Mi-Fusion Limited (“we”, “us”, “our” or “Mi-Fusion”) is committed to protecting the privacy of our Mi-Fusion platform users and complying with applicable data protection laws, including General Data Protection Regulation (GDPR) for individuals within the European Union.
Mi-Fusion offers the Use of the Mi-Fusion Platform available via Mi-Fusion hosted service, online (collectively, the “Service”), and websites including but not limited to www.mi-fusion.com (the “Websites”). As you use the Service and interact with the Websites, Mi-Fusion collects and processes information from and about you in order to provide you with access to the Service, enhance your experience while using the Service, and interact with you. This Privacy Policy (the “Policy”) describes how Mi-Fusion collects, uses, and discloses information collected through the Service and Websites, and what choices you have with respect to such information.
If you do not agree with this Policy, do not access or use the Service via Mi-Fusion’s cloud, Websites, or any other part of Mi-Fusion’s business.
If you are using your own hosted cloud or on premises environment, we do not host, store, transmit, receive or collect information about you (including your content), except in limited cases, where permitted by your administrator. Please note that if you have signed up for the remote monitoring service, we will be able to collect performance metrics in order to detect any issues with the service.
We may also collect other content that you submit to our Services. For example: feedback, comments and blog posts, or when you participate in any interactive features, surveys, contests, promotions, sweepstakes, activities or events.
If you have any questions about this Privacy Policy, please contact us at: 410 Triq Ix-Xatt Ta’ Santa Marija, Mellieha, MLH 2777, Malta and email: data-protection@my-fusion.com
This Privacy Policy contains the following sections:
Mi-Fusion has three different types of users depending on the Mi-Fusion products used. Depending on user type, certain privacy terms apply. It is possible that you may use Mi-Fusion products in different ways. If so, please review all applicable privacy terms. Also, don’t forget to review the privacy terms applicable to all users.
Overview
If you are a Subscriber, the “Customer Agreement” governs the collection and processing of information collected from you through the Customer’s instance of the Service (e.g. a Customer\u0027s organization, the \”Instance\”), including all associated messages, attachments, files, tasks, processes, chat channels, conversations, and other content submitted through the Service “Content”). In the event of a conflict between this Privacy Policy and the Customer Agreement, the Customer Agreement governs. Because the Customer controls the Instance used by Subscribers, if you have any questions about the Customer’s specific Instance settings and privacy practices, please contact the Customer whose Instance you use. If you are a Subscriber located in the European Union, please note that the Customer is the data controller with respect to the processing of your Instance Content pursuant to the EU General Data Protection Regulation (“GDPR”). When processing Instance Content of EU data subjects governed by the Customer Agreement, Mi-Fusion is the data processor, meaning that we collect and process such information solely on behalf of the Customer.
Collection and Use of Subscriber Information
This section explains the information we collect from Subscribers. We do not require Subscribers to provide us with information. However, certain information, such as account log-in data, is required to provide you with access to the Service, and other information may be collected automatically as you use the Service.
Content: Content is collected, used, and shared by Mi-Fusion in accordance with the Customer’s instructions, including any applicable terms in the Customer Agreement, or as required by applicable law. The Customer, and not Mi-Fusion, determines its own, internal policies regarding storage, access, modification, deletion, sharing, and retention of Content which may apply to your use of the Service. For example, a Customer may provide or remove access to the Service, enable or disable third party integrations, manage permissions, retention and export settings, transfer or assign teams, or share projects. Please check with the Customer about the policies and settings that they have instituted with respect to the Instance Content that you provide when using the Service.
Global Account Information: To set up your Mi-Fusion account, you or the Customer will provide us with basic information about you which will include your name, email address and language. And may optionally include your address, telephone number, birthday and password. You also have the ability to provide optional profile information, such as a photograph, gender, education, work experience or other demographic data. With your permission, we may also upload calendar information stored on your mobile device to your account. If you submit payment information in connection with your use of the Service, we utilize a third party credit card payment processing company to collect payment information, including your credit card number, billing address, and phone number. In such circumstances, the third party service provider, and not Mi-Fusion, stores your payment information on our behalf.
Service Usage Information: As you use the Service, we collect information about how you use and interact with the Service (“Service Usage Information”). Such information includes:
How Does Mi-Fusion Use Subscriber Information?
This section explains how Mi-Fusion uses information collected from Subscribers.
Content: Mi-Fusion may view and use Content collected from and about Subscribers only as necessary:
Account Information, Service Usage Information, Information from Third Party Integrations, and Other Information: Mi-Fusion may use these categories of information collected from and about Subscribers to:
Sharing of Subscriber Information
In accordance with the applicable Customer Agreement, we may share the information we collect from Subscribers as follows:
Aggregate De-Identified Data
We may aggregate and/or de-identify information collected through the Service so that such information can no longer be linked to you or your device (“Aggregate/De-Identified Information”). We may use Aggregate/De-Identified Information for any purpose, including without limitation for research and analytics, and may also share such data with any third parties, including partners, affiliates, services providers, and others.
Combined Information
We may combine the information that we collect through the Service with information that we receive from other sources, both online and offline, and use such combined information in accordance with this Policy and the Customer Agreement.
Data Retention
We will retain your information for the period necessary to fulfill the purposes outlined in this Policy unless a longer retention period is required or permitted by law, or where the Customer Agreement requires or permits specific retention or deletion periods.
Data Subject Rights
Please contact your Instance owner(s) or administrator(s) to exercise any data subject rights you have under applicable local laws, including your ability to access, delete, rectify, transfer, or object under the GDPR.
Overview
This Section of the Policy applies only to Basic Users of the Service. If you are a Basic User located in the European Union, Mi-Fusion is the data controller with respect to the processing of your personal data pursuant to the GDPR.
Collection and Use of Basic User Information
This section explains how we collect, process, and use the information collected from Basic Users. We do not require Basic Users to provide us with information. However, certain information, such as account log-in data, is required to provide you with access to the Service, and other information may be collected automatically as discussed below.
Mi-Fusion collects the following information submitted directly through the Service by Basic Users:
Instance Content: The messages, attachments, files, tasks, project names, team names, channels, conversations, and other content submitted through the Service.
Account Information: Information you provide as part of your account registration with Mi-Fusion, which may include your name, organization name, address, telephone number, email address, username and password; optional information that you may choose to provide, such as a photograph or basic demographic data; and, with your permission, calendar information stored on your mobile device that you may elect to upload to your account.
Other information: Information you provide in other interactions with us, such as requests or questions you submit to us via forms or email (e.g., support forms, sales forms, user research participation forms), information you provide in connection with Mi-Fusion sweepstakes, contests, or research studies in which you choose to participate; beta testing; and requests for customer support and technical assistance.
Service Usage Information: As you use the Service, we collect information about how you use and interact with the Service. Such information includes:
How Does Mi-Fusion Use Basic User Information?
Content: Mi-Fusion may view and use Content collected from and about Basic Users only as necessary:
Account Information, Service Usage Information, Information from Third Party Integrations, and Other Information: Mi-Fusion may use the information collected from Basic Users to:
Legal Bases for Use of Your Information
If you are located in the EU, please note that the legal bases under the EU General Data Protection Regulation (“GDPR”) for using the information we collect through your use of the Service as a Basic User are as follows:
Sharing of Basic User Information
We share the information we collect through the Service about Basic Users with the following:
Aggregate De-Identified Data
We may aggregate and/or de-identify information collected through the Service so that such information can no longer be linked to you or your device (“Aggregate/De-Identified Information”). We may use Aggregate/De-Identified Information for any purpose, including without limitation for research and analytics, and may also share such data with any third parties, including partners, affiliates, services providers, and others.
Combined Information
We may combine the information that we collect through the Service with information that we receive from other sources, both online and offline, and use such combined information in accordance with this Policy.
Data Retention
We will retain your information for the period necessary to fulfill the purposes outlined in this Policy unless a longer retention period is required or permitted by law.
Data Subject Rights
Local legal requirements (such as those in the EU) may afford you additional rights. If you would like further information in relation to your legal rights under applicable law or would like to exercise any of them, please contact us at any time by emailing to data-protection@mi-fusion.com. Your local laws (such as those in the EU) may permit you to request that we:
We will consider all requests and provide our response within the time period stated by applicable law. Please note, however, that certain information may be exempt from such requests in some circumstances, which may include if we need to keep processing your information for our legitimate interests or to comply with a legal obligation. We may request you provide us with information necessary to confirm your identity before responding to your request.
Overview
This section of the Policy applies only to Site Visitors. If you visit the Websites, regardless of whether you are also a user of the Service, the following rules apply to you. To eliminate any confusion, please note that the terms in this section apply only to use of Mi-Fusion’s Websites, not to use of the Service. If you are a Site Visitor located in the European Union, Mi-Fusion is the data controller with respect to the processing of your personal data pursuant to the EU General Data Protection Regulation (“GDPR”).
Collection of Site Visitor Information
When you use the Websites, we may collect the following information about you:
Contact Information – if you submit a request for information or a question through the Websites, you may be asked to provide us with basic information including your name, email address, phone number, and postal address. We will also keep records of the communication, the question/request you raised, and how it was resolved. If you choose to participate in an Mi-Fusion sweepstakes, contest, or research study offered through the Websites, we will also collect basic contact information from you in connection with such activity.
Websites Usage Information – as you browse the Websites, we and our service providers (which are third party companies that work on our behalf to provide and enhance the Websites) use a variety of technologies, including cookies and similar tools, to assist in collecting information about how you use the Websites. For example, our servers automatically record certain information in server logs. These server logs may include information such as your web request, IP address, browser type and settings, referring / exit pages and URLs, number of clicks and how you interact with links on the Websites, domain names, landing pages, pages viewed, mobile carrier, mobile device identifiers and information about the device you are using to access the Websites, date and time stamp information and other such information.
Location Information – We collect and process general information about the location of the device from which you are accessing the Service (e.g., approximate geographic location inferred from an IP address).
Use of Information Collected from Site Visitors
We use the information collected from Site Visitors for a variety of purposes including to:
Cookies and Similar Technologies
To collect the Websites Usage Information discussed above, we and our service providers may use Internet server logs, cookies, tags, SDKs, tracking pixels, and other similar tracking technologies.
A web server log is a file where website activity is stored.
An SDK is a section of code that we embed in our applications and software to allow third parties to collect information about how users interact with the Websites.
A cookie is a small text file that is placed on your computer or mobile device when you visit a site, that enables us to:
(i) recognize your computer and login session;
(ii) store your preferences and settings;
(iii) understand which pages of the Websites you have visited;
(iv) enhance your user experience by delivering and measuring the effectiveness of content and advertising tailored to your interests;
(v) perform analytics; and
(vi) assist with security and administrative functions.
Tracking pixels (sometimes referred to as web beacons or clear GIFs) are tiny electronic tags with a unique identifier embedded in websites, online ads and/or email, and that are designed to provide usage information like ad impressions or clicks, email open rates, measure popularity of the Websites and associated advertising, and to access user cookies. As we adopt additional technologies, we may also gather information through other methods.
Please note that you can change your settings to notify you when a cookie is being set or updated, or to block cookies altogether. Please consult the “Help” section of your browser for more information (e.g., Internet Explorer; Google Chrome; Mozilla Firefox; or Apple Safari).
Legal Bases
If you are located in the EU, please note that the legal bases under the GDPR for using the information we collect through your use of the Websites as a Site Visitor are as follows:
Aggregate/De-Identified Data
We may aggregate and/or de-identify information collected through the Websites so that such information can no longer be linked to you or your device (“Aggregate/De-Identified Information”). We may use Aggregate/De-Identified Information for any purpose, including without limitation for research and marketing purposes, and may also share such data with any third parties, including advertisers, promotional partners, sponsors, event promoters, and/or others.
Combined Information
You agree that, for the purposes discussed in this Policy, we may combine the information that we collect through the Websites with information that we receive from other sources, both online and offline, and use such combined information in accordance with this Policy. If, however, the collection of any information about you is governed by a Customer Agreement, information will only be combined and used in accordance with such Customer Agreement and the sections of this Policy applicable to Subscribers.
Website Analytics and Advertising
Website Analytics
We may use third-party web analytics services on our Websites to collect and analyze usage information through cookies and similar tools; engage in auditing, research, or reporting; and provide certain features to you. To prevent Google Analytics from using your information for analytics, you may install the Google Analytics Opt-out Browser Add-on.
Online Advertising
The Websites may integrate third-party advertising technologies that allow for the delivery of relevant content and advertising on the Websites, as well as on other websites you visit. The ads may be based on various factors such as the content of the page you are visiting, information you enter such as your age and gender, your searches, demographic data, and other information we collect from you. These ads may be based on your current activity or your activity over time and across other websites and online services and may be tailored to your interests.
Third parties, whose products or services are accessible or advertised via the Websites, may also place cookies or other tracking technologies on your computer, mobile phone, or other device to collect information about you as discussed above. We also allow other third parties (e.g., ad networks and ad servers such as Google Analytics, DoubleClick and others) to serve tailored ads to you on our Websites and other websites and to access their own cookies or other tracking technologies on your computer, mobile phone, or other device you use to access the Websites. We sometimes provide Site Visitor information (such as email addresses) to service providers, who may “match” this information in de-identified form to cookies (or mobile ad identifiers) and other proprietary IDs, in order to provide you with more relevant ads when you visit other websites.
We neither have access to, nor does this Policy govern, the use of cookies or other tracking technologies that may be placed on your device you use to access the Websites by such non-affiliated third parties. If you are interested in more information about tailored browser advertising and how you can generally control cookies from being put on your computer to deliver tailored advertising, you may visit the Network Advertising Initiative’s Consumer Opt-Out link, the Digital Advertising Alliance’s Consumer Opt-Out link, or Your Online Choices to opt-out of receiving tailored advertising from companies that participate in those programs. To opt out of Google Analytics for display advertising or customize Google display network ads, visit the Google Ads Settings page. We do not control these opt-out links or whether any particular company chooses to participate in these opt-out programs. We are not responsible for any choices you make using these mechanisms or the continued availability or accuracy of these mechanisms.
Please note that if you exercise the opt-out choices above, you will still see advertising when you use the Websites, but it will not be tailored to you based on your online behavior over time.
“Do Not Track” Setting
Do Not Track (“DNT”) is a privacy preference that users can set in certain web browsers. We are committed to providing you with meaningful choices about the information collected on our Websites for third party purposes, and that is why we provide the variety of opt-out mechanisms listed above. However, we do not currently recognize or respond to browser-initiated DNT signals. To learn more about Do Not Track, you can do so here.
Sharing of Site Visitor Information
We share the information we collect through the Websites with the following:
Retention of Your Information
We will retain your information for the period necessary to fulfill the purposes outlined in this Policy unless a longer retention period is required or permitted by law.
Data Subject Rights
Local legal requirements (such as those in the EU) may afford you additional rights. If you would like further information in relation to your legal rights under applicable law or would like to exercise any of them, please contact us at data-protection@mi-fusion.com. Your local laws (such as those in the EU) may permit you to request that we:
We will consider all requests and provide our response within the time period stated by applicable law. Please note, however, that certain information may be exempt from such requests in some circumstances, which may include if we need to keep processing your information for our legitimate interests or to comply with a legal obligation. We may request you provide us with information necessary to confirm your identity before responding to your request.
Third Party Links And Services
The Websites may contain links to third-party websites and functionalities. If you choose to use these third party services, you may disclose your information not just to those third-parties, but also to their users and the public more generally depending on how their services function. Because these third-party websites and services are not operated by Mi-Fusion, Mi-Fusion is not responsible for the content or practices of those websites or services. The collection, use, and disclosure of your information will be subject to the privacy policies of the third party websites or services, and not this Policy. We urge you to read the privacy and security policies of these third-parties.
The following additional information about Mi-Fusion’s privacy practices apply to all users of Mi-Fusion (Subscribers, Basic Users, and Site Visitors).
International Users
European Union or Swiss citizens with inquiries or complaints regarding this privacy policy should first contact Mi-Fusion at: data-protection@mi-fusion.com. Under GDPR, you have certain rights regarding you data:
Access – the right to request access to your personal data;
Rectification – the right to correct inaccuracies in you data;
Erasure – the right to request deletion of your data;
Objection – the right to object to the processing of your personal data;
Data portability – the right to receive your data in a structured, commonly used and machine readable format.
To exercise these rights or for inquiries about your data, please contact us at data-protection@mi-fusion.com or by post to the address 410 Ix-Xatt Ta’ Santa Marija, Mellieha, MLH2777, Malta.
We may transfer information that we collect about you to third party processors across borders and from your country or jurisdiction to other countries or jurisdictions around the world. If you are located in the European Union or other regions with laws governing data collection and use that may differ from European laws, please note that you are transferring information to a country and jurisdiction that does not have the same data protection laws as your jurisdiction. Mi-Fusion will take reasonable and appropriate steps necessary to ensure that any third party who is acting as a “data processor” under EU and Swiss terminology is processing the personal data we entrust to them in a manner that is consistent with the EU-US and Swiss-US Privacy Shield Principles.
Changes To Our Privacy Policy
We reserve the right to amend this Policy at any time to reflect changes in the law, our data collection and use practices, the features of our Service or Websites, or advances in technology. We will make the revised Policy accessible through the Service and Websites, so you should review the Policy periodically. If we make a material change to the Policy, we will comply with applicable legal requirements regarding providing you with notice and/or consent.
How We Protect Your Information
Mi-Fusion takes technical and organizational measures to protect your information against accidental or unlawful destruction or accidental loss, alteration, unauthorized disclosure or access. However, no method of transmission over the Internet, and no means of electronic or physical storage, is absolutely secure, and thus we cannot ensure or warrant the security of that information.
Marketing Practices and Choices
If you receive email from us, we may use certain analytics tools, such as clear GIFs, to capture data such as when you open our message or click on any links or banners our email contains. This data allows us to gauge the effectiveness of our communications and marketing campaigns. You may instruct us not to use your contact information to contact you by email, postal mail, or phone regarding products, services, promotions and special events that might appeal to your interests by emailing us to data-protection@mi-fusion.com.
In commercial email messages, you can also opt out by following the instructions located at the bottom of such emails. Please note that, regardless of your request, we may still use and share certain information as permitted by this Policy or as required by applicable law. For example, you may not opt out of certain operational or service-related emails, such as those reflecting our relationship or transactions with you.
If you have any questions, concerns, or requests related to data protection or this Privacy Policy, please contact us at data-protection@mi-fusion.com.
By using our website, you acknowledge that you have read, understood and agreed to this Privacy Policy.