Privacy Policy | Stark Värdeborg – GDPR & Data Security 2026 MD: Consult Stark Värdeborg's comprehensive privacy policy. Detailed protocols for financial data handling, security architecture, GDPR compliance, and user rights in Stockholm. Privacy Policy and Data Protection Framework – Stark Värdeborg Version 5.0 – Last updated: April 27, 2026 Article 1: Identification of the Data Controller This privacy policy describes the rigorous data processing protocols maintained by Stark Värdeborg ("the Platform", "we", "us" or "our"), with headquarters at Vasagatan 16, 111 20 Stockholm, Sweden. We act as the data controller in accordance with the General Data Protection Regulation (EU GDPR) and the Swedish Data Protection Act. To ensure absolute data integrity, we have appointed a dedicated Data Protection Officer (DPO) who can be reached via kontakt@starkvardeborg.com. Article 2: Categories of Personal Data Collected In accordance with the principle of data minimization, we collect: Identity metrics: Full legal name, date of birth, nationality, and government identification for mandatory KYC/AML verification.

Digital footprint: IP addresses, hardware specifications, and detailed interaction logs with our predictive interfaces.

Article 3: Legal basis for processing Our collection and use of information is based on:

Contractual necessity: Required to manage your account and deliver our services.

Legal obligations: Compliance with the Swedish Anti-Money Laundering Act (Act on Measures Against Money Laundering and Financing of Terrorism).

Legitimate business interests: Proactive fraud prevention and network security improvement.

Explicit consent: For personalized market insights and non-essential analytical cookies.

Article 4: Advanced Security and Sovereignty

Encryption: All stored data is secured with AES-256 cryptographic protocols.

Transfer: Secured via TLS 1.3 end-to-end encryption.

Hosting: Data is stored exclusively on redundant, highly protected servers within the European Economic Area (EEA), guaranteeing full protection under EU data sovereignty laws.

Article 5: Storage and your rights We store identity and financial records for at least five (5) to seven (7) years after the account has been closed to comply with requirements from Swedish authorities and AML directives. According to GDPR, you have the right to access, rectification, erasure, and portability of your data. Requests can be sent to [email protected]. You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY).