Midagon is committed to processing all personal data with precision and in accordance with appliable data protection legislation. In this document you will find a full description of our policies with respect to processing of personal data related to our customers, prospective customers and users of our website. We invite you to read it carefully.
Please note that Midagon’s website www.midagon.com may include links to other websites. Midagon does not take responsibility for any external services nor is this policy applicable to them.
- 1. Which company is the data controller?
- 2. What personal data does Midagon process?
- 3. Where is personal data obtained from?
- 4. For what purposes is personal data used and what is legal basis for processing?
- 5. How long is personal data stored?
- 6. How is personal data shared or disclosed to third parties?
- 7. What are cookies and how are they used?
- 8. How is personal data protected?
- 9. What rights do users have?
1. Which company is the data controller?
Business ID: 2058234-3
Address: Keilaranta 1, 02150 Espoo
Phone number: +358 45 126 9600
2. What personal data does Midagon process?
Midagon processes two types of personal data:
Directly identifiable personal data: Full name, email, phone number, position, employer, industry, areas of responsibility, newsletter clicks and opens, orders, contracts, billing information, feedback and marketing preferences.
Automatically collected pseudonymous data: Browsing data (time, duration, clicks, visit source, search terms, pages viewed) and technical data (device type, browser, IP-address, geographical location, operator & operating system). Collected through cookies, please find more information below in chapter 7.
3. Where is personal data obtained from?
4. For what purposes is personal data used and what is legal basis for processing?
We process personal data for following purposes and on following legal basis:
Contract. We process your personal data in order to fulfil the contract of a service ordered from Midagon (includes orders, billing, customer feedback and other service-related communication). Unless you provide certain personal data, such as your contact details, we are unable to enter into contract with you or with the organization you represent.
Consent. In case you register to our event or give permission to email marketing, we process your personal data on the basis of your consent. You may withdraw your consent at any time. However, in the event you withdraw your consent, you might not be able to take part in the event we organize.
Legitimate interest. We strive to offer our services to professionals who are likely to be interested in our services based on their position or responsibilities in the organization they represent. For this purpose, we may collect personal data of relevant prospects based on our legitimate interest and process such data for marketing purposes. You may object marketing at any time. We also use personal data to develop our business operations on the basis of legitimate interest. Given the nature of data, the purposes of use and the information and choices available to you, we have assessed that our interests are not overridden by your interests and fundamental rights and freedoms.
Legal obligation. Midagon may be obliged to store certain personal data in order to fulfill our accounting obligations or other legal obligations stemming from applicable legislation.
We do not process personal data to make automated decisions which produce legal effects or would otherwise significantly affect you.
5. How long is personal data stored?
We will only retain your personal data in identifiable form as long as is necessary to fulfil the abovementioned purposes or as long as we have a statutory legal obligation to keep your personal data, after which it will be deleted or anonymised.
We retain the personal data of our customers’ contact persons for at least the time they are current, and the customer relationship exists. After the customer relationship ends, we retain personal data for approximately 48 months. After that, we may retain your personal data for direct marketing purposes for as long as you hold a relevant position or until you have objected to it. We retain invoicing and payment information for 7 years after the relevant transaction.
You may request your personal data be deleted in accordance with chapter 9.
8. How is personal data protected?
Personal data is protected carefully with due organizational and technical security measures. Databases are protected with firewalls, passwords and other applicable measures. Backups, contracts and other physical documents are stored in locked facilities with strictly limited access. Midagon makes sure that access to personal data is strictly limited to personnel, whose tasks cannot be fulfilled without this. Access to Midagon’s office is restricted and supervised with clearances. In the case of third parties’ access, data security and appropriate processing is guaranteed with applicable contracts.
9. What rights do users have?
Opt-out of and withdrawal of consent to direct marketing. You can opt-out of or withdraw consent to direct marketing at any time by contacting us or by using the automatic opt-out link in Midagon’s marketing emails.
Access and correction of personal data. You are entitled to accessing and correcting your personal data. Upon your request, Midagon commits to deleting or correcting any outdated or incorrect data.
Deletion of personal data. You can request their personal data to be deleted at any time by contacting us.
Objection and restriction of processing. You have the right to object to processing we carry out on the basis of legitimate interest on grounds relating to your particular situation, unless we have compelling legitimate interests for the processing which override those interests. You also have the right to request the restriction of the processing of your personal data, for example, in case you object to processing or contest the accuracy of your personal data.
Data portability. You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller when we process your data automatically based on a contract or your consent.
Accepting or declining cookies. You can accept or decline non-essential cookies when entering our website. You can withdraw your consent at any time by clicking “cookie settings” on the footer of our website.
Blocking and deleting cookies. You can block or delete cookies by using your browser’s settings. Blocking cookies can hinder functionalities of our website
Google Analytics opt-out. To prevent your data from being used by Google Analytics you can install the browser plug-in from Google which is available here.
To use your rights described above, please send your request to the address show on chapter 1. Please note that we ask you to verify your identity when using your rights.
Midagon continuously develops its services and may update this policy when necessary. Changes can also be made when applicable legislation is changed. We recommend you revisit this policy from time to time to notice any such changes.