AuditFloorMate
Back

Privacy Notice

Last updated: June 15, 2026

1. Who we are

AuditFloorMate is operated by Tunhem Teknik AB(organisation number 559431-4055), Sweden ("we", "us"). We act as the data controller for the personal data described in this notice. Contact: andreas@tunhemteknik.se.

2. Privacy-by-design

AuditFloorMate is designed so that your audit content — checklists, findings, photos, company logo and company details — stays on your device (browser localStorage and IndexedDB). We do not upload, store, or have any access to that content.

3. Personal data we process

  • License email address — collected at checkout and stored in our database so we can issue and verify your license key.
  • License key and device identifiers — a random per-browser device ID and an optional device name, stored so we can enforce the per-license device limit.
  • Payment data — name, billing address, tax ID and card details are collected and processed by Paddle (see §5). We never receive your card number.
  • Support correspondence — if you email us, we keep the message and your address to reply.
  • Technical logs — IP address and request metadata are processed transiently by our hosting provider to deliver the service, prevent abuse and rate-limit license endpoints.

4. Purposes and legal bases

  • Provide the service (license issuance, device activation, software download) — performance of contract (GDPR art. 6(1)(b)).
  • Security and fraud prevention (rate limiting, abuse detection) — legitimate interests (art. 6(1)(f)).
  • Legal and tax obligations (invoicing records via Paddle) — legal obligation (art. 6(1)(c)).
  • Customer support — legitimate interests.

5. Who we share data with

  • Paddle.com Market Ltd — our Merchant of Record. Paddle processes the sale of AuditFloorMate licenses, handles subscriptions, payments, tax compliance and invoicing.
  • Hosting and infrastructure providers — Supabase / Cloudflare for database, edge functions and CDN.
  • Email delivery providers — to send your license key and transactional emails.
  • Professional advisers and authorities — where required by law.

Some recipients may process data outside the EU/EEA. Where that happens, transfers are protected by Standard Contractual Clauses or an equivalent safeguard.

6. Retention

License records and the associated email address are retained for as long as the license is active, and afterwards for up to 7 years to meet Swedish accounting requirements. Support emails are kept for up to 24 months. Technical logs are kept for up to 30 days.

7. Your rights

Under the GDPR you may request access, rectification, erasure, restriction, portability, and you may object to processing based on legitimate interests. You may also lodge a complaint with the Swedish Authority for Privacy Protection (IMY). To exercise your rights, email andreas@tunhemteknik.se — we respond within one month.

8. Security

We use TLS in transit, encryption at rest for the license database, access controls and row-level security. No system is perfectly secure, but we take reasonable technical and organisational measures to protect personal data.

9. Cookies

AuditFloorMate uses only strictly necessary local storage to run the app (license key, language, your local audit data). We do not use analytics, advertising or third-party tracking cookies.

10. Changes

We may update this notice. The "Last updated" date at the top reflects the latest version.