Minimus Privacy Policy

1. Introduction

This privacy policy (“Privacy Policy”) describes how Minimus Inc. and our affiliates (“Minimus”, “we”, “our” or “us”) process, use, collect and store Personal Data that we receive from or about you, including but not limited to in connection with your use of Minimus.io or any other websites owned or operated by or on behalf of Minimus (“Website”), or the Minimus platform (the “Platform” and together with the Website, collectively the “Services”). Please read this Privacy Policy carefully, so you can fully understand our practices in relation to your Personal Data.

As it relates to this Privacy Policy “Personal Data” means any information that can be used, alone or together with other data, to uniquely identify any living person and any information deemed as personally identifiable information by applicable privacy laws.

Important note: Nothing in this Privacy Policy is intended to limit in any way your statutory rights, including your rights to a remedy or other means of enforcement.

2. Role and Scope

For visitors, prospects, platform users (where Minimus sets the purposes), and business contacts, Minimus is the “controller” (or similar term under applicable law) for Personal Data covered by this Privacy Policy.

3. What Personal Data we collect and how we use it.

Your relationship with Minimus determines what we collect and why. You are not legally required to provide Personal Data, but some information is needed for us to provide the Services. If you prefer not to share certain information, you may choose not to provide it, but some features may not work. Below we explain collection and use by relationship. Each subsection also lists typical legal bases where required (e.g., EEA/UK).

In all cases, we may use Personal Data to: detect, prevent, and investigate fraud or misuse of the Services; secure the Services and our business; comply with law and enforce legal rights; create aggregated or de-identified data for analytics, product improvement, and research.

Legal Basis (for relevant jurisdictions): Our processing may be based on your consent, taking steps prior to entering into a contract for the Services (i.e. with your company), compliance with a legal obligation (e.g. tax laws, bookkeeping laws, sanctions laws etc.), and our legitimate interest in providing and improving the Services, communicating with you, and informing you of updates.

We may also use your contact details to reach out to you about the Services or send you other relevant content such as product releases, industry news, and events. You may unsubscribe at any time.

Legal Basis (for relevant jurisdictions): Our processing may be based on your consent, the performance of a contract (with your company), compliance with a legal obligation (e.g., tax laws, bookkeeping laws, sanctions laws etc.), and our legitimate interest in providing and improving the Services, communicating with you, and informing you of updates.

Legal Basis (for relevant jurisdictions): Our processing may be based on the performance of a contract (with your company), compliance with a legal obligation, and our legitimate interest in sending you contract-related and other communications.

Legal Basis (for relevant jurisdictions): Our processing may be based on your consent, our legitimate interest in assessing your candidacy, compliance with a legal obligation or for the performance of a contract (to take necessary steps to enter into an employment contract with you).

Legal Basis (for relevant jurisdictions): Our processing is based on our legitimate interest in protecting and securing our offices.

We may also use your contact details to reach out to you about our offerings or send you other relevant content such as product releases, industry news, and events. You may unsubscribe at any time.

Third-Party Lead Generation:

If we acquire your Personal Data from third-party sources (e.g., lead-generation companies) or enrich Personal Data you provide us directly through these sources. This may include your name, business email address, job title, company, address, telephone number, and country. We collect this to contact you about our Services and send marketing communications. 

Legal Basis (for relevant jurisdictions): Our processing may be based on your consent and our legitimate interest in developing our business, responding to and communicating with you, and marketing the Services.

4. Cookies, analytics, and similar technologies

We and our service providers use cookies, pixels, SDKs, local storage, and similar tools to operate the Services and understand usage. You can block or delete cookies in your browser settings; some features may stop working if you do.

Analytics tools. We use analytics providers (such as Google Analytics) to collect information about how visitors use the Website and Platform. We configure tools to avoid collecting data you intentionally enter into designated sensitive fields. You can opt out of Google Analytics using Google’s browser add-on. We may add or remove analytics and tracking tools over time; material changes will be reflected in updates to this Policy.

5. How we disclose Personal Data

We disclose Personal Data only as needed for the purposes above, including to these categories:

• Service providers. Hosting, cloud infrastructure, customer support, CRM, email delivery, analytics, security monitoring, and similar vendors who process data on our behalf under contract.
• Affiliates. Minimus group companies for internal administration, security, and Service improvement.‍
• Partners and integrations. If you use third-party integrations or enable them in the Platform, data may flow to those third parties under their policies.
• With your direction/consent. When you ask us to share data or otherwise consent.
• Legal and safety. Regulators, courts, law enforcement, banks, or other authorities when required by law or to protect rights, safety, and integrity of Minimus, our users, or the public.
• Corporate transactions. In connection with an actual or potential merger, acquisition, financing, sale of assets, or similar transaction, subject to appropriate protections.

We operate globally. Your Personal Data may be processed in countries other than where you live, including the United States and locations where our affiliates or providers operate. When we transfer Personal Data internationally, we use recognized safeguards such as adequacy decisions and standard contractual clauses or equivalent mechanisms.

This Privacy Policy can be updated from time to time and, therefore, we ask you to check back periodically for the latest version of this Privacy Policy.  If we implement material changes in the way we use your information, in a manner that is different from that stated at the time of collection, we will notify you by posting a notice on our Website or by other means and take any additional steps as required by applicable law.

We do not sell Personal Data in the traditional sense. If applicable law defines “sale” or “sharing” more broadly (e.g., certain advertising uses), see the jurisdiction-specific sections below.

6. International transfers

We operate globally. Your Personal Data may be processed in countries other than where you live, including the United States and locations where our affiliates or providers operate. When we transfer Personal Data internationally, we use recognized safeguards such as adequacy decisions and standard contractual clauses or equivalent mechanisms.

7. Data retention

We keep Personal Data only as long as needed for the purposes described in this Policy, including:

• maintaining your account or business relationship;
• meeting legal, tax, or audit obligations;
• resolving disputes;
• enforcing agreements; and
• maintaining security and preventing abuse.

When retention is no longer necessary, we delete or de-identify the data.  

8. Security

We use appropriate technical and organizational security measures designed to protect Personal Data, including access controls, encryption in transit where appropriate, logging, and security monitoring. No system is perfectly secure; you are responsible for keeping your login credentials confidential.

9. Your privacy rights

Depending on where you live, you may have some or all of these rights:

• access to Personal Data we hold about you;
• correction of inaccurate data;
• deletion;
• portability;
• objection to or restriction of certain processing;
• withdrawal of consent (where processing is based on consent);
• opting out of certain marketing or advertising uses.  

How to exercise rights. Email us at privacy@minimus.io. We may verify your identity and authority. We will respond within the time required by applicable law. If your request is denied, you may appeal by replying to our response and stating you are requesting an appeal.

Marketing opt-out. You can opt out of marketing emails via the unsubscribe link in those emails or by contacting us. We may still send non-promotional operational messages.

To help protect the security of your Personal Data, Minimus will verify your identity in connection with any requests. We also take steps to ensure that only you or your authorized representative can exercise rights with respect to your information. If you are an authorized agent making a request, we may require additional information to protect the Personal Data entrusted to Minimus, including information to verify your authorization.

There may be situations where we cannot grant your request, for example, if it would adversely affect the rights and freedoms of others (e.g., impact a duty of confidentiality) or if we are legally entitled to handle your request differently. In such cases, we will address your request to the maximum extent possible, in accordance with applicable law.

10. Children

The Services are for business use and not directed to children. We do not knowingly collect Personal Data from children under 13, and we do not intentionally allow minors to use the Platform without appropriate authorization. If you believe a child has provided Personal Data to us, contact privacy@minimus.io and we will take appropriate steps.

11. Third-party services and links

The Services may link to or integrate with third-party services that Minimus does not control. Their privacy practices are governed by their own policies. We are not responsible for third-party privacy or security.

12. Do Not Track

Web browsers may transmit “Do Not Track” signals; the Services do not currently respond to those signals. To exercise state-law rights, contact privacy@minimus.io. Authorized agents may submit requests with proof of authority.

13. Changes to this Policy

We may update this Policy periodically. If changes are material, we will post a notice on our website or otherwise notify you as required by law. The “Last updated” date at the top reflects the current version.

14. Contact Us 

Questions, concerns, or rights requests: privacy@minimus.io 

VeraSafe has been appointed as Minimus’s representative in the European Union for data protection matters, pursuant to Article 27 of the General Data Protection Regulation of the European Union. If you are in the European Economic Area, VeraSafe can be contacted in addition to Privacy@minimus.io, only regarding matters related to the processing of personal data.
‍
To make such an inquiry, please contact VeraSafe using this contact form: https://verasafe.com/public-resources/contact-data-protection-representative or via telephone at: +420 228 881 031. Alternatively, VeraSafe can be contacted at: VeraSafe Netherlands BV, Keizersgracht 555, 1017 DR Amsterdam, Netherlands.