Privacy Policy

For the purposes of applicable data protection and privacy laws, Expresso Group AB ("Expresso", "us", "we"), with its registered office at Brödragatan 20, 412 74 Gothenburg, Sweden, is considered the “Data Controller” in respect of the Personal Data that it collects, uses and manages in accordance with this Privacy Policy (“Policy”).

Protecting your privacy is important to Expresso. We are committed to protecting all Personal Data provided to Expresso, whether by individuals with whom we do business, visitors to and users of our websites or otherwise. Personal Data is information which relates to an identified or identifiable living individual.

This Policy explains what Personal Data we collect, how we may use and manage it and the rights you have in relation to your Personal Data. Before you provide us with any Personal Data or browse our website, you should read through this Policy in full and make sure that you are comfortable with our privacy practices.

Please note that our website may contain links to other websites. These third party sites are not subject to this Policy and we recommend that you check the privacy and security policies of each website that you visit. We are only responsible for the privacy and security of the data that we collect and have no control over the actions of any third parties in relation to your data.

Please refer to the Glossary at the end of this document for an explanation of the defined terms in this Policy.

Whose Personal Data do we collect?
Expresso collects Personal Data from a range of individuals in the context of its business activities, including:
• representatives of our suppliers, customers and other business contacts;
• contractors;
• users of the website;
• individuals who contact us by any means; and
• persons applying to be part of our ecosystem – as a consultant or as a partner

How we collect your Personal Data?
We obtain Personal Data which you knowingly and voluntarily disclose to us, both in an online and offline context. We collect Personal Data when you:
• visit our website and / or complete one of our web forms;
• request information from us in any other way;
• sign a contract for delivery of our services with us
• communicate with us via social networking websites, third party apps or similar technologies;
• subscribe to our blog and newsletters, emails
• meet up at network event where contacts are mutually exchanged

What Personal Data we collect
Expresso may collect a range of Personal Data from you in a business context, such as your name, job title, email address, mobile number, details of your business and other interests, communications with you (including notes from meetings), Expresso services that we have provided you or that you might have an interest in and financial and payment information.

When you use our website, we collect certain standard information that is sent by your browser to our website. This includes technical information, such as your IP address, browser type, operating system, language, time zone setting, access times, country and any referring website addresses.

The purposes for which we process your Personal Data
We process your Personal Data for the following purposes:
• to provide you with inspiration, information, and services ordered by you;
• to provide you with information and inspiration in relation to similar services that may be of interest;
• to provide you information about our market environment, events, cases, trends and statistics;
• to administer our website and help improve the content as well as our services;
• to carry out analytics in relation to the use of our website;
• to comply with applicable laws and regulations; and
• other business-related purposes, including negotiating, concluding and performing contracts, managing accounts and records, supporting corporate social responsibility activities, legal, regulatory and internal investigations and debt administration.

The legal basis for Expresso processing your Personal Data
In order to comply with applicable data privacy laws, Expresso is required to set out the legal basis for the processing of your Personal Data. In accordance with the purposes for which we collect and use your Personal Data, as set out above, the legal basis for Expresso processing your data.

Personal Data will typically be one of the following:
• your consent;
• the performance of a contract that we have in place with you or other individuals;
• Expresso legitimate business interests; or
• compliance with our legal obligations.

Who we share your Personal Data with
Expresso may share your Personal Data with people within the company who have a "need to know" that data for business or legal reasons, for example, in order to carry out an administrative function such as processing an invoice, or to direct a query that you have submitted to a person with relevant competence within the Expresso community.

We may disclose your Personal Data to third parties including the authorities, Expresso’s advisors, suppliers of IT services and third parties engaged by Expresso for the purpose of providing services requested by you; to protect any intellectual property rights in any materials displayed on or otherwise available from Expresso's website; for the purposes of seeking legal or other professional advice; and to respond to a legal request or comply with a legal obligation.

Expresso's website Terms and Conditions of Use
We may disclose your Personal Data to third parties in the event that we sell, buy or merge any business or assets, including to the prospective seller or buyer of such business or assets.
Because Expresso has an international reach, we may share the Personal Data you submit to us with any Expresso community member also based outside Sweden. They are required to maintain the confidentiality of your data and are restricted from using it for any purpose other than the purposes set out in this Policy.

We may decide to allow users to share comments, postings, testimonials, or other information. If you choose to submit such information to us, the information that you submit may be available generally to the public. Information that you provide in these areas may be read, collected, and used by others who access them.

Finally, we may share non-Personal Data with other third parties that are not described above. When we do so we may aggregate or de-identify the information so that a third party would not be likely to link data to you, your computer, or your device. Aggregation means that we combine the non-Personal Data of numerous people together so that the data does not relate to any one person. De-identify means that we attempt to remove or change certain pieces of information that might be used to link data to a particular person.

Transfers of Personal Data
Please note that any person to whom Expresso may disclose your Personal Data under this Policy may be situated in a country other than your own and that such country may provide a lower level of data protection requirements than your own country. By agreeing to this Policy, you consent to the transfer of your Personal Data to a country other than your own.

Expresso takes all reasonable technical and organisational security measures to protect Personal Data from accidental or unlawful destruction, accidental loss and unauthorised access, destruction, misuse, modification or disclosure.

Records retention
Your Personal Data is not kept for longer than is necessary for the purposes for which it is collected. This means that data and records (including Personal Data) are destroyed or erased from our systems when no longer required. The amount of time that records are kept for varies depending upon the type of Personal Data they contain.

Your rights
Applicable data privacy laws give rights to individuals in respect of Personal Data that organisations hold about them. If you wish to:
• request a copy of the Personal Data that we hold about you; or
• request that we rectify, delete, or limit the processing of your Personal Data,
• please submit your written request to Expresso Group AB by sending an e-mail to: 

If you decide that you do not want to receive commercial communications from us, whether by email or mobile, please submit a n e-mail to:  with your request.

Questions and complaints
If you have a concern or complaint about how Expresso has used your Personal Data, as a first step, you should raise this in writing with Expresso by sending an e-mail to: 

Changes to this Policy
We reserve the right to modify or amend this Policy at any time by posting the revised Policy on our website. It is your responsibility to review the Policy every time you submit information to us or place an order.

A cookie is a small data file that a website may write to your hard drive when you visit. A cookie file can contain information (such as a user ID) that the website can use to track the pages you have visited and your preferences. The only Personal Data a cookie can contain is information you personally supply. A cookie cannot read data from your hard disk or read cookie files created by other websites.

Expresso uses cookies to track user traffic patterns and to provide a better service for users when they visit the website.

Users can set their browsers to provide notification when a cookie is received. Users can also refuse all cookies by turning the function off in their browsers. However, to ensure the full functionality of the Expresso website, the use of cookies is required.

When first accessing an Expresso website, a banner will appear explaining the website's cookie use.

Social media features includes social media features, such as sharing or following buttons. These features may collect your IP address, which page you are visiting on our sites, and may set a cookie to enable the feature to function properly.

Social media features are either hosted by a third party or hosted directly on our websites. This Policy does not apply to these features. Your interactions with these features are governed by the privacy policy and other policies of the companies providing them.

Your feedback
We think it is very important to hear what you have to say about our policies. If you have any feedback about this Policy, please e-mail us at 

Last Updated: 10 April, 2022


Data Controller A party that determines the purposes and means of data processing.
Data Protection Authority The relevant supervisory authority with responsibility for privacy or data protection matters in the jurisdiction of Expresso Group AB
Personal Data Information which relates to an identified or identifiable individual (i.e. data about the Expresso community, contractors, community members, suppliers, customers, and individuals who use our website). It includes names, addresses, email addresses, and correspondence (e-mail, forms). Personal Data can also include web browsing information (e.g. data associated with a particular cookie) and IP addresses, when such information can be linked to an individual.
Processing Doing anything with Personal Data; this includes collecting it, storing it, accessing it, combining it with other data, or even deleting it.