Premium quality
Free delivery over £29
Fast deliveries

Why do you have a privacy policy?

In times when digital information is such a big part of many people's lives, it is important to take personal privacy and data protection seriously. We often leave information that can be accessed by various services, either on internet sites, mobile apps, or through other methods. To this end, it is extremely important to us here at Hambedo that you feel fully confident that we are doing everything we can to protect your personal information. For us, personal data is not a commodity — it is a token of trust.

In this privacy policy, we will describe as clearly as possible how we treat and process your data. We often use formal language but will try to simplify it wherever possible. If something is still unclear, please let us know right away so that we can work to make our site as transparent as possible.

Personal Data Controller

Hambedo is the data controller for the information collected about you in connection with the following activities: a purchase from our store, an inquiry to us, or other situations when you are in contact with us.

Our contact information

Hambedo AB
Larsfridsvägen 9
302 50 Halmstad


If you have questions or would like to correct something, please contact our customer service by email at


Personal Data Controller

The natural or legal person, public authority, institution or other entity that, either alone or in coordination with others, determines the purposes and means for processing personal data.

Personal Data Assistant

The natural or legal person, public authority, institution or other entity that processes personal data on behalf of the Personal Data Controller.

Personal Data 

Refers to all information that relates to an identified or identifiable natural person currently living. An identifiable natural person is a person who can be identified, directly or indirectly, through such means as their name, social security number, picture, etc.


Refers to a procedure or combination of procedures that utilize personal data or sets of personal data. These procedures, which may or may not be automated, include activities such as data collection, registration, organization, structuring, storage, processing or modification, production/reproduction, reading, use, disclosure (by transmission, dissemination or other means), creating, adjusting or merging, limiting, deleting, or destroying.

Sensitive Personal Data 

Refers to personal data that may cause injury or special concern to the data subject if disclosed. Examples of such information include: special categories of personal data (as defined below), credit card numbers and other financial information, social security number, and location information.

Specific Categories of Personal Data

Refers to particular or specified forms of personal data disclosing information such as racial or ethnic origin, political views, religious or philosophical beliefs, and trade union memberships. Other data that falls under this category might include (but is not necessarily limited to) the processing of genetic or biometric data for the purpose of uniquely identifying a natural person as well as health or physical data. Specific categories of personal data can also include information related to a person's sexual history or sexual orientation.

Your information

In the table below, we have compiled a list containing the personal data we can process. We also describe why we process that data, for what duration, and the reasons we do so.

Source: Newsletter

What: Name and Email

Reason: Marketing

Legal Basis: Consent

Duration: As long as you express interest

Source: Website

What: Name, address, email, telephone number

Reason: To handle and deliver orders

Legal Basis: Fulfilment of contract

Duration: As long as you are a customer or a maximum of 3 years

Source: Mail

What: Name, address, email, telephone number

Reason: To communicate with you before, during and after a transaction

Legal Basis: To fulfil the purchase agreement

Duration: A maximum of 3 years, then automatic deletion

Source: Financial systems

What: Name, address, email, telephone number

Reason: Orders, invoicing and accounting

Legal Basis: Swedish Bookkeeping Act (Bokföringslagen)

Duration: Current year plus 7 years

Source: Telephone system

What: Phone number

Reason: To communicate with you before, during and after a transaction

Legal Basis: Fulfilment of contract

Duration: Maximum of 1 year, then automatic deletion

Source: Purchase patterns

What: Name, address, email, telephone number, your purchases

Reason: To help find products that will suit you

Legal Basis: Consent

Duration: As long as you are a customer or a maximum of 3 years

What are the differences in the reasons stated for legal basis?

Here we outline a few of the different reasons we process your personal data. This section will make clear the differences between our legal bases for such data processing.

Fulfilment of contract

When making a purchase, it is our responsibility to deliver these products. In order to fulfil this responsibility, we require some personal information from you; this information may need to be passed on to other parties in order to complete delivery and your order.

The Swedish Bookkeeping Act (Bokföringslagen)

In order to maintain the accuracy and consistency of our accounting and bookkeeping, we need to save certain information. We use this information to verify our accounts.

Laws other than the GDPR

Just like the Swedish Bookkeeping Act, there are other laws that may require us to save or pass on personal data.


In connection with your purchase or other activities, you are expressing consent to us that we may send newsletters and other information to you. Such information may arrive via regular mail or through various digital channels. You can withdraw your consent at any time. The easiest way to do this is by deregistering yourself from our mailing list. Once you have unregistered, we will delete any data that we do not need for the legal reasons outlined above.

Who are the trusted parties that we permit access to your personal information?

There are times when we may pass on your personal information to other parties. This may be done for a few reasons, several of which are listed below. Sometimes the recipients are independently responsible for personal data (acting as Personal Data Controllers); this means that they are independently responsible for how they further process all personal data. Other times they are acting solely as Personal Data Assistants; in this case, they are bound by special agreements to process your personal data in accordance with our terms and conditions. Personal Data Assistants (referred to as PDA) and Personal Data Controllers (referred to as PDC) help us to fulfil our agreements to you as well as to market our company and provide our various services and products. We will only provide additional personal information when required by law, if you have previously given your consent, or to fulfil our contractual obligations (i.e. to fulfil a contractual agreement such as a purchase), or for specific marketing purposes.

Source: Legal authorities (e.g. tax authority, Central Bureau of Statistics, etc.)

Grounds: Grounds that the organization in question has the legal authority to request

Legal Basis: Laws other than the GDPR

Accessed by PDC and/or PDA: PDC

Source: Payment and credit suppliers (e.g. Klarna)

Grounds: To ensure payment ability

Legal Basis: Fulfilment of contract

Accessed by PDC and/or PDA: PDC

In order to be able to offer you Klarna’s payment options, we will pass to Klarna certain aspects of your personal information, such as contact and order details, in order for Klarna to assess whether you qualify for their payment options and to tailor the payment options for you. General information on Klarna you can find here. Your personal data is handled in accordance with applicable data protection law and in accordance with the information in Klarnas privacy statement.

Source: Delivery agents (e.g. DHL or PostNord)

Grounds: To deliver your order

Legal Basis: Fulfilment of contract

Accessed by PDC and/or PDA: PDC

Source: Newsletter

Grounds: Marketing

Legal Basis: Consent

Accessed by PDC and/or PDA: PDA

Source: Media agencies and advertising agencies

Grounds: Marketing

Legal Basis: Consent

Accessed by PDC and/or PDA: PDA

Source: Website and other IT providers

Grounds: To manage and deliver your orders

Legal Basis: Fulfilment of contract

Accessed by PDC and/or PDA: As long as you are a customer or a maximum of three years

Source: Printing

Grounds: Marketing

Legal Basis: Consent

Accessed by PDC and/or PDA: PDA

Source: Selling the company

Grounds: In order to provide a fair and accurate

Legal Basis: Laws other than the GDPR

Accessed by PDC and/or PDA: PDA

Data Register

Hambedo works hard to ensure all the data we collect about you is correct. If you believe there are errors in your information, you can contact us at any time to have it fixed. If you would like a report regarding what information we have registered about you, you can also request a register extract that will show how we process your data.


If you wish to have your personal information deleted, you have the right to make such a request. We will then delete all of your personal data that we are not legally required to retain (based on laws that apply before the GDPR). Erasure is a powerful option, however; it can make our future communication difficult as there is a risk that the information required to make contact no longer exists or is not available to us.

How do we collect information about you?

We access your personal data in several ways. The most common method when you visit our website and/or make a purchase. Sometimes, however, data is collected through other channels such as via our tools for analysing activity on our website.

Cookies, retargeting, etc.

In order to log in to our site and make a purchase, you must accept our cookies.

Cookies are a small text file stored on your computer, mobile device, etc. whenever you visit our website. You will always be asked whether you approve of the cookies that will be stored. We use cookies to analyse the web traffic on our site. You can delete these cookies at any time and you can also set your internet browser to automatically decline all cookies.

We use cookies to get to know people who have visited our site at any given time. We use them to personalize our offers to you by following what linked you have clicked on. Through this, we can also present information and offers to you on other websites.

We use both our own cookies as well as cookies from third parties.


We strive to provide comprehensive security within all of our technical and organizational systems. We ensure that only authorized personnel and partners with the appropriate jurisdiction have the ability to access your information. We encrypt your information wherever possible.

Third countries

Hambedo has in principle no contact with so-called third countries (i.e. countries outside of the EU/EEA). If for any reason we need to transfer personal data to third countries, Hambedo will take all necessary measures and will comply with all requisite laws to ensure that your personal data remains secure.

Premium quality On paper and frames
Free delivery On all orders above £29
Unique artists From around the world
100% Secure Checkout Secure checkout with Klarna