Maintaining your trust for Favro AB and our affiliates (“Favro”, “we”, “us”, “our”) is our top priority. This document, the Favro Privacy Policy for Favro, explains how we process your personal information when you for example visit our homepage, use our software services or ask us for help through support requests. Personal information is information that can be traced back directly or indirectly to and identifies you as an individual such as, e.g. your name, address, email, physical location, or phone number (“Personal Information”).

We may change this Privacy Policy from time to time and we reserve the right to do so. Any changes we may make to our Privacy Policy in the future will be posted on our website so please revisit it periodically. 

If you have any concern about providing information to us or having such information used in any manner permitted in this Privacy Policy, you should not provide us with any Personal Information and you should not visit our website, or use our services.


Favro AB is the data controller of the information monitored, collected, used, stored or otherwise processed in accordance with this Privacy Policy. Please note that this Privacy Policy only concerns the processing of Personal Information for which Favro is the data controller, i.e. where we have decided the means and purposes of the processing of Personal Information.

For the avoidance of doubt, this Privacy Policy does not concern any processing of Personal Information that we may conduct as a data processor as a result of your and your organization’s use of our services. This includes, but is not limited to, Personal Information that you and/or other members of your organization provide when using Favro’s project planning services.

For more information about how Favro's services may be used to facilitate your processing of personal data, and Favro’s responsibility and undertakings in relation thereto, please refer to our Terms of Service.


We may collect both Personal Information (as defined above) and Non-Personal Information (that is information, which is not Personal).

If we have collected information, which consists of both Personal and Non-Personal (“Combined Information”), we will treat the Combined Information as Personal Information.

We will handle your Personal Information in order to comply with the contractual obligations we have under the agreement with you. We may also rely on our legitimate interest to handle your Personal Information (e.g. when necessary for internal administrative purposes, service improvement or to maintain a high level of security) or as required by law. See further below in section 4.

Personal Information will be requested when you engage in the following activities:

• When you subscribe to Favro

When you subscribe to Favro we will collect personal information about you, e.g. your name, title, email and physical location, and we will also have our payment services subcontractor collect your credit card information.

• When you visit our homepage

We gather information from your browser when you access our homepage in order to measure number of visitors and from where you are accessing the homepage, including your IP address. You can read more about cookies later in this document.

• When you request our help

Personal information may be stored in our internal systems when a request is sent to support and/or requests are sent for training and demos. The information provided during such communication would be name and email address; however additional information could be requested depending on the type of support needed.

• When you send us data to troubleshoot an issue

Sometimes a request to our support results in that we may ask you for a crash dump, a copy of your database or other information that might be sensitive for various reasons and that may include Personal Information. This information may also be submitted to us through a dialog that appears if you encounter a crash. This information will solely be used for troubleshooting and we will delete the information after we are done with the troubleshooting.

• Other Submissions

If you participate in a survey, contest, promotion, events, communicate with us via social media, post a comment to one of our blog posts or otherwise communicate with us where Personal Information is included we may collect this. This could be for example Personal Information you include if you post something to our Twitter account about an issue you are experiencing. Note that if this information is not posted in a secure area, it may be visible to the public.


The main purpose of processing your Personal Information is to provide you with information, products, and/or services that you request from us or to carry out our obligations arising from any agreements entered into between us.

• We use the Personal Information to communicate with you through email and other means available including telephone. Examples of these messages include: (1) trial period messages – when you are on a trial period we will follow up on what you think about our services; (2) service messages – these will cover service availability, security, updates, and other matters relating to your use of our services; (3) promotional messages – these include for example meeting requests, news and other information we believe may be of interest to you; (4) messages regarding payment for services and renewal of agreement. This processing is necessary for the performance of the agreement we have with you, as well as to serve our legitimate interest. You can at any time opt out of promotional and other messages you receive from us, by replying to the person who sent you the message.

• We may monitor, use and store the Personal Information you provide to us to improve and develop our products and services and improve your user experience, for customizing content of messages, our website and other means of communicating with you. This processing is necessary to serve our legitimate interest.

• Customer specific Personal Information is occasionally given to us to resolve and troubleshoot issues customers may be experiencing. If such data is provided, you grant Favro the right to access such data for the purpose of identifying and resolve the issue within your organization. Upon request, we can provide a confidentiality agreement as well as providing safe methods to transfer data. This processing is necessary for the performance of the agreement we have with you, as well as to serve our legitimate interest.

• We may also use Personal Information for preventing misuse of the software, and to keep our service secure and to prevent abuse or fraud. This processing is necessary to serve our legitimate interest.

We do not rent, share or sell Personal Information about you to a third party without your prior consent, unless it is reasonably necessary in order to: (1) comply with a legal requirement or process, including, but not limited to, civil and criminal subpoenas, court orders or other disclosures in accordance with mandatory law; (2) enforce this Privacy Policy or any agreement you and Favro have entered into; (3) respond to claims of a violation of the rights of third parties; (4) respond to customer service inquiries; (5) protect the rights, property, or safety of Favro, our customers, or the public; (6) facilitate the merger or sale of any of our business or assets, in which case we may disclose your Personal Information to the prospective buyer of such business or asset; (7) work with trusted partners, agents and service providers who work on behalf of or with Favro under confidentiality and data processing agreements (see 4.2 and 4.4 below). 

We may share aggregated and non-personally identifiable information with our partners or others for business or research purposes.

Favro, in our capacity as the data controller, will at all times remain responsible for your Personal Information being processed in accordance with this Privacy Policy and any other agreement in place between you and us from time to time.

We collaborate with third parties, agents and service providers to be able to offer our services and fulfil our obligations to our customers. For example, we may share billing information with our service providers for the purposes of processing invoices, or share data with a security consultant to help us get better at preventing unauthorized access, or with an email vendor to send messages on our behalf. We may also share data with hosting providers, payment processors, marketing vendors, and other consultants who work on our behalf and under contractual promises of confidentiality. 


If you sign in or sign up to Favro with Google or GitHub we will use your email address to verify your identity and your name and profile picture so that users know who they are collaborating with.

If you integrate Favro with Google calendar you will thereby grant us permission to manage your Google calendars and share data with Google. We will use this information to create calendar events from cards in Favro.

When you integrate Favro with Google Drive you will thereby grant us permission to view the files in your Google drive. We will use this information so that you can attach Google drive files to cards in Favro.

If your organization has chosen to integrate Favro as a third-party app in Atlassian’s Jira, we will retrieve email addresses and display names from Jira and match them to users in Favro that have the same email address. If an email address received from Jira does not have a match within the Favro system, the email address and display name will be stored within the Favro system so that such users can easily be invited to Favro. Please see Atlassian’s privacy notice for more information about how personal data is processed by Atlassian.

Kindly note that it is your organization who is the controller for the processing of personal data that ensues from the integration of Favro as a third-party app in Atlassian’s Jira. Favro is a processor to your organization in this regard. Therefore, please see your own organization’s privacy notice for more details regarding the processing of personal data in connection with the use of Favro.

The information we collect from you may be transferred to, and stored at, various locations depending on where our company’s systems are hosted. The data may be processed by employees who work for us or by our suppliers who may be situated in a country outside of EU/EES. If there is no decision from the European Commission that the country which the personal data will be transferred to provides adequate data protection legislation to ensure the safety of the personal data, we will use relevant safeguards to ensure the safety of the personal data (such as the new standard contractual clauses under Implementing Decision (EU) 2021/914 of 4 June 2021). If you want to know more about the safeguard we use, please contact us for more information. You will find our contact information in section 6, below.

We will take all steps reasonably necessary to ensure that your Personal Information is treated securely and in accordance with applicable privacy laws and this Privacy Policy.

We maintain information about you for as long as we provide services to you, and as long it is required for us to perform any related business activities. After your information is no longer necessary for our business purposes, we will destroy the information unless we have agreed with you that we should keep the information, or a court or administrative order is made to preserve the information, or if it is otherwise stipulated by law.

We will take all reasonable technical and organization actions to protect your personal data from loss, misuse, and unauthorized access or disclosure. If a security breach should occur, which relates to your Personal Information, we will inform you of this as soon as practicable.


We do not respond to Do Not Track requests.


A cookie is a small text file that a website asks to place on your computer, mobile phone, or other device when you visit a website. A cookie can help the website provider to recognize your device, either for the duration of your visit (using a “session cookie”) or for repeat visits (using a “persistent cookie”), provide you with access to certain functions on the website and/or register your surf patterns. There are other technologies such as pixel tags, web bugs, web storage and other similar files and technologies that can do the same thing as cookies. The term “cookies” in this Privacy Policy refers to cookies and all such similar technologies.

There are two main kinds of cookies: session cookies and persistent cookies. Session cookies are deleted from your computer when you close your browser, whereas persistent cookies remain stored on your computer until deleted, or until they reach their expiry date.

Favro uses the following cookies on this website, for the following purposes:

• Essential operational cookies: These cookies are necessary for Favro to operate the service you have requested. For example, they allow Favro to recognize you and then provide you with the service accordingly. These cookies are both persistent and session cookies.

• Analytics cookies: Favro use these cookies to analyze how the service is accessed, used or is performing. Favro use this information to maintain, operate and continually improve our service and to target our marketing of our services. These cookies are both persistent and session cookies.

• Functional cookies: Favro use these cookies to operate certain functions of the service in line with the choices you make. These cookies mean that when you continue to use or come back to the service, it is provided as you have previously requested, e.g. remembering your username and how you have customised the service. These cookies are both persistent and session cookies.

Favro uses Google Analytics to analyze the use of this website. Google Analytics generates statistical and other information about website use by means of cookies, which are stored on users’ computers. The information generated relating to our website is used to create reports about the use of the website. Google will store and use this information. Use the following link to review their privacy policies and cookie opt-out procedures:


Favro also uses cookies in our email communications to personalize the email and track whether the email has been opened or read and whether the recipient has used any website links contained in the email communication. This allows us to monitor and improve our email communications and website.

Most web browsers allow you to manage your cookie preferences and can be set to refuse cookies, or delete certain cookies. Generally you should also be able manage similar technologies by using your browser’s preferences. For example, in Internet Explorer, you can refuse all cookies by clicking “Tools”, “Internet Options”, “Privacy”, and selecting “Block all cookies” using the sliding selector. In Firefox, you can adjust your cookies settings by clicking “Tools”, “Options” and “Privacy”.

Please note that if you choose to block cookies, this may impair or prevent the functionality of the service.

If you don’t consent to our use of cookies you should either set your browser to refuse or delete cookies, or stop using our website.

If you have any questions or comments about Favro’s use of cookies, or if you would like to receive more specific information on what cookies we and our partners use and for what purpose, please contact privacy@favro.com.


You have the right to access your Personal Information processed by Favro and may request a copy. If you have any questions regarding the Privacy Policy or the information we process, or any complaints regarding the way we are handling your data, please contact us at privacy@favro.com or write to us at Favro AB, Drottninggatan 2, SE-753 10 Uppsala, Sweden. We will provide you with information about the Personal Information we control and process about you free of charge once per calendar year (provided that you have asked for the information in a written request signed by you or that you have otherwise given proof of identity).

We will on our own initiative, or upon the request of you, rectify, delete, or complete any Personal Information in the register which we find is incorrect, unnecessary, inadequate, or outdated. You have the right to have incorrect details revised under certain circumstances. Please send such requests to privacy@favro.com specifying what you would like to modify.

We will respond and/or implement your preferences within 30 days of receiving your request. In order to provide any Personal Information to you, we will verify your identity and authenticate your access right before doing so.

You can also object to certain Personal Information about you being processed and request that processing of your Personal Information be limited. Please note that the limitation or deletion of your Personal Information may mean we will be unable to provide you with our Services. You also have the right to receive your Personal Information in a machine-readable format and have the data transferred to another party responsible for data processing.

FAVRO is committed to handle any request, complaint or concern that you may have about our use of your personal information in a fair and transparent way. If, however, you believe that we have not been able to assist with your complaint or concern, you may have the right to file a complaint with the data protection authority in your country (if one exists in your country) or supervisory authority.

Our site and services may contain links to and from the websites of third parties such as our partner network. If you follow the link to any of these websites, please note that these websites may have their own privacy policies and we do not accept any responsibility or liability for the websites or these policies.

Did this answer your question?