INQUIRE

Privacy Policy

Lisa Björk Photography is run by me, Lisa Björk, a one woman company. This policy explains what personal data I collect, why I need it, and how I handle it when you visit lisabjork.se or contact me about photography.

If anything feels unclear, email me at hej@lisabjork.se. I’ll try to explain it like a human.

Last updated: 2026-02-16

Who is responsible for your data?

Data Controller: Lisa Björk Photography
Email: hej@lisabjork.se
Address: Skolbacken 21, 957 95 Hedenäset
Organisation/Company ID: SE19820416624601

What I collect

I only collect what I need to communicate with you, deliver my services, and meet legal requirements.

When you contact me

  • Name, email address, phone number (if provided)
  • Information you choose to share in your message

When you book me

  • Name, email, phone number
  • Postal address (if needed for invoicing or logistics)
  • Details needed to deliver the service (date, location, schedule, preferences)

Photos

  • Photographs and basic information connected to delivery (session date, file names, gallery links)

Website data (cookies/analytics)

  • IP address and technical usage data (device/browser, pages visited, time spent, etc.)
    Collected via cookies and, if you consent, analytics tools such as Google Analytics.

I do not intentionally collect sensitive personal data. If you choose to share something sensitive in a message, I’ll treat it with care.

How I collect it

  • When you fill out a contact form
  • When you email me directly
  • When you book my services
  • When I send invoices and gallery links
  • When you browse the Website (cookies and similar technologies)

Why I use it

  • Replying to inquiries
    To answer questions, check availability, and prepare a booking.
    Legal basis: steps prior to entering a contract.
  • Delivering photography services
    Planning, photographing, editing, and delivering your gallery.
    Legal basis: contract.
  • Invoicing & accounting
    Invoices, payments, and bookkeeping requirements.
    Legal basis: legal obligation.
  • Portfolio use (website/social media)
    Only if you give me explicit, optional permission in your booking agreement.
    Legal basis: consent (you can withdraw it anytime).
  • Website improvements
    Understanding what content is useful so I can improve the Website.
    Legal basis: consent for non-essential cookies/analytics (where required).

How long I keep it

  • Accounting/invoices: stored according to Swedish accounting rules (typically at least 7 years).
  • Client photos and galleries: kept as needed to deliver the service and for reasonable archiving, unless you request deletion (note: some records must still be kept for legal/accounting reasons).
  • Portfolio images: kept until you withdraw consent or I remove them.

Sharing your data

I don’t sell your personal data. Ever.

I may share limited data with trusted service providers only when needed to run my business and deliver services, such as:

  • Website hosting
  • Online gallery / file delivery
  • Cloud storage (temporary storage and backup)
  • Accounting/invoicing tools
  • Email/service platforms

These providers act as data processors on my behalf and may only process data according to my instructions and applicable data protection law.

Some providers may process data outside the EU/EEA (for example, depending on analytics or cloud services). Where applicable, transfers are protected using appropriate safeguards.

I may also disclose data when legally required (for example, if a court or authority compels disclosure).

Cookies & analytics

This Website uses cookies to function properly and (if you choose) to help me understand how it’s used.

  • Essential cookies are used for technical functions and basic performance.
  • Analytics cookies (e.g., Google Analytics) are only used if you actively consent.

You can change or withdraw your cookie consent anytime via Cookie Settings (available on the Website). You can also block or delete cookies in your browser settings, but some parts of the Website may work less smoothly.

Links to other websites

Sometimes I link to other websites (venues, suppliers, guides, you know the drill). Once you leave lisabjork.se, their privacy rules apply, not mine.

Your GDPR rights

If you are in the EU/EEA, you have rights under GDPR, including the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion (when applicable)
  • Restrict or object to processing in certain cases
  • Data portability
  • Withdraw consent at any time (for consent-based processing)

To exercise any of these rights, email me at hej@lisabjork.se.

You also have the right to lodge a complaint with the Swedish supervisory authority: Integritetsskyddsmyndigheten (IMY).

I will respond to privacy requests without undue delay, and at the latest within one month. In complex cases, the deadline may be extended by up to two additional months, and you will be informed within one month if this happens.

Security

I take reasonable steps to protect your personal data and photos, including access controls, password protection, and working with reputable service providers.

Updates

This policy may be updated from time to time. Any updates will be posted on this page and the “Last updated” date will change.

Contact

Lisa Björk Photography
Email: hej@lisabjork.se
Address: Skolbacken 21, 957 95 Hedenäset
Organisation/Company ID: SE19820416624601