For the purpose of the general data protection regulation and the data protection act 1998, the data controller is Miindset Ltd, a company registered in England and Wales under company number 12422556. Our registered office is 20-22 Wenlock Road, London, N1 7GU.
At Miindset, we use appropriate administrative, physical and technical safeguards to protect your personal information from loss or theft, unauthorised access, use or disclose, or modification or destruction. We train our personnel to protect your privacy and require them to comply with our policies and procedures that protect your personal information. We use computing systems in secure facilities to store your personal information in an encrypted form. All of the data you provide to us is securely encrypted using an SSL certificate for the protection of your data. You may at any time, email us at firstname.lastname@example.org to enquire about any of the information we hold.
We require your email address to send an automated registration email out to you. We may collect a CSV file from your organisation in order for us to send out your registration email. If you choose not to click ‘Register’, your email address will be automatically deleted from our systems after 21 days of our ‘reminder to register’ emails being sent out. If you click register, we collect your personal information that you provide by filling in the registration form or information on our app (including when you register as a user and when you update your user settings). If you contact us, we may keep a record of that correspondence. At registration, we collect a username and one email address (an organisation email for registration purposes).
When you choose a username, we ask that you choose one that is not related in any way to your real name so that you remain anonymous.
As your organisation becomes a member of Miindset, you will receive a registration email to your organisation email address. If you opt-in, Miindset will use your email to send you recommended weekly updates of the services we think will suit you. To stop receiving these weekly information emails, you can go to your ‘Account’ tab and opt-out.
We need to ensure that only clients of Miindset are allowed to access the service, personal information helps us to identify who you are within the system and verify that it’s you.
All personal information you provide to us is stored and processed on our secure servers location in the UK and the European Economic Area (EEA).
We will only disclose your personal information to third parties: If we are required to do so by law or to comply with any legal obligation; in order to enforce or apply our terms and other agreements; or To protect the rights, property, or safety of Miindset Ltd, or others. This includes exchanging information with other companies and organisations such as the police, regulatory bodies or legal advisers for the purposes of security, risk reduction and fraud protection. For example, we may disclose your personal information to the police in connection with any alleged criminal offence. We may disclose your personal information to third parties: if Miindset Ltd or substantially all of its assets are acquired by a third party, in which case personal information held by it about its customers will be one of the transferred assets. Should the assets of the company be sold, personal data shall not be transferred to a country or territory outside the European Economic Area unless that country or territory ensures an adequate level of protection for the rights and freedoms of data subjects in relation to the processing of personal data.
Our webservers automatically collect information about your visit to the site including, but not limited to, traffic data, location data and other communication data. Although we do not ordinarily set out to identify you from your Internet Protocol (IP) address, we treat IP addresses as personal information. We may use data that our webservers automatically collect about your use of the app, including IP addresses, to: investigate any suspected breaches of, and enforce terms, e.g., to help Us determine if a user has registered more than once, or to investigate usage of the app that may be inappropriate; and to obtain compensation from you or take other action including legal action as set out in the Terms and Conditions. We use information automatically captured by our web servers that is not personal information to see how the app is being used and customise it for your benefit.
To simplify the sign-up process for all UNidays members, we have implemented a UNiDAYS OAuth tool to aid in this process. Our app contains links to and from other websites. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please be aware that the app may link to other websites that may be accessed by you through the app. We are not responsible for the data policies, content or security of these linked web sites. Please check any policies on such websites before you submit any personal data to them.
If you have any complaint about the way in which we collect, store and use your information and these have not been addressed by contacting us first, you can contact the supervisory authority in the United Kingdom, the Information Commissioner’s Office: https://ico.org.uk/concerns/.