Privacy Policy

Last updated: 15th January 2026

Introduction

GravityField AB ("we", "our", or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal information when you use our website and services. We are the data controller for the purposes of the General Data Protection Regulation (GDPR) and UK data protection laws.

Data Collection

We collect personal data that you provide directly to us and data we collect automatically when you use our services. The data we collect includes your name, email address, phone number, professional information, financial circumstances, and communication preferences. When you contact us for financial advice, we may collect additional information about your employment, income, assets, and financial goals to provide appropriate guidance.

We also collect technical information automatically, including your IP address, browser type, operating system, referring website, pages visited, and time spent on our website. This information helps us improve our website functionality and user experience.

How We Use Your Information

We use your personal information to provide financial and legal advisory services, respond to your enquiries, and maintain our client relationship. This includes conducting financial assessments, providing investment advice, ensuring regulatory compliance, and communicating with you about our services. We may also use your information for marketing purposes where you have given consent or where we have a legitimate interest to do so.

The legal basis for processing your personal data varies depending on the purpose. We process your data based on contract performance when providing our services, legitimate interests for business operations and marketing, legal obligations for regulatory compliance, and your consent for certain marketing activities and cookie usage.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

Data Sharing

We do not sell your personal information to third parties. We may share your information with trusted service providers who assist us in operating our business, such as IT support providers, professional advisors, and regulatory bodies where required by law. All third parties are required to maintain appropriate security measures and use your information only for the specified purposes.

We may also disclose your information if required by law, to protect our rights, or in connection with a business transfer or merger.

Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. This includes encryption, secure servers, access controls, and regular security assessments. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

Data Retention

We retain your personal information for as long as necessary to provide our services and comply with legal obligations. For client records, we typically retain information for seven years after the end of our relationship, in accordance with financial services regulations. Marketing information is retained until you opt out or for three years from your last interaction with us.

We regularly review our retention periods and securely delete information that is no longer required.

Your Rights

Under GDPR and UK data protection laws, you have several rights regarding your personal information. You have the right to access your personal data and receive a copy of the information we hold about you. You can request that we correct any inaccurate or incomplete information, and in certain circumstances, you may request that we delete your personal information.

You also have the right to restrict processing of your data, object to processing based on legitimate interests, and request data portability. Where we process your data based on consent, you have the right to withdraw that consent at any time. To exercise any of these rights, please contact us using the information provided below.

International Transfers

We primarily process your personal information within the European Economic Area (EEA). If we transfer your information outside the EEA, we ensure appropriate safeguards are in place, such as adequacy decisions, standard contractual clauses, or other approved mechanisms.

Contact Information

If you have any questions about this Privacy Policy or how we handle your personal information, please contact us at privacy@gravityfield.world or +46 31 866 23 13.

You can also write to us at: GravityField AB, Folkungagatan 147, 415 36 Gothenburg, Västra Götaland, Sweden.

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY) or your local data protection authority.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "last updated" date. We encourage you to review this policy periodically to stay informed about how we protect your information.

Data Controller Information

GravityField AB is the data controller for your personal information. We are registered in Sweden with company registration number 846321-4823. Our registered address is Folkungagatan 147, 415 36 Gothenburg, Västra Götaland, Sweden.