GDPR & data protection

Our commitment

Librar follows the EU General Data Protection Regulation (GDPR) and Swedish data protection law. We handle all personal data with care and respect for your privacy.

Data controller

Librar is the data controller for processing your personal data. We are responsible for ensuring your data is handled according to applicable laws and regulations.

For questions about how we process your data, contact us via our contact form.

What data we process

Librar processes the following types of personal data:

• Name and contact details (email)
• School and class information
• Borrowing history and book preferences
• Technical data (IP address, browser type)

For students we only process the information needed to provide the service, with consent from the school or guardian.

Lawful basis

We process personal data based on:

• Contract: To deliver and administer our services
• Consent: For features requiring your explicit approval
• Legitimate interest: To improve the service and security
• Legal obligation: When the law requires it

Your rights

You have the right to:

• Access your personal data
• Correct inaccurate or incomplete data
• Request deletion when legally possible
• Restrict or object to processing in certain cases
• Data portability

To exercise your rights, email info@librar.se.

Data retention

We keep personal data only as long as necessary to deliver the service or meet legal requirements. Data is deleted or anonymized when no longer needed.