Suomi Svenska English

Privacy Policy

Our Privacy Policy helps you make informed decisions about your relationship with us. It describes which data we collect, what we use it for, how we protect it and what your rights are. The policy also details the EU General Data Protection Regulation (GDPR) and how it affects you.

This Privacy Policy:

  1. Explains how we use the information you share with us to deliver a high quality product and a better user-experience.
  2. Ensures you understand what information we collect with your permission and what we do - and don't do - with it.
  3. Holds us accountable for protecting your rights and privacy as described in this policy.

All information we collect relates to the usage of the Manetos Heat Control service and its functions.

Table of Contents

Important concepts within the General Data Protection Regulation

One of the aims of The General Data Protection Regulation is to protect each individual's fundamental rights and freedoms, especially the right to protection of their personal data.

Personal data is any information relating to an identifiable person who can be directly or indirectly identified. Examples include names, social security numbers, phone numbers, customer IDs and email addresses. Browser cookies, GPS coordinates and IP addresses may also be considered personal data.

The General Data Protection Regulation defines how such data may be processed by the controller - that is, how we at Manetos may collect and use personal information about you as you use our service.

Processing is used as a collective name for various actions taken on personal data such as collection, recording, structuring, alteration, retrieval and erasure while the controller determines the purposes and means of the processing.

The General Data Protection Regulation seeks to harmonise the protection of fundamental rights and freedoms for all EU citizens by replacing any previous EU member state legislations.

Read more about the General Data Protection Regulation on our supervisory authority's website, The Swedish Data Protection Authority.

What data we collect

Customer information refers to service-related data such as names, addresses, email addresses, telephone numbers and social security numbers. It can also encompass your usage, orders, user ID, password and other information you provide while communicating with us.

Heat control data refers to data collected through the use of the product. This includes air and pipe temperatures as well as boiler behaviour and characteristics. This data is processed to enable monitoring of the heating system and regulation of the indoor temperature.

How we collect data

We collect data:

What we use the data for

Personal data processing requires support by the General Data Protection Regulation through a legal basis. This means that in order for our processing of your data to be lawful, the processing must be necessary for us to (1) fulfill our contractual obligations to you or (2) comply with statutory obligations. The processing of your data may also be done (3) based on an assessment of our legitimate interests or (4) after you have given us your explicit consent to that particular processing.

In order to provide services and products, we need to process and manage your data.

Below are examples of why we process your data along with which legal basis applies in each case.

Provision of services

We process data to identify you as a customer or user, to manage and deliver orders in accordance with our contract, and to provide our service. We also process data to charge for the services you use, to manage your invoices and payments, for credit report purposes, to correct errors or other incidents, and to respond to complaints.

Legal basis: fulfilment of contractual obligations

Other communications

We also process your data for other communications with you, e.g. when we send you information or contact you regarding our services. When you send an email to our customer support, your written text may be analyzed. We do this to educate our employees and improve our support process in order to provide the precise assistance you need.

Legal basis: legitimate interests (customer information).

Development of services

We process data to develop and manage our operations, our service and our processes. For this purpose, we may also compile statistics for analysis.

Legal basis: legitimate interests (customer information).

Direct marketing

We process different types of data in order to market our products and services directly to you. You may receive our marketing through mail, phone calls, text messages or email. For this purpose, we may also compile statistics for analysis.

Legal basis: legitimate interests (customer information).

Compliance with laws

We process data in order to fulfill our statutory obligations.

Legal basis: legal obligation

How long we save the data for

The length of time for which your data is stored depends on the data used and our statutory obligations.

Customer information is saved for as long as you are a customer with Manetos and no longer than 24 months after termination of the contract. Exceptions apply to documents that must be stored by law, e.g. as mandated by accounting acts.

Heat control data is stored for 24 months from the date of registration.

To whom we transfer data

We may transfer your data to the following parties.

Subcontractors and other companies that process data on our behalf

We hire service providers from different areas to be able to deliver our services. This means that they need certain information about you as a customer. However, these parties may not use data about you for any other purpose than providing the service or under the conditions set out by us.

International transfers

Some providers may partially operate from countries outside the EU/EEA (i.e. "third countries"). If we, in order to provide the service to you, transfer your data to a supplier in such a third country, we take appropriate measures to ensure that the transferred data is processed in accordance with the applicable law. The European Commission has deemed that certain countries meet the required level of privacy protection and, as a precautionary measure, we regularly sign agreements with our providers to ensure they apply EU Commission-approved data protection clauses.

Read more about international transfers on the Information Commissioner's Office website.


We are required by law to disclose any data requested by government and law enforcement authorities – e.g. to the police.


If you have given your consent, we may in cases other than above also disclose your data to companies, organizations or persons outside of Manetos Heat Control, for example collaborating partners.

Your data, your decision

Certain data processing is based on your consent. You have the autonomy to decide what you feel comfortable sharing and whether you wish to withdraw your consent. Contact us if you want to revoke a consent.

Note: In order to provide services and products, we need to process and manage your data. However, you are not required to provide us with your data. If you choose not to do so, we may not be able to provide our service to you.

Your rights

You are entitled to receive information about how, what and why your data is being processed.This means that you have the right to know who is involved in the processing, the reasoning behind the processing as well as its duration and consequences. The General Data Protection Regulation gives you even greater opportunity to decide about your data. Below is a list of your rights.

In all cases, you are always welcome to contact us to exercise your rights.

Right of access

You can make a request to access your personal data free of charge. If for any reason we can not fulfill your request we must provide you with an explanation. The information requested for access will be sent to your address in the civil registry.

Right to rectification

We are responsible for ensuring that the data we process is correct, but you as a customer are also entitled to supplement missing and relevant data. If you find your data is incorrect, you are entitled to request its rectification. As soon as your data is corrected, we will inform any external recipients of that data of the change – except in cases where it would prove impossible or impose an excessive effort. We will also, upon your request, disclose to you the recipients of your updated data.

Right to erasure

As a customer, you have the right to, without undue delay, have the following data erased if any of the subsequent conditions apply:

If data is erased, we will notify any external recipients of that data, providing this is possible and does not impose excessive effort. We will also, upon your request, disclose to you these recipients.

Right to object

You are entitled to object to our processing of your data based on the assessment of legitimate interests. You must then specify to which processing you oppose. If we believe such processing should still proceed we must show that our legitimate interests are compelling enough to override your rights.

If data is processed for direct marketing, you are always entitled to object to the processing at any time.

Right to restriction

You are entitled to request a temporary restriction on the processing of your data. Treatment may be limited in the following situations:

If the processing of your data is temporarily restricted, we will inform any recipients of that data that this temporary restriction has taken place. However, this does not apply if it proves impossible or imposes an excessive effort.

Right to data portability

You are entitled to obtain and use personal data that you have provided us with in order to use it elsewhere. For example, transferring your data to another provider.

This right applies in cases where you have given your consent to the data processing or if a processing is required to provide you with services (as in accordance with the agreement you have entered into with us). However, you do not have the right to transfer your data if it is processed by us due to legitimate interests or legal obligations.

Notification of violation (complaint)

If you believe your data is being processed in violation of current regulations, you should report it to us as soon as possible. You can also file a complaint with the supervisory authority.


If you have suffered damage because your data has been processed in violation of the applicable law, you may be entitled to compensation. You may then request compensation for damages or go to court. Such a request must be made in writing to us.

Contact details


Manetos AB
Linnégatan 18
114 47 Stockholm
08-21 20 12

Data Protection Officer