Privacy policy

Last updated May 20, 2026

Inly Technology AB (“Inly”, “we”) operates inly.se. This policy explains what personal data we collect through the website, why, and the rights you have over it. We process personal data in accordance with the EU General Data Protection Regulation (GDPR). For how data is handled inside the Core platform, see the GDPR page and our customer Data Processing Agreement.

Controller

Inly Technology AB is the data controller for personal data collected through this website. Corporate details are listed on the Legal page. For privacy matters, contact [email protected].

What we collect

  • Discovery-call form— when you submit the “Book a discovery call” form, we collect your email and, if you provide them, your name, phone number, company, and message. Entries are stored in our internal CRM (Notion) so we can follow up with you.
  • Email and other channels — name, email, company, and message body when you email us (e.g. [email protected], careers via Notion, or other listed addresses).
  • Usage data — aggregate page views, referrer, device and browser type, country. Collected via Cloudflare Web Analytics, which is cookieless and does not fingerprint visitors.
  • Cookies — inly.se does not set cookies for tracking, advertising, or analytics. We do not load third-party marketing pixels or tracking SDKs. The discovery-call form loads Cloudflare Turnstile, an anti-bot challenge used solely to verify that submissions come from a human; it is not used for tracking or profiling.

Why we use it

  • To respond to inquiries and arrange meetings you request.
  • To improve the website and platform.
  • To meet legal and contractual obligations (accounting, contracts, audit).

Legal bases: legitimate interest (Art. 6.1.f GDPR) for general site use, and consent or contract performance (Art. 6.1.a / 6.1.b) for direct communication.

Sharing

We don’t sell personal data. We share it only with the sub-processors needed to run the website — hosting and edge delivery (Vercel, Cloudflare), email (Google Workspace), anti-bot verification on the discovery-call form (Cloudflare Turnstile), and CRM storage for discovery-call submissions (Notion). The full list, with locations and purposes, is published on the GDPR page.

Storage and transfers

Email correspondence is stored in Google Workspace (United States). The website is delivered globally via Vercel and Cloudflare. For transfers outside the EU/EEA we rely on the European Commission’s Standard Contractual Clauses and, where applicable, the EU-US Data Privacy Framework.

Retention

We keep personal data only as long as needed for the purpose it was collected for, or as required by law. You can ask us to delete your data at any time using the contact details above.

Your rights

You can ask us to:

  • access the data we hold about you,
  • correct inaccurate data,
  • delete data (right to be forgotten),
  • restrict or object to processing,
  • port your data to another provider.

Email [email protected] and we’ll respond within 30 days. You can also lodge a complaint with the Swedish Authority for Privacy Protection (IMY) at imy.se.

Changes

If we change this policy, we’ll update the “Last updated” date above. Material changes will be flagged on this page before they take effect.

Legal