1. Collection of Information

We collect, process, and use personal information about you when you:

• Register for our services
• Interact with our services, including through our website and applications
• Connect to our services via third-party platforms, such as social media accounts, email accounts, or business partners
• Contact our support team for assistance

We collect certain information when you engage with our services online, and we may also automatically gather data through technologies such as cookies, location tracking, and other analytics tools. Additionally, third parties may share information with us, including merchants or business partners with whom you interact.

2. Types of Information We May Collect

The personal information we may collect includes, but is not limited to:

• Personal Identifiers: Name, postal address, email address, telephone number, and tax details (for contest winners or promotions)
• Device and Online Identifiers: IP address, device IDs, browser data, system configuration (e.g., operating system), mobile device details (carrier, installed apps), and session information
• Payment and Transaction Information: Payment account details, billing address, and transaction records
• Demographic Information: Gender, age, household income, marital status, or other classification characteristics provided in surveys
• Commercial Information: Details about products, merchants, services you’ve viewed, purchased, or interacted with, including search history and items added to your cart
• Internet and Network Activity: Browsing history, search activities, and interactions with our website and services
• Sensory Information: Audio recordings of phone calls, where applicable and permitted by law
• Account Information: Login credentials (username, password)
• Inferences: Data used to infer preferences, behaviors, or interests based on your activity

In some jurisdictions, certain data we collect may be classified as "sensitive personal data," such as:

• Sensitive Demographic Information: Gender, age, income, marital status (only if provided voluntarily)
• Precise Geolocation Data: If you have enabled location sharing on your device

Please note, we do not sell or share sensitive personal data, nor do we use it for targeted advertising as defined under applicable laws (such as those in the U.S.).

3. Use of the Information We Collect

We use the information we collect for the following purposes:

• Providing Services: To process your registration, manage your account, and send technical notices, updates, and security alerts
• Personalization: To customize content, offers, and recommendations based on your preferences and interactions with our services
• Marketing Communications: To send you promotional offers, newsletters, rewards, discounts, and other marketing information (with your consent, where applicable)
• Service Improvement: To analyze usage trends, improve our services, and optimize user experience
• Fraud Prevention and Security: To detect and mitigate fraud, spam, and malicious activities, and to improve our security measures
• Legal Compliance: To fulfill legal obligations, comply with regulations, and respond to law enforcement or governmental requests

4. Your Privacy Rights Under the GDPR

As a user in the European Union, you have the following rights regarding your personal data:

• Right of Access: You can request access to the personal information we hold about you and obtain a copy of it.
• Right to Rectification: You have the right to correct inaccurate or incomplete personal information we maintain.
• Right to Erasure: You can request that we delete your personal data, subject to certain legal exceptions.
• Right to Restrict Processing: You can request that we restrict the processing of your personal information in specific circumstances.
• Right to Object: You have the right to object to processing based on legitimate interests or for direct marketing purposes.
• Right to Data Portability: You can request a copy of your personal information in a structured, commonly used format, and request to transfer it to another data controller.
• Right to Withdraw Consent: If you have given consent for certain data processing activities, you can withdraw that consent at any time.

5. How to Exercise Your Rights

To exercise any of your privacy rights, you can contact us at compliance@mimecode.com. We will respond to your request in accordance with the GDPR, usually within 30 days.

Please note that we may need to verify your identity before processing your request, and in some cases, we may need to retain certain information for legal or business purposes.

6. Data Security

We take the security of your personal data seriously and have implemented appropriate technical and organizational measures to protect it from unauthorized access, disclosure, alteration, or destruction. These measures are regularly reviewed and updated to ensure the ongoing security of your data.

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Once the data is no longer necessary, we will delete or anonymize it in accordance with our data retention policy.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you by updating the "Effective Date" at the top of this policy, or by sending you a direct notice. We encourage you to review this policy periodically to stay informed about how we protect your data.

9. Contact Us

If you have any questions or concerns about this Privacy Policy, or if you wish to exercise your data protection rights, please contact us at:

MimeCode Data Protection Team
Email: compliance@mimecode.com