may choose to provide us with certain information, including:

  • Contact details such as name, email address, and phone number when you fill out our contact forms
  • Company information and project details you share during consultations
  • Correspondence and communications you have with our team
  • Any other information you choose to provide when requesting our services

Information Collected Automatically

When you visit our website, certain information is collected automatically through cookies and similar technologies:

  • Browser type and version, device type, and operating system
  • IP address and general location information
  • Pages visited, time spent on pages, and navigation patterns
  • Referral source and exit pages

Legal Basis for Processing

We process your personal data based on: your consent when you submit forms or accept cookies, legitimate business interests in improving our services and communicating with prospective clients, contractual necessity when providing services you've requested, and compliance with legal obligations under applicable laws.

How We Use Your Information

Service Delivery and Communication

We use your personal information to respond to your inquiries, provide the services you request, communicate about projects and consultations, send you information relevant to your business needs, and maintain our client relationships.

Website Improvement and Analytics

We analyze website usage data to understand how visitors interact with our site, improve user experience and functionality, identify technical issues and optimize performance, and develop better content and services.

Marketing Communications

With your consent, we may send you relevant information about our services, insights about Nordic markets, and updates about our company. You can opt out of marketing communications at any time.

Data Sharing and Third Parties

We do not sell your personal data. We may share information with:

  • Service providers who help us operate our website and deliver services (such as hosting providers and analytics services)
  • Professional advisors when necessary for business operations
  • Authorities when required by law or to protect our rights

Data Protection and Security

Security Measures

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, accidental loss, destruction, or damage. This includes encrypted data transmission, secure server infrastructure, regular security assessments, and access controls limiting data access to authorized personnel only.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Contact form submissions are typically retained for two years unless you request earlier deletion. Client project data is retained according to contractual agreements and legal requirements.

Data Encryption and Storage

Personal data transmitted through our website is protected using SSL/TLS encryption. Data is stored on secure servers located within the European Economic Area, ensuring compliance with GDPR requirements.

Breach Notification

In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will notify affected individuals and relevant authorities in accordance with GDPR requirements within 72 hours of becoming aware of the breach.

Your Privacy Rights

Right to Access

You have the right to request access to the personal data we hold about you and receive a copy of this information.

Right to Rectification

You can request that we correct any inaccurate or incomplete personal data we hold about you.

Right to Erasure

You can request that we delete your personal data in certain circumstances, such as when it is no longer necessary for the purposes for which it was collected.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format and transmit it to another organization.

Right to Object

You can object to the processing of your personal data in certain situations, particularly for direct marketing purposes.

Right to Restrict Processing

You can request that we limit the processing of your personal data in specific circumstances.

Right to Withdraw Consent

Where we process your data based on consent, you can withdraw that consent at any time.

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided at the end of this policy. We will respond to your request within one month.

Your Rights and Opt-Out Instructions

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may:

  • Avoid filling out contact forms, account registrations, or any data-submitting features
  • Disable cookies through your browser settings (see our Cookie Policy for more details)
  • Contact us directly to request the deletion of any previously shared personal data

We respect your privacy choices. If you would like us to delete your data, please reach out to us at the contact details provided below. We will process your request promptly and confirm when the deletion has been completed.

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected information from a child, please contact us immediately so we can delete it.

International Data Transfers

Your personal data is primarily stored and processed within the European Economic Area. If we need to transfer data outside the EEA, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the updated policy on this page with a new "Last updated" date. We encourage you to review this policy periodically.

Contact Us About Privacy

If you have questions about this privacy policy, want to exercise your rights, or have concerns about how we handle your personal data, please contact us:

Lumen Drift

Email: [email protected]

Phone: +46 8 472 5193

Address: Kungsträdgårdsgatan 18, 111 47 Stockholm, Sweden

You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY) if you believe we have not handled your personal data appropriately.