Pepins processes the personal data necessary to offer our services, such as your name, email address, phone number, home address, personal ID number, and bank details. We collect this data directly from you when you register on our website to trade securities. We may also collect data about how you use our site via cookies. Pepins always strives to process as little personal data as possible based on the processing purpose.

Pepins also receives personal data from other companies within the Pepins Group. We process such data to provide you with our services. This includes name, email, phone number, address, personal ID number, banking and financial information, and user settings. The legal basis is our legitimate interest in providing and developing group-wide services.

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016

Your personal data will only be shared to the extent necessary to fulfill the purpose of the processing. Pepins uses data processors to perform specific tasks such as IT support, archiving, or email distribution, who then have limited access to your data. These parties may not use your data for any other purposes.

Pepins shares data with other companies in the group, which may act as data controllers or processors on behalf of Pepins. Shared data includes your name, email, phone number, address, personal ID number, bank and financial data, and user preferences. The legal basis is our legitimate interest in group-wide service provision and development.

Your data may be processed in countries outside of Sweden or the EU/EEA (“third countries”) if a data processor operates there. We ensure appropriate safeguards and use EU-approved data protection clauses in contracts to ensure compliance. Data may also be disclosed if required by law or necessary for legal claims, fraud detection, or security issues. We do not share or sell your data beyond what’s stated here unless legally obligated.

Your personal data is kept only as long as necessary to fulfill the purposes it was collected for and to comply with applicable legal obligations. We may retain data longer if required for legal compliance or to protect our legal interests (e.g., in the event of legal proceedings).

When you close your account, your data will be deleted or anonymized, except for information we are legally required to retain.

Data is deleted/anonymized when no longer required under applicable law.

By contacting us, you may request written information about what personal data Pepins processes about you and how it is used. You have the right to object to processing and to request correction, restriction, or deletion of data under the GDPR. You may also, in some cases, request that your data be transferred to another data controller (data portability).

To make a request, send a written and signed request to Pepins at the address below. You also have the right to withdraw your consent at any time if processing is based on consent.

If your data is used for direct marketing, you have the right to object to this. To object, send a signed request to Pepins at the address below.

If you believe your personal data is being processed in violation of the GDPR, you may file a complaint with the supervisory authority in Sweden, the Swedish Authority for Privacy Protection (IMY).

Cookies are used on our website. These are small text files saved on your device when you visit a website. Cookies support functions that improve the site’s usability or give us statistics about usage.

All visitors must be informed about how cookies are used. Users should also have the option to consent to cookies being used to store or retrieve data. Most browsers allow you to block cookies.