Privacy Policy

Welcome to our privacy notice. Infinity and Beyond AB (trading as Joyogram) collects some personal data from its customers and website users. Where you provide us with personal data, we will take steps to ensure that your data and privacy rights are protected. This notice explains how we look after personal data when you visit our website, buy or subscribe to our products, or register to use our services. It also sets out your rights under data protection laws and how the law protects you.

We keep our privacy notice under regular review. This version was last updated on 5 January 2024.

1. About us

Controller

Infinity and Beyond AB (trading as Joyogram) is the controller and responsible for your personal data.

Contact details

Email: hello@joyogram.com

Swedish company registration number: 559011-0663

Third‑party links

Our website may include links to third‑party websites, plug‑ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third‑party websites and are not responsible for their privacy statements.

2. What do we collect about you and how?

Personal data means any information about an individual from which that person can be identified. We minimise the amount of personal data we collect, but may collect it directly from you, automatically via our website, or from trusted third parties.

  • Identity Data: first name, last name and title.
  • Contact Data: billing address, delivery address and email address.
  • Transaction Data: details about payments and purchases.
  • Technical Data: IP address, browser type/version, time zone, operating system and device.
  • Profile and Usage Data: purchases or subscriptions, preferences, feedback, survey responses, and how you use our site.
  • Marketing and Communications Data: your marketing preferences and communication choices.

We also collect, use and share Aggregated Data (statistical or demographic data). Aggregated Data is not considered personal data as it does not directly or indirectly reveal your identity. If we combine or connect Aggregated Data with your personal data so that it can identify you, we treat the combined data as personal data and handle it in line with this notice.

3. How do we use your personal data?

We use your data to provide and improve our services, manage our relationship with you, process payments, prevent fraud and abuse, and comply with legal obligations. Our lawful bases include performance of a contract, legitimate interests and legal obligation.

Marketing

We will get your express opt‑in consent before sharing your personal data with any third party for marketing. You can opt out at any time via the unsubscribe link in our emails or by contacting us.

Cookies

We use CookieScript, a certified CMP Gold Partner, to manage consent and cookies on our website. You can set your browser to refuse all or some cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, some parts of our website may not function properly. For more information, please see our Cookie Policy.

Change of purpose

We will only use your personal data for the purposes for which we collected it unless we reasonably consider we need to use it for another compatible purpose. If we need to use it for an unrelated purpose we will notify you and explain the legal basis.

4. Who do we share your personal data with?

  • Service providers acting as processors (e.g. payments, hosting, analytics, support and marketing tools).
  • Product partners where required to fulfil a contract.
  • Law enforcement or regulators where required by law.
  • Third parties to whom we may sell, transfer or merge parts of our business. If a change happens, the new owners may use your data as set out here.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We may also use aggregated/anonymised data for analytics and product improvement.

5. International transfers

If we transfer your personal data internationally we will ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses, to provide your data with a similar level of protection.

6. Data security

We implement technical and organisational measures to protect your data against unauthorised access, alteration, disclosure or loss and maintain procedures to handle suspected breaches.

7. Data retention

We retain personal data only as long as necessary for the purposes we collected it, including to satisfy legal, accounting or reporting requirements. We may retain data longer in case of a complaint or where we reasonably believe there is a prospect of litigation. We may use anonymised data indefinitely.

8. Your legal rights

Depending on your location, you may have rights including to be informed, access, rectify, erase, object to processing, and data portability. To exercise these rights contact us at hello@joyogram.com.

Complaints and response time

You can complain to your local data protection authority. We aim to respond to legitimate requests within one month.