Privacy policy

Posta Brev is the controller for the processing of your personal data. Contact: hej@postabrev.se.

We process sender and recipient addresses, email address, payment details (via our payment partner) and letter content (text, PDF, optional voice or video greeting) in order to produce and deliver your letter.

Processing is carried out to fulfil the contract with you (send the letter), to meet legal obligations (accounting) and to operate and secure the service.

Letter content, audio and video files are handled in encrypted storage. Files linked to QR greetings are accessible via an unguessable unique URL that is not indexed by search engines. Content is deleted according to our retention policy or on your request.

Order and invoicing data are kept for the period required by Swedish accounting law (7 years). Letter content is deleted as soon as it is no longer needed for delivery or debugging, and no later than 90 days unless otherwise agreed.

We share necessary data with our subprocessors: payment provider, print partner and postal operator. We never sell your data.

You have the right to request access, rectification, erasure, restriction, data portability and to object to processing. Contact hej@postabrev.se. You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY).

We only use cookies that are necessary for the service to function. Analytics cookies, if any, are only set after your consent.

Questions about this policy? Email hej@postabrev.se.