Privacy Policy

How we collect, use, and protect your personal information.

Effective Date: June 18, 2024

Last Updated: December 2024

1. Introduction

Cention AB ("Cention", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you:

  • Visit our websites (including cention.io and related domains)
  • Interact with us on social media
  • Use our products and services
  • Visit our premises
  • Communicate with us

We are headquartered in Stockholm, Sweden, with operations in Kuala Lumpur, Malaysia. We comply with applicable data protection laws including the General Data Protection Regulation (GDPR) and other international privacy frameworks.

2. Data Controller

Cention AB is the data controller for personal data collected through our websites and marketing activities. For personal data processed on behalf of customers through our platform, Cention acts as a data processor (see our Data Processing Addendum).

3. Information We Collect

Information You Provide

  • Account Information: Name, email address, phone number, company name, job title
  • Billing Information: Payment details, billing address (processed by Stripe)
  • Communications: Messages you send to us, support requests, feedback
  • Event Registration: Information provided when registering for webinars or events
  • Job Applications: CV, cover letter, and related information

Information Collected Automatically

  • Usage Data: Pages visited, features used, interactions with our services
  • Device Information: Browser type, operating system, device type
  • Network Information: IP address, approximate location
  • Cookies: See our Cookies Policy for details

Information from Third Parties

  • Social Media: Information from your public profiles when you interact with us
  • Business Partners: Contact information from partners for co-marketing
  • Public Sources: Business information from company databases

4. How We Use Your Information

We use collected information for the following purposes:

Service Delivery

  • Provide and maintain our services
  • Process transactions and billing
  • Send service-related communications
  • Provide customer support

Improvement & Development

  • Analyze usage patterns to improve our services
  • Develop new features and products
  • Conduct research and analytics

Communication

  • Send marketing communications (with consent)
  • Respond to inquiries and requests
  • Notify you of updates and changes

Security & Compliance

  • Detect and prevent fraud and abuse
  • Ensure security of our services
  • Comply with legal obligations

5. Legal Basis for Processing (GDPR)

We process personal data based on:

  • Contract: Processing necessary to perform our agreement with you
  • Legitimate Interests: Processing for our legitimate business interests (e.g., security, improvement)
  • Consent: Processing based on your explicit consent (e.g., marketing)
  • Legal Obligation: Processing required by law

6. Data Sharing

We do not sell your personal information. We may share data with:

Service Providers

Third parties who assist our operations, bound by confidentiality obligations. See our Subprocessors page.

Legal Requirements

When required by law, court order, or to protect our rights and safety.

Business Transfers

In connection with a merger, acquisition, or sale of assets, with appropriate protections.

With Consent

When you have given explicit consent to share your information.

7. International Transfers

Your data may be transferred to and processed in countries outside your residence, including the US and other countries where we or our subprocessors operate.

We protect international transfers using:

  • EU Standard Contractual Clauses (SCCs)
  • Adequacy decisions
  • Other approved transfer mechanisms

8. Data Retention

We retain personal information for as long as necessary to:

  • Provide our services
  • Fulfil legal and regulatory obligations
  • Resolve disputes
  • Enforce agreements

Account data is retained while your account is active and for a reasonable period thereafter (typically 2 years). Marketing data is retained until you unsubscribe.

9. Your Rights

Depending on your location, you may have rights to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Restriction: Limit how we process your data
  • Portability: Receive your data in a portable format
  • Objection: Object to certain types of processing
  • Withdraw Consent: Withdraw previously given consent

To exercise these rights, contact us at privacy@cention.io. We will respond within 30 days.

10. Security

We implement industry-standard security measures including:

  • Encryption at rest (AES-256) and in transit (TLS 1.2+)
  • Access controls and authentication
  • Regular security assessments
  • Employee security training

See our Security Policy for details.

11. Children's Privacy

Our services are not directed to children under 16. We do not knowingly collect personal information from children. If we learn we have collected such information, we will delete it.

12. Changes to This Policy

We may update this policy periodically. Material changes will be notified via email or through our platform at least 30 days before taking effect.

13. Contact Us

For privacy-related enquiries or to exercise your rights:

Email: privacy@cention.io
Data Protection Officer: dpo@cention.io
Address: Cention AB, Stockholm, Sweden

You also have the right to lodge a complaint with a supervisory authority, particularly in your country of residence.

Back to Trust Center View Cookies Policy →