Privacy Policy

This policy describes how Coderr AB ("we", "us") handles data when integrating with your systems.

Last updated: March 29, 2026

1. Who we are

Coderr AB is a Swedish software consulting company (org.nr 559289-4092) based in Falun, Sweden. Jonas Gauffin is the data controller for any personal data processed through our integrations.

2. What this policy covers

This policy applies to all integrations, tools, and services we deploy or connect to our customers' systems as part of consulting engagements. This includes, but is not limited to, error tracking, code analysis, monitoring, and CI/CD pipeline integrations.

3. Data we process

When integrating with your systems, we may process the following categories of data:

  • Error and diagnostic data — stack traces, log entries, environment metadata, and request context collected by error tracking tools.
  • Source code metadata — file names, method signatures, and code structure used for analysis and quality reporting.
  • System and infrastructure data — server names, IP addresses, OS versions, and runtime configurations.
  • User identifiers — usernames, email addresses, or user IDs that may appear in logs or error reports.

4. Purpose and legal basis

We process data solely to fulfill our contractual obligations to you (GDPR Art. 6(1)(b)), specifically:

  • Identifying, diagnosing, and resolving software defects.
  • Providing code quality analysis and recommendations.
  • Monitoring system health and performance.
  • Delivering the consulting services agreed upon in our engagement.

5. Data storage and security

  • All data is processed within the EU/EEA unless explicitly agreed otherwise.
  • Data is transmitted over encrypted connections (TLS 1.2+).
  • Access to customer data is restricted to personnel directly involved in the engagement.
  • We do not store customer data longer than necessary to fulfill the purpose of the integration. Upon contract termination, all data is deleted within 30 days unless otherwise agreed.

6. Third-party services

Some integrations may use third-party services (e.g., cloud hosting, error tracking platforms). When this is the case, we ensure that any sub-processor meets equivalent data protection standards and that a Data Processing Agreement (DPA) is in place. We will inform you of any third-party services used before deployment.

7. Your rights

Under the GDPR, you have the right to:

  • Access — request a copy of the data we process on your behalf.
  • Rectification — request correction of inaccurate data.
  • Erasure — request deletion of data we hold.
  • Restriction — request that we limit processing.
  • Portability — receive your data in a structured, machine-readable format.
  • Object — object to processing where applicable.

To exercise any of these rights, contact us using the details below. You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten, IMY).

8. Contact

For questions about this privacy policy or how we handle your data:
Jonas Gauffin
Coderr AB
Falun, Sweden
Contact form