Privacy Policy

Version 1.6

1. A European approach to privacy 

This is the privacy policy of: 

Meedio ApS 

Europaplads 2, 7

DK-8000 Aarhus C

Denmark.

we@meedio.me 

Meedio takes a European approach to privacy. We only use the data, that you provide us with, to run our services. We don’t collect any data, that we don’t need, and we will never sell or share your data. Further more, we delete all data, that we collect, as soon as we don’t need it anymore. Our Product follows all legal requirements to protect your privacy. Meedio is GDPR compliant, and has been audited by independent auditors in accordance with international standards. 

This is our Privacy Policy for our Services, including our mobile applications, our website at www.meedio.me, our manager, queueing system, and our backend infrastructure. 

By accepting this Privacy Policy you consent to us collecting, processing and storing information about you in the manners set out in this Privacy Policy, and that your are of legal age. If you have any concerns about providing the information to us, or having it used in any manner permitted in this Privacy Policy, or if you are not of legal age, you should not use our Services. 

You will see terms in our Privacy Policy that are capitalized. These terms have meanings as described below: 

  • Personal Data: Personal Data means data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession). 
  • Usage Data: Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a video meeting). 
  • Cookies: Cookies are small pieces of data stored on a User's device. 
  • Data Controller: Data Controller means a natural or legal person who (either alone or jointly or in common with other persons) determines the purposes for which and
    the manner in which any personal data are to be, processed. For the purpose of
    this Privacy Policy, we are a Data Controller of your data. 
  • Data Processor (or Service Provider): Data Processor (or Service Provider) means
    any natural or legal person who processes the data on behalf of the Data Controller. We may use the services of various Service Providers in order to process your data more effectively, or we may be a Data Processor processing data on behalf of a Data Controller. 
  • Data Subject: Data Subject is any living individual who is the subject of Personal Data. 
  • User: The User is the individual using our Service. The User corresponds to the Data Subject, who is the subject of Personal Data. 
  • Our Service: Our video communication platform, consultation platform, messenger, manager, queueing system, backend, infrastructure, and any other services provided by us.

2. Types of data

While using our Service, creating an account, or joining a meeting as a guest, we may collect or ask you to provide us with certain personally identifiable information, that can be used to contact or identify you ("Personal Data"), or is needed for the purpose of delivering our Service to you. These informations include:

  • Name
  • Email
  • IP-address
  • Cookies
  • Usage data

The legal basis for processing all of the above is a contract (GDPR article 6.1.b) or your consent (GDPR article 6.1.a). 

3. Usage of data

We use the collected data for various purposes: 

  • To create accounts and provide login details 
  • To provide and maintain our Service 
  • To provide customer support 
  • To gather analysis or valuable information so that we can improve our Service 
  • To track activities and monitor the usage of our Service 
  • To detect, prevent and address technical issues 
  • To detect, prevent and address fraudulent usage and other illegal activities 

4. Retention of data

We will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy: 

  • Data on registered users and customers may be stored as long as a customer relation exists, and up until 3 months after the customer relation ends (except invoices and transaction, that we are required to keep for 5 years). 
  • Data on guests is deleted after 3 months. 
  • Personal Data will be retained to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies. 
  • Usage Data is retained for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.

No one can access data except our developers with necessary security clearance. All data is kept on secure servers located within the EU, and all activities are logged. 

The legal basis for the above is your consent (GDPR article 6.1.a), a contract for paying customers (GDPR 6.1.b), and for the retention of transaction, legal requirement (GDPR 6.1.c). 

5. Transfer of data

Your information, including Personal Data, may be transferred to — and maintained on — servers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information. 

Our data is located and processed on servers located within the EU. 

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer. 

6. Service providers

We may employ third party companies and individuals to facilitate our Service ("Service Providers"), to provide the Service on our behalf, to perform Service-related services or to assist us in analyzing how our Service is used. 

These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose: 

Service provider Used for Company location
Data stored / processed
Legal basis
Hetzner Hosting Germany Germany GDRP 6.1.b
Sendinblue 2FA France France GDRP 6.1.b

7. Cookies

Cookies are tiny files that are downloaded to your computer/device, to improve your experience, set up video calls, remember preferences and permission (e.g. camera settings), save account and login information and learn about visits to our website. Session cookies are deleted after each session, while account cookies (registered users only) do not delete themselves. 

The legal basis for this processing is your consent (GDPR article 6.1.a). 

8. Your rights under the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA)

Meedio allows you to correct, amend, delete, or limit the use of your Personal Data. If you wish to be informed what Personal Data we hold about you or if you want it to be removed from our systems, please contact us at we@meedio.me. 

You have the following data protection rights: 

  • The right to access, update or to delete the information we have on you. 
  • The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete. 
  • The right to object. You have the right to object to our processing of your Personal Data. 
  • The right of restriction. You have the right to request that we restrict the processing of your personal information. 
  • The right to data portability. You have the right to be provided with a copy of your Personal Data in a structured, machine-readable and commonly used format. 
  • The right to withdraw consent. You also have the right to withdraw your consent at any time where Meedio relied on your consent to process your personal information. 

Please note that we may ask you to verify your identity before responding to such requests.
Under GDPR you have the right to complain to Data Authorities in EU about our collection and use of your Personal Data. 

"Do not sell my personal information" notice for California consumers under California Consumer Privacy Act (CCPA) 

Under the CCPA, we can assure California consumer’s that:

  • We only collect and process data according to sections Type of Data and Use of Data above. 
  • We do not keep data longer than described in the Retention of Data section above. 
  • We will never sell any consumer’s personal data. 

If you make a request, we will respond to you within 30 days. If you would like to exercise any of these rights, please contact us on we@meedio.me

9. Changes to this privacy policy

We may update our Privacy Policy from time to time. We will let you know via a prominent notice on our Service, prior to the change becoming effective and update the "effective date" at the top of this Privacy Policy. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. 

10. Contact information

If you have any questions about this Privacy Policy, please contact: 

Meedio ApS 

Europaplads 2, 7

8000 Aarhus C

Denmark
Mail: we@meedio.me 

Please find contact information on our DPO and the Data Authorities in Denmark below:

Data Protection Officer (DPO) 

Horst Wenning

DATATREE AG

Märkische Str. 212-218

44141 Dortmund

office@datatree.ag

Datatilsynet in Denmark 

Carl Jacobsens Vej 35 
2500 Valby 

Denmark 
Phone: (+45) 33 19 32 00 
Mail: dt@datatilsynet.dk