The data controller responsible for the processing of personal data is:
Mauritzbergs Slott & Golf AB
Company registration number: 556704–8805
Address: Mauritsbergsvägen 5, SE‑610 31 Vikbolandet, Sweden
Email: service@mauritzberg.se
Telephone: +46 (0)125 50 100

Responsible contact person:
Juha Patrick Lipsanen, Chief Executive Officer (CEO)

If you have questions regarding privacy or personal data, you may also contact us at service@mauritzberg.se (please indicate “Privacy” in the subject line).

If a Data Protection Officer (DPO) has been appointed, contact details will be provided upon request or in an updated version of this policy.

Personal data refers to all information that can directly or indirectly be linked to a living individual, such as name, contact details, booking information, online identifiers (e.g. cookie IDs), IP addresses, or image material from camera surveillance.

We only process personal data where there is a lawful basis, for example:
to fulfil contracts or bookings
based on your consent
to comply with legal obligations
based on a legitimate interest, such as security or the improvement of our services

Depending on the context, we may process the following types of personal data:

Name and contact details
Booking and payment information
Communication via email or web forms
Information relating to golf activities, stays, or events
Technical information when visiting the website (e.g. IP address, device, browser)
Image material in connection with camera surveillance

Mauritzbergs Slott & Golf uses camera surveillance in certain areas of the premises for the purpose of:
enhancing safety for guests and staff
preventing, detecting, and investigating incidents
protecting buildings, property, and operations

Camera surveillance is carried out in accordance with the GDPR and the Swedish Camera Surveillance Act (2018:1200). Areas under surveillance are clearly signposted.
Data protection responsibility and authorisation

Mauritzbergs Slott & Golf AB is the data controller for camera surveillance. All assessments of necessity, proportionality, and lawful basis are carried out internally in accordance with applicable regulations.

Person responsible for camera surveillance:
Juha Patrick Lipsanen, Chief Executive Officer (CEO)

Recorded camera footage is stored only for as long as necessary for the intended purpose. As a rule, footage is retained for a short, limited period and then automatically deleted.*

Footage may be stored for a longer period if required for the handling of an ongoing incident, legal proceedings, or an authority investigation. Access to recorded material is restricted to authorised personnel only.

When you visit www.mauritzberg.se, we use cookies and similar technologies to ensure the website functions properly, to analyse traffic, and to improve and market our services.

6.1 Categories of cookies and tracking
We primarily use the following categories (depending on your choices):

Necessary cookies – required for the website to function properly
Analytics/statistics – help us understand how the website is used and improve its content
Marketing – used to measure advertising effectiveness and display more relevant offers

6.2 Tools we may use (pixels/tags)
We may use tracking tags (so‑called pixels/tags) and similar technologies from selected providers, for example:

Google Analytics (Google) – website statistics and analysis of user behaviour
Google Pixel (Google) – measurement of marketing and conversions
Meta (Facebook) Pixel (Meta) – measurement and optimisation of marketing on social media platforms

These technologies may collect and process information such as:

IP address (may constitute personal data)
online identifiers (e.g. cookie ID or device identifier)
information about how the website is used, such as page views, clicks, length of visit, and returning visits
technical information about browser, operating system, and device
marketing‑related events, such as a page visit or a form view

Mauritzbergs Slott & Golf is the data controller for the processing carried out through these pixels and tags on the website. Providers may process data either as data processors or as independent data controllers, in accordance with their own terms and conditions.

6.3 Lawful basis and consent
For analytics/statistics and marketing purposes, cookies and pixels are used only if you provide consent via our cookie solution. You may change or withdraw your consent at any time through the cookie settings.
You can also adjust your cookie preferences at any time via the “Cookie Settings” link available on the website, for example in the footer or through the cookie banner.

6.4 Recipients and transfers outside the EU/EEA
When we use third‑party tools (e.g. Google and Meta), data may be shared with the respective providers. Depending on how the service is configured, data may also be transferred to and processed in countries outside the EU/EEA, such as the United States.
Where data is transferred outside the EU/EEA, we ensure such transfers comply with the GDPR and appropriate safeguards are applied, such as the European Commission’s Standard Contractual Clauses (SCCs) and/or other approved protection mechanisms

We may share personal data with selected external suppliers providing technical systems, booking services, payment solutions, analytics tools, or marketing platforms. Examples include providers of web analytics (e.g. Google) and social media marketing services (e.g. Meta).

All such parties may only process personal data in accordance with our instructions and pursuant to a data processing agreement or equivalent contractual terms.

Where personal data is transferred outside the EU/EEA, we ensure that this is done in accordance with the GDPR and with appropriate safeguards in place.

Personal data is stored only for as long as necessary for the purpose for which it was collected or for as long as required by law. Thereafter, the data is deleted or anonymised.

You have the right to:

request access to your personal data
request rectification of incorrect data
request erasure (“the right to be forgotten”)
request restriction of processing
object to processing based on legitimate interest
withdraw a previously given consent
lodge a complaint with the Swedish Authority for Privacy Protection (IMY)

To exercise your rights, please contact us at service@mauritzberg.se.

If you have questions about this Privacy Policy, camera surveillance, or how we process your personal data, you are welcome to contact us:
Mauritzbergs Slott & Golf AB
Email: service@mauritzberg.se
Telephone: +46 (0)125 50 100