Privacy Policy

Last updated: June 2026

This Privacy Policy explains how Morgon Studio collects, uses, stores, shares and protects personal data when users visit morgonstudio.com, contact Morgon Studio, request information, subscribe to communications or use services provided by Morgon Studio.

This Privacy Policy is intended to comply with the General Data Protection Regulation (Regulation (EU) 2016/679), commonly known as the GDPR, and applicable Swedish data protection rules.

By using this website or contacting Morgon Studio, users acknowledge that their personal data may be processed as described in this Privacy Policy.

1. Data Controller

The data controller responsible for the processing of personal data described in this Privacy Policy is:

Social denomination: Morgon Studio
Registered in the Registry: Skatteverket Stockholm Sweden
Telephone: +46 76 835 30 16
E-mail: info@morgonstudio.com
Domain Name: morgonstudio.com

For any question regarding this Privacy Policy or the processing of personal data, users may contact Morgon Studio at:

info@morgonstudio.com

2. Scope of This Privacy Policy

This Privacy Policy applies to personal data processed through:

a. the website morgonstudio.com;
b. contact forms, request forms and other website forms;
c. e-mail communications with Morgon Studio;
d. newsletter or marketing subscriptions;
e. service requests, quotations, proposals and client relationships;
f. digital services, web design, digital marketing, automation, AI agents, AI training, private AI consulting and related services;
g. analytics, cookies and similar technologies used on the website.

This Privacy Policy does not apply to third-party websites, platforms or services that may be linked from this website. Those third-party services are governed by their own privacy policies and terms.

3. Personal Data We May Collect

Depending on how the user interacts with Morgon Studio, the following categories of personal data may be processed:

3.1 Contact and Identification Data

a. name;
b. surname, where provided;
c. e-mail address;
d. telephone number;
e. company name or organisation name, where provided;
f. role, position or professional information, where provided.

3.2 Communication Data

a. messages sent through contact forms;
b. e-mails sent to Morgon Studio;
c. replies, requests, comments or questions;
d. information voluntarily included by the user in communications.

3.3 Service and Client Data

a. information necessary to prepare quotations, proposals or service agreements;
b. project requirements;
c. business information voluntarily provided by clients;
d. documents, files, images, texts or materials provided for service delivery;
e. information related to web design, marketing, automation, AI agents, AI training or private AI projects.

3.4 Billing and Administrative Data

Where applicable, Morgon Studio may process information necessary for invoicing, accounting, payment management, tax compliance and business administration.

3.5 Technical and Website Usage Data

When users visit the website, certain technical data may be collected, such as:

a. IP address;
b. browser type and version;
c. device type;
d. operating system;
e. approximate location derived from technical data;
f. pages visited;
g. date and time of access;
h. referral source;
i. interaction with website content;
j. cookie identifiers or similar technologies, where applicable.

3.6 Newsletter and Marketing Data

If the user subscribes to a newsletter or accepts commercial communications, Morgon Studio may process:

a. e-mail address;
b. name, where provided;
c. subscription status;
d. consent records;
e. communication preferences;
f. opening, click or interaction data, where supported by the mailing provider and legally permitted.

3.7 AI-Related Data

Where services involve artificial intelligence, automation, AI agents, private AI solutions or AI training, Morgon Studio may process:

a. prompts, instructions or requests provided by the client;
b. documents or materials provided for AI configuration or training purposes;
c. business workflows, internal procedures or knowledge materials shared by the client;
d. outputs, drafts, configurations or automation logic created during the service;
e. technical settings necessary to configure AI-related tools.

Clients should not provide sensitive personal data, confidential third-party data, health data, legal case files, financial data or other regulated information unless this is strictly necessary, lawful and expressly agreed in advance with Morgon Studio.

4. How We Collect Personal Data

Morgon Studio may collect personal data in the following ways:

a. when the user fills in a contact form or request form;
b. when the user sends an e-mail to Morgon Studio;
c. when the user requests information, a quotation or a proposal;
d. when the user contracts or discusses a service;
e. when the user subscribes to a newsletter or marketing communication;
f. when the user provides documents, files or business information for a project;
g. when the user visits or interacts with the website;
h. through cookies, analytics tools or similar technologies, where applicable;
i. through third-party service providers used to operate the website or provide services.

5. Purposes and Legal Bases for Processing

Morgon Studio processes personal data only when there is a lawful basis under the GDPR.

5.1 Responding to Contact Requests

Personal data may be processed to respond to messages, questions, requests, quotations or enquiries submitted by users.

Legal basis: legitimate interest in responding to communications and managing business enquiries, or pre-contractual steps requested by the user.

5.2 Providing Services

Personal data may be processed to provide contracted services, manage projects, deliver web design, marketing, automation, AI agents, AI training, private AI consulting or related services.

Legal basis: performance of a contract or pre-contractual steps requested by the user.

5.3 Business Administration and Client Management

Personal data may be processed to manage client relationships, maintain internal records, organise communications, follow up on projects and administer business operations.

Legal basis: legitimate interest in managing business activities and client relationships.

5.4 Invoicing, Accounting and Legal Obligations

Personal data may be processed where necessary for invoicing, accounting, tax obligations, bookkeeping, legal compliance or regulatory requirements.

Legal basis: compliance with legal obligations.

5.5 Newsletter and Marketing Communications

Personal data may be processed to send newsletters, updates, offers, commercial information or content related to Morgon Studio’s services.

Legal basis: consent, where required, or legitimate interest in sending relevant communications to existing clients or business contacts, where permitted by applicable law.

Users may unsubscribe or object to marketing communications at any time.

5.6 Website Analytics and Improvement

Personal data and technical data may be processed to understand how users interact with the website, improve content, measure performance and optimise the user experience.

Legal basis: consent, where required for non-essential cookies or analytics technologies, or legitimate interest where the processing is strictly necessary and privacy-friendly.

5.7 Website Security

Technical data may be processed to protect the website, prevent abuse, detect suspicious activity, maintain security and ensure the proper functioning of digital systems.

Legal basis: legitimate interest in securing the website and protecting Morgon Studio, users and digital infrastructure.

5.8 AI, Automation and Digital Service Delivery

Personal data may be processed when necessary to design, configure, test, deliver, improve or support AI-related services, automations, AI agents, private AI environments or digital workflows requested by the client.

Legal basis: performance of a contract, pre-contractual steps, legitimate interest in delivering and improving services, and, where required, consent or another applicable legal basis.

5.9 Legal Claims and Protection of Rights

Personal data may be processed where necessary to establish, exercise or defend legal claims, respond to disputes, enforce agreements or protect the rights and legitimate interests of Morgon Studio.

Legal basis: legitimate interest and, where applicable, legal obligation.

6. Artificial Intelligence and Automated Tools

Morgon Studio may use artificial intelligence tools, automation systems, AI agents, private AI configurations or third-party AI platforms as part of its services.

When AI-related services are requested, personal data may be processed only to the extent necessary to provide the agreed service.

Morgon Studio does not intentionally use client-provided personal data to create public datasets or to disclose confidential client information.

Where third-party AI tools are used, their processing may be subject to their own contractual terms, privacy policies and technical configurations. Morgon Studio will take reasonable steps to use appropriate tools and settings according to the nature of the project.

Clients are responsible for ensuring that any personal data, documents, prompts, instructions or files provided to Morgon Studio are lawful, accurate and authorised for the intended purpose.

Unless expressly agreed in writing, users and clients should avoid sending special categories of personal data, including health data, biometric data, political opinions, religious beliefs, trade union membership, sexual orientation or other sensitive information.

Where a project requires the processing of personal data on behalf of a client, a separate data processing agreement may be required.

7. Special Categories of Personal Data

Morgon Studio does not intentionally request or require special categories of personal data through its general website forms.

Special categories of personal data include, among other things, information relating to health, biometric data, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, sexual orientation or sex life.

Users should not submit this type of information through the website unless it is strictly necessary and expressly requested in connection with a specific service.

If such data is provided voluntarily and without necessity, Morgon Studio may delete, disregard or restrict the processing of that information where appropriate.

8. Cookies and Similar Technologies

The website may use cookies and similar technologies for technical, functional, analytical, security or marketing purposes.

Essential cookies may be used to operate the website and provide basic functionality.

Non-essential cookies, such as analytics or marketing cookies, will be used only where legally permitted and, where required, after obtaining the user’s consent.

Users can manage cookies through the cookie banner, browser settings or the applicable Cookie Policy.

More detailed information about cookies should be provided in the Cookie Policy of Morgon Studio.

9. Google Analytics and Analytics Tools

Morgon Studio may use analytics tools, including Google Analytics or similar services, to understand website traffic, measure performance and improve content.

Analytics tools may collect technical information such as IP address, device information, browser information, pages visited and interaction data.

Where required by applicable law, analytics cookies will only be activated after the user has given consent.

The user may also manage or disable cookies through browser settings or other available tools.

10. Newsletter and Commercial Communications

If the user subscribes to a newsletter, requests updates or gives consent to receive commercial communications, Morgon Studio may use the user’s contact details to send information about services, articles, updates, offers or relevant business content.

Users may unsubscribe from commercial communications at any time by following the unsubscribe instructions included in the communication or by contacting:

info@morgonstudio.com

Morgon Studio will not send marketing communications to users who have withdrawn consent or objected to such communications, unless another lawful basis applies under applicable law.

11. Recipients and Service Providers

Morgon Studio may share personal data with trusted third-party service providers only when necessary to operate the website, communicate with users, provide services, manage projects, store files, analyse website performance, send newsletters, maintain security, process payments or comply with legal obligations.

Such providers may include, depending on the tools used:

a. website hosting providers;
b. e-mail service providers;
c. cloud storage providers;
d. analytics providers;
e. newsletter or marketing platforms;
f. payment or invoicing providers;
g. IT support providers;
h. automation tools;
i. AI service providers;
j. security and anti-spam providers;
k. professional advisers, where necessary.

These third-party providers may act as processors or independent controllers depending on the nature of the service.

Morgon Studio does not sell personal data.

Morgon Studio does not transfer personal data to third parties for their own unrelated marketing purposes without a lawful basis.

12. International Data Transfers

Some service providers used by Morgon Studio may process personal data outside Sweden, the European Union or the European Economic Area.

Where personal data is transferred outside the EU or EEA, Morgon Studio will take reasonable steps to ensure that appropriate safeguards are in place in accordance with the GDPR.

Such safeguards may include:

a. an adequacy decision adopted by the European Commission;
b. Standard Contractual Clauses approved by the European Commission;
c. the EU-U.S. Data Privacy Framework, where the recipient organisation is certified under that framework;
d. other legally recognised transfer mechanisms.

Morgon Studio does not rely on the former EU-U.S. Privacy Shield, which is no longer a valid transfer mechanism.

13. Data Retention

Morgon Studio will retain personal data only for as long as necessary for the purposes for which it was collected, unless a longer retention period is required or permitted by law.

The retention period may vary depending on the type of data and the purpose of processing.

In general:

a. contact form and enquiry data may be retained for as long as necessary to respond to the request and follow up on potential business communication;
b. client and project data may be retained for the duration of the client relationship and for a reasonable period afterwards;
c. accounting, invoicing and tax-related data may be retained for the period required under applicable legal obligations;
d. newsletter data may be retained until the user unsubscribes or withdraws consent;
e. technical security logs may be retained for a limited period necessary for security and troubleshooting;
f. analytics data may be retained according to the configuration of the analytics provider and applicable cookie consent settings;
g. AI project materials may be retained only for as long as necessary to provide the service, support the project, comply with contractual obligations or protect legitimate interests.

When personal data is no longer necessary, Morgon Studio will delete, anonymise or securely restrict its processing, where appropriate.

14. Security Measures

Morgon Studio takes reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, disclosure or destruction.

Such measures may include, depending on the context:

a. access controls;
b. secure passwords;
c. restricted access to business tools;
d. secure storage systems;
e. software updates;
f. encrypted connections where available;
g. careful selection of service providers;
h. internal confidentiality practices;
i. deletion or restriction of data when no longer needed.

However, no method of transmission over the internet or electronic storage is completely secure. Morgon Studio cannot guarantee absolute security of information transmitted or stored digitally.

15. Data Subject Rights

Under the GDPR, users may have the following rights regarding their personal data:

15.1 Right of Access

Users may request confirmation as to whether Morgon Studio processes their personal data and may request access to that data.

15.2 Right to Rectification

Users may request correction of inaccurate or incomplete personal data.

15.3 Right to Erasure

Users may request deletion of personal data where there is no longer a valid reason for processing it, subject to legal exceptions.

15.4 Right to Restriction of Processing

Users may request restriction of processing in certain circumstances.

15.5 Right to Data Portability

Where applicable, users may request to receive personal data in a structured, commonly used and machine-readable format.

15.6 Right to Object

Users may object to processing based on legitimate interests, including profiling where applicable.

Users may always object to the processing of personal data for direct marketing purposes.

15.7 Right to Withdraw Consent

Where processing is based on consent, users may withdraw that consent at any time.

Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

15.8 Right Not to Be Subject to Certain Automated Decisions

Users may have the right not to be subject to a decision based solely on automated processing, including profiling, where such decision produces legal or similarly significant effects.

Morgon Studio does not use website visitor data to make decisions based solely on automated processing that produce legal or similarly significant effects.

16. How to Exercise Your Rights

Users may exercise their rights by contacting Morgon Studio at:

info@morgonstudio.com

To protect personal data and prevent unauthorised disclosure, Morgon Studio may request additional information to verify the identity of the person making the request where necessary.

Morgon Studio will respond to valid requests within the time limits established by applicable data protection law.

17. Right to Lodge a Complaint

Users have the right to lodge a complaint with the Swedish Authority for Privacy Protection, known as Integritetsskyddsmyndigheten (IMY), if they believe that the processing of their personal data infringes applicable data protection law.

More information is available at:

www.imy.se

Users may also contact Morgon Studio first so that the matter can be reviewed and, where appropriate, resolved directly.

18. Children’s Privacy

This website and Morgon Studio’s services are not directed at children.

Morgon Studio does not knowingly collect personal data from children through the website.

If Morgon Studio becomes aware that personal data from a child has been collected without appropriate legal basis or authorisation, reasonable steps will be taken to delete such data.

19. External Links

This website may contain links to third-party websites, platforms, social networks or external resources.

Morgon Studio is not responsible for the privacy practices, content, cookies, security or data processing activities of third-party websites.

Users should read the privacy policies and cookie policies of any third-party websites they visit.

20. Changes to This Privacy Policy

Morgon Studio may update this Privacy Policy from time to time to reflect changes in legal requirements, website functionality, services, technologies, business practices or data processing activities.

The updated version will be published on this website with the corresponding update date.

Users are encouraged to review this Privacy Policy periodically.

21. Contact

For any questions, requests or concerns regarding this Privacy Policy or the processing of personal data, users may contact Morgon Studio at:

Morgon Studio
E-mail: info@morgonstudio.com
Telephone: +46 76 835 30 16
Website: morgonstudio.com