1. WHAT DOES THIS POLICY COVER?
This Policy covers Minderful’s treatment of personal data that Minderful gathers when you access the Services and the Content therein. This Policy does not apply to the practices of other websites or companies that Minderful does not own or control, or to individuals that Minderful does not employ or manage.
We receive and store the information you enter on the Services or give to us in any other way in accordance with this Policy. This includes information that can identify you ("personal data"). The information we gather (including your personal data) enables us to personalise, deliver and improve our Services. We retain personal information no longer than is legally permissible, and delete personal information when it is no longer necessary for the purposes set out in this Policy.
Minderful offers accounts for individual members ("Individuals"). This Policy applies equally to all users, unless otherwise stated.
3. WHAT PERSONAL DATA DOES MINDERFUL COLLECT?
We collect the following types of information from our users:
a. Personal data you provide to us
We receive and store any information you enter on the Services or provide to us in any other way. The types of personal data collected include your display name, your email address, IP address and browser information, and any other information necessary for us to provide the Services.
If you contact us, we may keep a record of that correspondence.
You can choose not to provide us with certain information, but then you may not be able to take advantage of many of our features (see section 8 below for further information on the choices you have).
b. Personal data collected automatically
We receive and store certain types of information automatically whenever you interact with our Services or use a feature of our Content.
Our Services automatically collect usage information, such as the numbers and frequency of users of our Services. We only use this data in general and aggregate form, that is, as a statistical measure (e.g. aggregated anonymous information about app usage), and not in a manner that would identify you personally. This type of aggregate data enables us to figure out how often customers use parts of the Services or another feature of the Content so that we can make the Services appealing to as many customers as possible, and improve the Content.
As part of this use of information, we may provide anonymised, aggregate information to third parties about how our customers, collectively, use our Content. We share this type of statistical data so that our partners also understand how often people use our Content. Minderful never discloses aggregate information to a third party in a manner that would identify you personally. Aggregated data will not be linked to any of your personal data without your express consent.
We often receive a confirmation when you open an email from Minderful if your computer supports this type of program. Minderful uses this confirmation to help us make emails more interesting and helpful for you.
c. Marketing and Analytics Partners
More information on the partners we use, including how to opt-out from any tracking or personalisation can be found as follows:
Facebook – https://www.facebook.com/about/ads
4. WHAT WILL YOU DO WITH THE DATA I SHARE WITH YOU?
We use the information and personal data we collect from you to deliver the Services to you, and to:
We neither license nor sell your personal data to anyone. This includes entities that pay for licences for Minderful user accounts. We share your personal data only as described in this Policy.
a. Your data: who can see what?
(i) Minderful team
We will not have access to any Individual user's psychological profile or activity log. These details are private to you. We will, however, be able to access and use:
(ii) Individual users
You do not have a public profile on Minderful that is visible to the public.
You will be able to see your own usage history, and some analysis of your habits and behavioural trends. We do not share the results of your psychometric tests with other Individual users.
b. Sharing data with third parties
In addition section (a) above, we may share aggregated, anonymised information about our Services with third parties in order to promote and develop our Services. This information will not identify individual users in any way.
c. Communications about the Services
When you register an account with us, Minderful may use your personal data to provide you with certain communications, such as service announcements and administrative messages. These communications are considered part of the Services and your Minderful account and you cannot opt out of these emails. Please note that if you do not wish to receive any such communications, you should not register for an account or for our Services.
d. Business Transfers
In some cases, we may choose to buy or sell assets. In these types of transactions, customer information is typically one of the business assets that are transferred. Moreover, if Minderful or substantially all of its assets were acquired (such as through a merger or acquisition), or in the unlikely event that Minderful goes out of business or enters bankruptcy or is dissolved or otherwise reorganised, customer information would be one of the assets that is transferred to or acquired by a third party. You acknowledge that such transfers or similar transactions or proceedings may occur, and that any acquirer of Minderful may continue to use your personal data as set forth in this Policy.
e. Protection of Minderful and Others and a transfer in the ownership of Minderful
We may release personal data when we believe in good faith that release is necessary to comply with the law, regulation or legal request; enforce or apply our conditions of use and other agreements; or protect the rights, property, or safety of Minderful, our employees, our users, or others. This includes exchanging information with other companies and organisations for fraud protection and credit risk reduction.
We may share some or all of your Personal data with any of our parent companies, subsidiaries, joint ventures, or other companies under common control with us.
5. DATA STORAGE AND SECURITY
Any and all information you provide to us is hosted and stored on a cloud server within the United Kingdom and, consequently, the European Economic Area. If you are not satisfied with the levels of security offered by our cloud provider, you should restrict the nature and amount of personal data or confidential information which you include in your log data or not use the Services.
The personal data in the Minderful account you have with us is protected by a password for your privacy and security. You need to ensure that there is no unauthorised access to your account and personal data by keeping your password confidential, limiting access to your mobile, tablet or computer, and browser by signing off after you have finished accessing your account. You are responsible for safeguarding the password that you use to access the Services and for any activities or actions under your password. Minderful encourages you to use “strong” passwords (passwords that use a combination of upper and lower case letters, numbers and symbols) with your account. Minderful cannot and will not be liable for any loss or damage arising from your failure to comply with the above requirements. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our Services, you are responsible for keeping this password confidential. You must not share your password with anyone.
Unfortunately, the transmission of information via the Internet is not completely secure. Minderful endeavours to protect personal data but Minderful cannot guarantee the security of your data transmitted to our Services. Unauthorised entry or use, hardware or software failure, and other factors, may compromise the security of user information at any time. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our platform; any transmission of data is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
We will take care to maintain appropriate safeguards to ensure the security, integrity and privacy of the information you have provided us with. We encrypt the information we hold to protect it from unauthorised use and all our APIs are served over HTTPS to ensure all communications are encrypted. In addition, we will take reasonable steps to ensure that third party business partners to whom we transfer any aggregated, non-personal data will provide sufficient protection of that personal data.
6. YOUR RIGHT TO ACCESS YOUR PERSONAL DATA
The Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act.
You may at any time request correction or deletion of your personal data, and object to any processing of your personal data by emailing us at firstname.lastname@example.org. We will respond to your access and/or correction request within four (4) weeks.
7. WHAT CHOICES DO I HAVE?
As set out above, you can always opt not to disclose information, even though it may be needed to take advantage of the Services or other features of the Content.
You are able to add or update certain information on pages on our app, although we often maintain a copy of the unrevised information in our records.
You may request deletion of your account by emailing us at email@example.com. Please note that we may retain your personal data as needed to comply with our legal and regulatory obligations, resolve disputes, investigate or prevent fraud and other inappropriate activity, or otherwise in accordance with this Policy
8. DATA RETENTION
We will retain your personal data for as long as is necessary for our operations. Your personal data will be visible on our app for the duration of your active membership, and we may have access to it for up to 12 months thereafter (in accordance with this Policy), after which point any information associated with your profile which remains within our reasonable control will be anonymised, pseudonymised or deleted.
We do not knowingly market or provide our Services to children. The Services are not designed for use by persons under 18 years old. Children under 18 are not allowed to register with or use the Services, or submit personal data through the Services. We do not knowingly collect personal data from anyone under the age of 18. If we discover that we have collected personal information from a child under 18, we will delete that information as soon as reasonably possible. If you believe that we might have any information from a person under age 18, please contact us at firstname.lastname@example.org.
10. CHANGES TO THIS POLICY
We may amend this Policy from time to time. Use of information we collect now is subject to the Policy in effect at the time such information is used. If we make changes in the way we use personal data, we will notify you by posting an announcement on our Services or sending you an email. If the changes are significant or the way that we use your personal data changes, we may provide a more prominent notice or get your consent as required by law.
11. QUESTIONS OR CONCERNS
If you have any queries or concerns regarding privacy on our Services or the Content, please contact us at email@example.com. We will make every effort to resolve your queries or concerns. If your queries or concerns that are not answered online, you may write to us at Doolally Holdings Limited, 195 Wandsworth Bridge Road, London, SW6 2TT, UK.
Effective Date: 03.11.2021
Last Reviewed: 03.11.2021