Legal

Privacy Policy

How Qliva handles personal data, cookies, and customer information.

Last updated: 2026-06-02

1. Who We Are

Qliva is a brand owned by Pelilo AB, a Swedish company with company registration number 556737-7030. Contact: info@qliva.se.

2. Personal Data We Process

  • Website contact data: name, company, email address, message content, and any information you send to us.
  • AI assistant conversations: messages, timestamps, language, page context, and lead details if you choose to provide them.
  • Customer account data: users, roles, tenant settings, documents uploaded to the service, and configuration for the embedded widget.
  • Technical data: IP address, browser information, request logs, security events, and operational diagnostics.

3. Why We Process Data

We process data to provide and improve Qliva, answer enquiries, operate AI assistants, capture leads when requested, secure the platform, troubleshoot issues, and meet legal obligations.

4. Legal Basis

  • Contract: to deliver Qliva to customers and manage accounts.
  • Legitimate interest: to respond to enquiries, secure services, improve functionality, and understand website use.
  • Consent: for optional analytics cookies or similar tracking where required.
  • Legal obligation: for accounting, compliance, or lawful requests.

5. AI Assistant Data

Qliva answers questions using customer-approved knowledge sources such as websites, PDFs, and documents. Conversation data may be stored so customers can review quality, handle leads, and improve their knowledge base. Customers remain responsible for the content they upload and for informing their own users where Qliva is embedded on their websites.

6. Cookies

The Qliva website uses necessary browser storage to remember your cookie choice. We may use optional analytics cookies only after you accept them in the cookie banner. If you decline, optional analytics are not enabled. You can change your choice by clearing your browser storage for this website.

7. Sub-processors and Storage

We use trusted service providers for cloud hosting, AI processing, email, billing, and operational tooling. Core infrastructure is designed around EU-based hosting where practical, including AWS eu-north-1 in Stockholm for platform services. We do not sell personal data.

8. Retention

We keep personal data only as long as needed for the purpose it was collected for. Customer data is retained during the customer relationship and deleted or returned according to the agreement. Technical logs are retained for a limited period for security and troubleshooting. Accounting records may be kept as required by law.

9. Your Rights

Under GDPR you may request access, correction, deletion, restriction, portability, or object to certain processing. You may also withdraw consent where processing is based on consent.

10. Contact and Complaints

Contact us at info@qliva.se. If you are not satisfied with how we handle your data, you can contact the Swedish Authority for Privacy Protection, IMY, at www.imy.se.