Privacy policy

Privacy Policy 

Last updated: August 27, 2025

This Privacy Policy describes how Health Royals Sweden AB (“Health Royals”, “we”, “us”) collects, uses and discloses personal information when you visit or shop at healthroyals.com and when you otherwise interact with our services (the “Services”). “You” means any customer, website visitor, or other individual whose data we process.

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will post the revised version here and update the “Last updated” date.

Who we are (Controller)

Health Royals Sweden AB, Lennart Torstenssonsgatan 8, 412 56 Gothenburg, Sweden.
Email: hello@healthroyals.com. We are the data controller under GDPR.

What data we collect

Information you provide: name, email, phone, billing/shipping address, account details (if you create one), order details, returns, messages to our support, reviews, referrals, gift cards, loyalty info.
Payment data: processed securely by our payment providers (e.g., Shopify Payments, Apple/Google Pay). We do not store full card numbers.
Usage data: device/browser info, IP address, pages viewed, actions on site, via cookies/pixels/SDKs.
From third parties: platforms supporting our store (e.g., Shopify), analytics/marketing partners, fulfilment and logistics partners, and payment processors.

How we use data (legal bases)

  • To provide and fulfil orders and Services (Art. 6(1)(b) GDPR): process payments, ship orders, manage returns, send order and account notifications, prevent abuse.

  • Customer support & service improvement (Art. 6(1)(f)): respond to requests, maintain and improve the site.

  • Marketing (email/SMS) with consent (Art. 6(1)(a)) and/or legitimate interest where applicable (Art. 6(1)(f)): send newsletters, offers, product updates; you can opt out at any time.

  • Security & fraud prevention (Art. 6(1)(f)).

  • Legal compliance (Art. 6(1)(c)).

Cookies and tracking

We use cookies and similar technologies to operate and improve the site, remember preferences, and run analytics/marketing. Details for Shopify cookies: https://www.shopify.com/legal/cookies.
You can control cookies in your browser; blocking certain cookies may affect site functionality. If your browser sends a Global Privacy Control signal, we will honor it where required.

SMS marketing & notifications (if you opt in)

If you provide your phone number and explicitly opt in to SMS:

  • We use your number to send marketing messages, order-related alerts, and (if enabled) cart reminders.

  • Message frequency varies. Message & data rates may apply.

  • You can opt out any time by replying STOP; reply HELP for help.

  • We keep your number only as long as needed for these purposes and to respect your opt-out.

Abandoned cart via SMS.
Health Royals’ website uses cookies to help keep track of items you put into your shopping cart, including when you have abandoned your cart. This information is used to determine when to send cart reminder messages via SMS.

Third-party data sharing (SMS exception).
If we share personal data with non-affiliated third parties as described below, this excludes text messaging originator opt-in data and consent; this information will not be shared with any third parties.

Disclosing personal data

We share personal data with:

  • Service providers/Processors: e.g., Shopify (store platform), email/SMS providers (e.g., Klaviyo), subscription provider (e.g., Appstle), 3PL/warehouse & fulfilment (e.g., Storex), shipping & label platforms (e.g., nShift), analytics, IT/security, and customer support tools.

  • Business/marketing partners (to the extent you have consented or where permitted by law).

  • Affiliates within our corporate group.

  • Authorities or in transactions where legally required or in connection with a merger/restructuring.

We do not sell personal data. We do not use or disclose sensitive personal data without consent or to infer characteristics.

International transfers

We may transfer data outside the EEA/UK. Where we do, we rely on recognized mechanisms such as the EU Standard Contractual Clauses (and UK equivalents) or adequacy decisions.

Retention

We retain data only as long as needed for the purposes above, including to comply with law. For example, order and invoicing data may be kept up to 7 years under Swedish bookkeeping rules. We delete or anonymize data when no longer required.

Your rights (GDPR/EEA)

You may have the right to access, correct, delete, restrict or object to processing, port your data, and withdraw consent (for marketing/SMS) at any time. You can manage email/SMS preferences via unsubscribe links or STOP for SMS.
To exercise rights, contact hello@healthroyals.com. We may verify your identity. You can also appoint an authorized agent.

Complaints. You can lodge a complaint with your local authority. In Sweden: Integritetsskyddsmyndigheten (IMY).

Children

Our Services are not directed to children, and we do not knowingly collect children’s personal data.

Third-party links

Our site may link to third-party sites or widgets. Their privacy practices apply to their services.

Security

We use administrative, technical, and organizational measures to protect data. No system is 100% secure; please use secure channels and keep account credentials confidential.

Contact

Health Royals Sweden AB
Lennart Torstenssonsgatan 8, 412 56 Gothenburg, Sweden
Email: hello@healthroyals.com