LEGAL

Regulatory Framework

Last updated: 08 July 2026

01

Privacy Policy

1. Data Controller Identity

The data controller responsible for processing your personal data is SummitVectorForge, registered at 112 21, Drottningholmsvägen 14, Stockholm, Sweden. For privacy-related inquiries, contact our designated officer at [email protected].

2. Categories of Personal Data Processed

We collect and process the following categories of personal data:

  • Identity Data: Full name, professional title, organization affiliation provided through contact forms.
  • Contact Data: Email address, telephone number, physical address for service delivery and communication.
  • Technical Data: IP address, browser type and version, operating system, device identifiers collected automatically through server logs.
  • Usage Data: Pages visited, time spent on pages, navigation patterns, and interaction events captured via analytics tools.
  • Communication Data: Content of inquiries, feedback, and correspondence submitted through our contact channels.

3. Legal Basis for Processing

We process personal data under the following legal bases as defined in Article 6 of the EU General Data Protection Regulation (GDPR):

  • Consent (Art. 6(1)(a)): For marketing communications and optional analytics cookies where explicit consent is obtained.
  • Contractual Necessity (Art. 6(1)(b)): For processing required to perform our service agreements and deliver contracted work products.
  • Legitimate Interest (Art. 6(1)(f)): For website security, fraud prevention, and service improvement based on our reasonable business interests.
  • Legal Obligation (Art. 6(1)(c)): For retaining records required by applicable tax, accounting, or regulatory legislation.

4. Data Retention Periods

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected:

  • Contact Form Submissions: Retained for 24 months from the date of submission, after which data is securely deleted.
  • Contract Documentation: Retained for the duration of the contractual relationship plus 6 years as required by Swedish tax regulations.
  • Server Logs: Automatically purged after 90 days unless required for security investigation.
  • Analytics Data: Anonymized after 26 months; no personally identifiable information is retained beyond this period.

5. Data Recipients and Transfers

Your personal data may be shared with the following categories of recipients:

  • Service Providers: Cloud infrastructure providers, payment processors, and communication platforms operating under Data Processing Agreements (DPAs) compliant with Article 28 GDPR.
  • Legal Authorities: Tax authorities, courts, and regulatory bodies when legally compelled to disclose information.

Data transfers outside the European Economic Area (EEA) are conducted only with adequate safeguards, including Standard Contractual Clauses (SCCs) approved by the European Commission or participation in the EU-US Data Privacy Framework.

6. Data Subject Rights

Under the GDPR, you exercise the following rights:

  • Right of Access (Art. 15): Request a copy of all personal data we hold about you.
  • Right to Rectification (Art. 16): Request correction of inaccurate or incomplete personal data.
  • Right to Erasure (Art. 17): Request deletion of your personal data where no legal retention obligation applies.
  • Right to Restriction (Art. 18): Request limitation of processing in specific circumstances.
  • Right to Data Portability (Art. 20): Receive your personal data in a structured, machine-readable format.
  • Right to Object (Art. 21): Object to processing based on legitimate interests, including direct marketing.
  • Right to Withdraw Consent (Art. 7(3)): Withdraw consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days as required by Article 12(3) GDPR.

7. Right to Lodge a Complaint

If you believe your data protection rights have been infringed, you have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY):

Integritetsskyddsmyndigheten (IMY)
Box 634, 911 29 Sundsvall
Phone: +46 (0)8-657 61 00
Email: [email protected]

8. Security Measures

We implement appropriate technical and organizational measures to protect personal data, including:

  • Encryption of data in transit (TLS 1.3) and at rest (AES-256)
  • Regular security assessments and penetration testing
  • Access controls with principle of least privilege enforcement
  • Incident response procedures aligned with Article 33 GDPR breach notification requirements
02

Cookies Policy

1. What Are Cookies

Cookies are small text files placed on your device when you visit our website. They enable us to recognize your browser and capture certain information to improve your browsing experience.

2. Types of Cookies We Use

Essential Cookies (Always Active)

These cookies are strictly necessary for the website to function. They enable core features such as session management, security tokens, and load balancing. These cookies do not require consent under the ePrivacy Directive.

DURATION: SESSION / 24 HOURS

Analytics Cookies (Consent Required)

We use analytics cookies to understand how visitors interact with our website. This data helps us optimize page layout, content structure, and navigation flow. All analytics data is anonymized before storage.

DURATION: 26 MONTHS

Functional Cookies (Consent Required)

These cookies remember your preferences such as language settings, font size, and interface customizations to provide a personalized experience across visits.

DURATION: 12 MONTHS

3. Managing Cookie Preferences

You can manage your cookie preferences at any time through the cookie consent banner displayed on your first visit. To modify your preferences subsequently, clear your browser cookies and revisit our website to trigger the consent prompt again.

You can also configure your browser to block or delete cookies. Note that disabling essential cookies may impair website functionality.

4. Third-Party Cookies

Some cookies are placed by third-party services embedded in our pages. We do not control these cookies. Please refer to the respective third-party privacy policies for information about their cookie practices.

03

Refund Policy

1. General Refund Terms

At SummitVectorForge, we are committed to delivering high-quality digital solutions. Refund eligibility is evaluated based on the following criteria:

2. Pre-Production Services

Services that have not yet commenced (scoping blueprints, discovery audits, architecture assessments) may be cancelled and fully refunded within 14 calendar days of purchase, provided no work has been initiated.

3. In-Progress Services

For services currently in progress, refunds are calculated based on completed milestones:

  • Less than 25% Complete: 75% refund of the total service fee.
  • 25-50% Complete: 50% refund of the remaining unpaid balance.
  • 50-75% Complete: 25% refund of the remaining unpaid balance.
  • Greater than 75% Complete: No refund available. Full payment required for project completion.

4. Completed Services

Once a service has been fully delivered and accepted, no refunds are available. Defects or non-conformities with the agreed specifications will be addressed through our warranty provisions at no additional cost within 90 days of delivery.

5. Refund Request Process

To request a refund, contact [email protected] with your project reference number and detailed justification. Refund requests are processed within 10 business days of approval. Refunds are issued to the original payment method.

6. Exceptional Circumstances

Force majeure events, client-caused delays exceeding 60 days, or material changes to project scope initiated by the client may alter standard refund terms. Such cases are evaluated individually and documented in writing.

04

Terms of Service

1. Acceptance of Terms

By engaging the services of SummitVectorForge, registered at 112 21, Drottningholmsvägen 14, Stockholm, Sweden, you agree to be bound by these Terms of Service. These terms constitute a legally binding agreement between you (the "Client") and SummitVectorForge (the "Provider").

2. Scope of Services

Services are defined in the service description on our website and further specified in individual project proposals. Any modifications to the agreed scope require written authorization and may affect pricing and timelines.

3. Payment Terms

  • Invoices are due within 14 calendar days of issuance unless otherwise specified.
  • Late payments incur a statutory interest rate of 8% above the European Central Bank base rate as per the EU Late Payment Directive 2011/7/EU.
  • Services may be suspended if payment remains outstanding for more than 30 days.

4. Intellectual Property

Upon full payment, the Client receives a perpetual, non-exclusive license to use all deliverables produced under the engagement. The Provider retains the right to use anonymized project data for portfolio and marketing purposes unless explicitly restricted in the project agreement.

5. Confidentiality

Both parties agree to maintain the confidentiality of proprietary information shared during the engagement. This obligation survives the termination of the agreement for a period of 24 months.

6. Limitation of Liability

The Provider's total liability under any engagement shall not exceed the total fees paid by the Client for the specific service giving rise to the claim. The Provider shall not be liable for indirect, consequential, or incidental damages.

7. Governing Law and Dispute Resolution

These Terms are governed by Swedish law. Any disputes arising from these Terms or the services provided shall first be subject to mediation. If mediation fails within 60 days, disputes shall be resolved by the courts of Stockholm, Sweden.

8. Amendments

SummitVectorForge reserves the right to amend these Terms with 30 days' written notice. Continued use of services after the amendment period constitutes acceptance of the revised Terms.

9. Contact

For questions regarding these Terms, contact:

SummitVectorForge
112 21, Drottningholmsvägen 14, Stockholm, Sweden
Email: [email protected]
Phone: +46 76 552 07 14