Privacy Policy

Laprica AB

Effective Date: 2025.07.31

Last Updated: 2025.08.07

Laprica AB (“we,” “us,” or “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use our website (www.laprica.org), services, products, and platforms (“Services”). It also outlines your rights under the General Data Protection Regulation (GDPR) and other applicable data protection laws.

By using our Services, you consent to the practices described in this Privacy Policy. If you do not agree, you should not use our Services.

1. Who We Are

Laprica AB is a limited liability company registered in Sweden (Org.nr 559295-6832), providing educational and capacity-building services through digital and physical means.

2. What Data We Collect

We collect personal data in the following categories:

2.1 Information You Provide Directly

• Full name, email address, and contact information

• Account details when you register for Services

• Information submitted via forms, surveys, or correspondence

• Marketing preferences

• Course or programme enrolments

• Feedback or responses to questionnaires

2.2 Payment Data

• We do not store full card details. However, our payment processors (e.g., Stripe) may provide us limited data, such as the last four digits of your card and expiration date, for record-keeping and fraud prevention.

2.3 Usage and Technical Data

• IP address, browser type, operating system

• Page views, timestamps, clicks, referring websites

• Information from cookies or similar technologies (see Cookie Policy)

2.4 Third-Party Data

• Data from service providers (e.g. email platforms, analytics tools)

• Data from advertising platforms or social media for analytics and remarketing

3. How We Collect Your Data

• Directly when you fill out forms, contact us, or sign up for services.

• Automatically via cookies or analytics tools as you browse our website.

• Indirectly through third-party platforms integrated with our Services (e.g., payment processors, survey tools, Zoom, etc.)

4. Why We Use Your Data (Legal Basis under GDPR)

We use your data based on the following legal grounds:

• Consent: You have permitted us (e.g., for newsletters or marketing)

• Contractual necessity: To provide services you requested or purchased

• Legal obligation: To comply with laws (e.g., tax reporting)

• Legitimate interests: To operate, improve, and secure our Services

• Vital interests or public interest: In rare cases, to protect life or comply with statutory requirements

5. How We Use Your Data

We may use your personal data to:

• Deliver and manage your course, account, or purchase.

• Communicate with you regarding your use of the Services.

• Improve and personalize our offerings.

• Send updates, surveys, and promotional content (only with consent)

• Conduct internal analytics and performance tracking.

• Enforce our Terms of Service and protect against fraud.

• Comply with legal or regulatory obligations.

6. Who We Share Your Data With

Laprica AB does not sell, rent, or trade your personal data. However, to provide and improve our services, we work with carefully selected third-party service providers who may process personal data on our behalf. These providers include, for example:

• Payment processors such as Stripe or PayPal handle secure financial transactions.

• Learning and event platforms such as Zoom and Google Meet, where users may register, attend, or participate directly.

• Email and communication platforms such as Google Workspace facilitate outreach and internal communication.

• Analytics and website services such as Google Analytics, which help us understand website usage and user interaction.

• Platforms such as Telegram may be used to deliver certain digital content (e.g., audio files or programme resources) directly to users. In such cases, users may be invited to join private Telegram channels or groups. Please note that Telegram’s own privacy policy will apply in addition to this Privacy Policy. 

In some cases, you may be entering personal data directly into these external platforms, in which case their privacy policies apply in addition to this Privacy Policy.

We also reserve the right to disclose personal data if required by law (e.g., a court order or regulatory request), or if necessary to:

• Enforce our Terms of Service;

• Respond to legal claims or proceedings;

• Prevent fraud, abuse, or security threats;

• Protect the rights, safety, or integrity of Laprica AB, its users, or the general public.

All third-party service providers are contractually obligated to process personal data only for the purposes specified by Laprica AB, by applicable data protection laws, including the General Data Protection Regulation (GDPR).

7. How We Store and Protect Your Data

We retain your data only as long as necessary to fulfil the purposes stated above or to comply with legal obligations.

We apply appropriate technical and organizational measures to secure your data against unauthorized access, loss, or alteration.

If a data breach occurs and your rights or freedoms are at risk, we will notify affected users and authorities within 72 hours, as required by GDPR.

8. International Transfers

Some of the trusted service providers we work with are located outside the European Union (EU) or European Economic Area (EEA). This means that, in certain cases, your data may be transferred to and processed in countries that do not have the same level of data protection as required within the EU.

For example:

• Stripe, our payment processor, may process payment details on servers located in the United States when you make a purchase.

• Google, which provides us with services such as email (via Gmail), document storage (Google Drive), and analytics (Google Analytics), may also process data in data centers located worldwide, including outside the EU/EEA.

To ensure that your data remains protected when transferred internationally, we implement safeguards in line with the General Data Protection Regulation (GDPR). These safeguards include:

• Standard Contractual Clauses (SCCs) approved by the European Commission, which legally bind our providers to protect your data to EU standards.

• Additional technical and organizational measures where necessary (e.g., encryption, access controls).

By using our Services, you acknowledge that such international transfers may occur and that we take appropriate measures to safeguard your information under applicable legal requirements.

9. Your Rights Under GDPR

As a data subject, you have the right to:

• Access your personal data

• Correct inaccurate or incomplete data

• Erase your data (“right to be forgotten”)

• Restrict or object to data processing

• Data portability

• Withdraw consent at any time (without affecting past processing)

• Lodge a complaint with a Data Protection Authority

To exercise any of these rights, email us at: info@laprica.org

10. Cookies and Tracking Technologies

We use cookies to provide functionality, improve performance, and analyze user behaviour. For full details, please refer to our Cookie Policy.

11. Children’s Privacy

Our Services are not directed at children under the age of 16. We do not knowingly collect data from children. If you believe we have received information about a child without proper consent, please contact us immediately.

12. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy from time to time. We will post the latest version with the “Last Updated” date. Continued use of our Services after any change constitutes your acceptance of the updated Policy.

13. Contact Us

If you have any questions, requests, or concerns about this Privacy Policy, contact us at: Email: info@laprica.org