integrity policy

The General Data Protection Regulation (GDPR) is a new data protection law that will be taking effect on the 25th of May throughout the EU and will also replace the current Swedish PuL (personuppgiftslagen).

This law is created to further increase the protection of the individuals personal data.

We only collect information for specific, explicit and legitimate purposes where it is necessary for the purpose of carrying out our obligations. Such as:

The performance of a contract to which the data subject is party. That is, to handle your orders in our web shop.
To be able to provide you with the services we supply through our web shop we need to know your name, delivery address, phone number and e-mail address. As well as your purchase information (i.e. what you bought and payment methods).
We do never have any direct access to your payment information. Those types of data are handles by the service providers (Dibs, Klarna). The data we have will be stored for, at the most, 36 month in order to handle any sort of complaints or warranty issues unless the data is needed to comply with Swedish accounting laws.

Where the data subject has given consent to the processing of his or hers personal data by signing up for our news letters by providing us their e-mail address. This data is only used by us to inform about special offer or events and is never shared with third parties. The information we use for marketing and newsletter purposes will only be kept until we are informed that the subject no longer wish to receive this information.

For legal reasons. That is to comply with Swedish law regarding accounting, money laundry, warranties and also to prevent criminal activities. As such we will need to keep technical data and purchase generated data for a period of 36 months.
We do also have camera surveillance in our stores but this data can only be accessed by us and the provider, processer, when there is a suspicion of criminal activity and is otherwise erased within a couple of weeks.

Who will we share your data with? No data is shared with third parties unless the law allows them to or it is needed by trusted processers (person or agency which processes data on our behalf) to perform a part of the services we provide you with. These can be:Logistics companies delivering you purchases. Banks and other payment institutes handling you payments. IT-companies providing technical support and maintenance of our systems.

We do never sell, give or exchange your data with any other parties other then the ones mentioned above.
We have a Data Protection regime in place to oversee the effective and secure processing of your personal data. Only persons performing specific tasks will have access to your data. The computers and servers handling our data are stored at secure locations.

Cookies are used on Bric-a-bracs site in order to improve your experience of the site. The cookie identifies your computer and allows the site to remember your personal settings and items in your shopping bag. Cookies are also used for statistical purposes. Cookies are not connected to any personal data.

The use of cookies can be de-activated in your browser but Bric-a-brac can not be held responsible if the site is note working correctly due to this de-activation. You can also set your browser to notify you when a cookie is to be activated.
You can always request a copy of the information we hold about you. You may at any time ask us to correct any inaccurate information or have it altogether removed unless the law forbids us to.

By using our site you agree to our integrity policy.
For further information and any questions please contact us by e-mail.

Bric-a-brac Stockholm AB, org, nr 556505-8160 is the controller of the company’s personal data.

Payment methods

Credit card

We accept card payments by Visa and MasterCard.
Customers paying by card are subject to validation checks. Payment is debited from your card upon dispatch.

Your online payment is secured through the use of payment systems from DIBS. The DIBS systems are approved by all Swedish banks and are certified in accordance with PCI DSS by VISA and MasterCard to handle payment transactions of the highest security class. All communication between the shop and your bank is handled by DIBS and encrypted via SSL (Secure Sockets Layer). Bric-a-brac will not have access to your card information and can not store information about it.
DIBS also supports 3D secure to identify the card holder thereby reducing the risk of abuse of your card information. If your card is connected to 3D secure you will be re-directed to your bank for verification before the transaction is completed

Klarna invoice

In Sweden it is also possible to pay using the Klarnas invoice service. A standard credit check is performed when choosing invoice as a payment method. To view Klarnas payment terms please click here. Note that the entered address needs to be your registered residence.

All prices on the website are shown including tax. In the bag you can see the total price including all fees, taxes, shipping and method of payment.


We do not guarantee that all the items available at the Bric-a-brac web shop are in stock at the time of your order. In the case of incorrect stock balance affecting your order, we will contact you shortly by e-mail. Part of the services mediated through the site are performed and concerned for by outside organizations. In situations where Bric-a-brac act as agent for such services, we cannot be held responsible for any errors resulting from their activities.