Barnluren Sign in

Privacy Policy

Last updated: December 2025

At Barnluren, we believe privacy is a fundamental right, especially for children. We've built our service with privacy at its core, collecting only what's absolutely necessary and never selling your data.

Who We Are

Barnluren AB
Organisation number: 559480-7827
Email: hej@barnluren.com

Barnluren AB is the data controller for your personal data under the General Data Protection Regulation (GDPR).

Our Privacy Commitment

  • We never sell your data. Not to advertisers, not to anyone.
  • We never show advertising. This is a paid service, not an ad platform.
  • We never track you. No analytics cookies, no behavioral profiling.
  • We collect only what's necessary to provide the service.
  • We never record phone calls. Your conversations are private.

What Data We Collect

Account Information (Parents)

When you create an account, we collect:

  • Your email address (for login and communication)
  • Your name (to address you)
  • Payment information (processed securely by Stripe - we don't store card numbers)

Phone Line Data

To operate your child's phone line, we store:

  • The phone number assigned to your line
  • Your allow-list of approved contact numbers
  • Contact names you've added

Call Metadata

As required by Swedish telecommunications law, we retain basic call metadata (who called whom, when, and duration). We never record the content of calls.

Technical Data

For security and to operate the service:

  • IP addresses (for security)
  • Session data (to keep you logged in)

Waitlist Data

If you sign up for our waitlist, we collect your name, email, any comments you provide, and your IP address (for spam prevention).

Children's Data

Barnluren is designed for children to use, but our customers are their parents. We don't collect personal data directly from children. Parents manage all account settings and data on behalf of their children.

The only data related to children is:

  • Their assigned phone number
  • Call metadata (as required by law)
  • Contact names that parents have added

Why We Process Your Data

We process your data based on:

  • Contract performance (GDPR Art. 6(1)(b)) - to provide the phone service you've subscribed to
  • Legal obligation (GDPR Art. 6(1)(c)) - to comply with Swedish telecommunications retention requirements
  • Legitimate interest (GDPR Art. 6(1)(f)) - for security, fraud prevention, and service improvement

Who We Share Data With

We work with a small number of trusted service providers:

  • Stripe (payments) - processes your payment securely
  • Telnyx (telephony) - provides phone numbers and handles calls
  • Clerk (authentication) - manages secure login

These providers process data only to provide their services and are bound by data protection agreements.

Legal Requirements

As a telecommunications provider in Sweden, we and our telephony partners are required to comply with lawful intercept obligations. This means that in response to valid legal requests from authorities, call data may be disclosed. We do not voluntarily share data with any government or authority.

How Long We Keep Your Data

  • Account data: For as long as your account is active, plus 30 days after deletion
  • Call metadata: As required by Swedish telecommunications law
  • Billing records: 7 years (Swedish accounting requirements)
  • Waitlist data: Until you become a customer or ask us to delete it

Your Rights

Under GDPR, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your data (with some legal exceptions)
  • Export your data in a portable format
  • Object to certain processing
  • Restrict processing in certain circumstances

To exercise these rights, email us at hej@barnluren.com.

Cookies

We use only essential cookies required for the service to function:

  • Session cookies (to keep you logged in)
  • Authentication cookies (for secure login via Clerk)
  • Payment session cookies (during Stripe checkout only)

We do not use any tracking, analytics, or advertising cookies. Because we only use strictly necessary cookies, we don't need to ask for your consent under Swedish and EU law.

Security

We protect your data using industry-standard security measures including encryption in transit (TLS), secure authentication, and access controls. We regularly review our security practices.

Supervisory Authority

If you're not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY):

Integritetsskyddsmyndigheten (IMY)
www.imy.se

Changes to This Policy

If we make significant changes to this policy, we'll notify you by email. Minor clarifications may be made without notice. The "last updated" date at the top shows when this policy was last revised.

Contact Us

Questions about privacy? We're happy to help.

Email: hej@barnluren.com