** Updated: September 8, 2023 **
Midaxo is a global supplier of SaaS software for Corporate Development and M&A with offices in the EU and in the USA. We are committed to protecting your personal data.
A reference to “Midaxo,” “we,” “us,” or the “Company” is a reference to Midaxo Ltd and its subsidiaries Midaxo, Inc., and Midaxo B.V. Midaxo is the Controller for the personal data discussed in this Service Privacy Policy.
This Service Privacy Policy covers the privacy practices Midaxo employs when Midaxo customers (“Customers”) use our Cloud-Based Enterprise Applications (the “Service). This Service Privacy Policy does not cover any information or data collected by Midaxo for other purposes, such as marketing purposes. Please see www.midaxo.com for the policy that covers Midaxo’s website, events, marketing, and sales.
This Service Privacy Policy has the following sections:
- Collected personal data
- Processing information
- Sharing personal data
- Accessing Service
- Securing data
- Retaining data
- Changes to this Service Privacy Policy
- Contacting us
Collected personal data
Midaxo collects the following personal data, when you use the service:
- Name
- IP address
Processing information
In the normal course of using the Service, Customer’s input electronic data into the Service, including personal data (“Customer Data”). The use of information collected through the Service is limited to providing the Service for which Customer has engaged Midaxo. Customer Data is encrypted in transit and at rest.
Midaxo may access Customer Data for:
- Providing the Service
- Preventing or addressing technical problems
- Responding to support issues
- Responding to Customer’s instructions in accordance with the relevant agreement between Customer and Midaxo
- Meeting a lawful requirement
Midaxo processes Customer Data under the direction of its Customers and has no direct control or ownership of the personal data it processes. Customers are responsible for complying with any regulations or laws requiring notice, disclosure, and/or obtaining consent before transferring the data to Midaxo for processing purposes.
An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct their query to Midaxo’s Customer (the Data Controller). If the Customer requests Midaxo to remove the personal data to comply with data protection regulations, Midaxo will respond to their request within 30 days.
Midaxo will refer any request for disclosure of personal data by a law enforcement authority to the Customer. Midaxo may, where it concludes that it is legally obligated, disclose personal data to law enforcement or other government authorities. Midaxo will notify Customer of such request unless prohibited by law.
Sharing personal data
Midaxo shares personal data to the following third-parties ("Sub-Processors") as part of providing the Service to the users:
- Amazon Web Services: Cloud service provider
- Auth0: Identity management
- Mailgun: Email service provider
- Datadog: Service monitoring
- Pendo: User behaviour analytics
- Clearbit: Company info provider
- Google Maps: Map delivery
Midaxo provides a "Midaxo+ Sub-Processors" document for customers on request, where each Sub-Processors details are documented.
Accessing Service
Customers and their authorized users may access the Service directly through a URL that is unique to their individual account or may elect to use internal launch pages for single sign-on or other purposes. Customer’s input information for processing and storage as they use the Service. Customers may also configure the Service to allow end-users to input information directly into the Service.
Securing data
The security of Customer Data, including personal data, is critically important to Midaxo. Midaxo maintains a comprehensive, written information security program that contains industry-standard, administrative, technical, and physical safeguards designed to prevent unauthorized access to Customer Data. Midaxo develops its applications to allow Customers to achieve differentiated configurations, enforce user access controls, and manage data according to these principles. Configuring these settings is Customer’s responsibility. Additional information about the security settings and configurations can be found in the Midaxo documentation made available to Customers, e.g., FAQs.
Retaining data
Midaxo retains Customer Data according to the timeframes set forth in the relevant agreement with its Customers.
Changes to this Service Privacy Policy
We reserve the right to change or update this Service Privacy Policy at any time. We will post changes on Midaxo’s website. We encourage you to periodically review this Service Privacy Policy for any changes. For new Customers, changes or updates are effective upon posting. For existing Customers, changes or updates are effective 30 days after posting.
Contacting us
If you have questions related to this Service Privacy Policy, please ask your customer support contact to log a customer care case with the privacy question. You can also reach out to us at privacy@midaxo.com or at:
Midaxo Ltd
Att: Privacy
Mikonkatu 13 D 135
00100 Helsinki
Finland
To contact our Data Protection Officer, please email privacy@midaxo.com>. Midaxo will respond to your request within a reasonable timeframe or as required by law