Privacy Policy

Last updated 2026-04-05

1. Introduction

This Privacy Policy explains how InSilico Consulting AB (“we”, “us”, or “our”), a company registered in Sweden (organisation number: 559419-8433), collects, uses, and protects your personal data when you visit or interact with our website at https://insilico.consulting (the “Website”).

We are committed to protecting your personal data and processing it in accordance with Regulation (EU) 2016/679 (the General Data Protection Regulation, “GDPR”), the Swedish Act on Supplementary Provisions to the EU Data Protection Regulation (dataskyddslagen, SFS 2018:218), and other applicable data protection legislation

2. Data Controller

The data controller responsible for your personal data is:

InSilico Consulting AB
Kulgränden 15B
226 49 Lund, Sweden
Organisation number: 559419-8433
Email: [email protected]
Phone: +46 70 820 54 63

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us using the details above.

3. Personal Data We Collect

3.1 Data collected automatically

When you visit our Website, certain technical data is processed automatically. This includes:

  • IP address (anonymised or pseudonymised where technically feasible)
  • Browser type and version
  • Operating system
  • Referring URL
  • Pages visited and time spent on the Website
  • Date and time of access

This data is processed automatically as part of the normal operation of the Website.

3.2 Data you provide to us

If you contact us via email or any contact form on the Website, we collect:

  • Your name
  • Your email address
  • Any other information you voluntarily include in your message

We process your personal data only where we have a valid legal basis under Article 6 GDPR:

  • Legitimate interests (Article 6(1)(f) GDPR): We process technical/log data for the purposes of website security, fraud prevention, and ensuring stable and reliable service delivery. We have conducted a balancing test and concluded that our legitimate interests are not overridden by your interests or fundamental rights.
  • Consent (Article 6(1)(a) GDPR): Where we use non-essential cookies or analytics tools, we will ask for your consent before activating them. You may withdraw your consent at any time.
  • Performance of a contract (Article 6(1)(b) GDPR): If you request information about our products or services, we process your data to respond to your enquiry and take steps prior to entering into a contract.
  • Compliance with a legal obligation (Article 6(1)(c) GDPR): Where required by applicable law (e.g. accounting obligations).

5. Third-Party Service Providers

We use third-party service providers to operate and deliver the Website. These providers may process personal data (such as IP addresses and request metadata) on our behalf in the course of providing their services. All such providers are engaged under data processing agreements consistent with GDPR requirements.

Where any of these providers are based in, or transfer personal data to, countries outside the European Economic Area (EEA) - including the United States - we ensure that appropriate safeguards are in place pursuant to Chapter V GDPR, including Standard Contractual Clauses (SCCs) approved by the European Commission under Article 46(2)(c) GDPR and/or certification under the EU-US Data Privacy Framework where applicable.

6. Cookies and Similar Technologies

Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit our website, we do not collect information via cookies or similar technologies.

For further information, visit allaboutcookies.org.

7. Retention of Personal Data

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected. The criteria we use to determine retention periods include:

  • The nature and sensitivity of the data and the potential risk of harm from unauthorised use or disclosure;
  • The purpose for which the data was collected and whether that purpose has been fulfilled;
  • Whether we are subject to a legal obligation to retain the data (for example, under Swedish accounting or tax law); and
  • Any applicable limitation periods under which legal claims could be brought.

Once personal data is no longer required, it is securely deleted or anonymised.

8. Your Rights Under GDPR

As a data subject, you have the following rights under the GDPR:

  • Right of access (Article 15): You have the right to obtain confirmation of whether we process your personal data and, if so, to receive a copy of it.
  • Right to rectification (Article 16): You have the right to request correction of inaccurate or incomplete personal data.
  • Right to erasure (Article 17): You have the right to request deletion of your personal data in certain circumstances (the “right to be forgotten”).
  • Right to restriction of processing (Article 18): You have the right to request that we restrict the processing of your data in certain circumstances.
  • Right to data portability (Article 20): Where processing is based on consent or a contract and carried out by automated means, you have the right to receive your data in a structured, commonly used, machine-readable format.
  • Right to object (Article 21): You have the right to object to processing based on legitimate interests. We will cease processing unless we can demonstrate compelling legitimate grounds that override your interests, or for the establishment, exercise, or defence of legal claims.
  • Right to withdraw consent (Article 7(3)): Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
  • Right not to be subject to automated decision-making (Article 22): We do not make solely automated decisions that produce legal or similarly significant effects in relation to you.

To exercise any of the above rights, please contact us at [email protected]. We will respond within one month of receiving your request, in accordance with Article 12 GDPR.

9. Right to Lodge a Complaint

If you believe that our processing of your personal data violates applicable data protection law, you have the right to lodge a complaint with the Swedish supervisory authority:

Integritetsskyddsmyndigheten (IMY)
Box 8114, 104 20 Stockholm, Sweden
Website: https://www.imy.se

You also have the right to lodge a complaint with the supervisory authority in the EU Member State of your habitual residence, place of work, or place of the alleged infringement.

10. Security

We implement appropriate technical and organisational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures include encrypted transmission via HTTPS, access controls, and regular review of our security practices.

While we take reasonable precautions, no method of transmission over the internet is completely secure. We cannot guarantee absolute security.

11. Children’s Privacy

Our Website is not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete the information as soon as reasonably practicable.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. The date at the top of this document indicates when it was last revised. We encourage you to review this policy periodically.

13. Contact Us

If you have any questions, concerns, or requests in relation to this Privacy Policy or our data processing activities, please contact us:

InSilico Consulting AB
226 49 Lund, Sweden
Email: [email protected]
Phone: +46 70 820 54 63