Privacy Policy for Maia Genomics
Maia Genomics and its affiliated identities (“Maia,” “we,” or “us”) is a business that provides genetic testing and analysis located at Teknigringen 1, 114 28 Stockholm, Sweden. This privacy policy explains the types of personal data we may collect when you: visit our website which includes maiagenomics.com, app.maiagenomics.com, and all related websites, mobile applications, and web-based services (our “Sites”); interact with us by email, phone, mail, or otherwise; or access or use our products or service. We refer to our sites, interactions with you, and services as “Services” throughout this Privacy Policy.
Your privacy is important to us. Under the General Data Protection Regulation (2016/679), we are responsible for the processing of personal data for which we decide the purposes and the means of processing. With “personal data” we mean information that is directly or indirectly referable to a natural living person and which is processed in connection with the Services. This document contains information about our collection, use, and processing of personal data, which parties with whom we may share such data, and your rights concerning personal data about you. When you use the Services, we will process personal data for several purposes, as set forth below.
This policy does not apply to third-party websites, products, or services, even if our Sites to link theirs or their Sites link to ours. We recommend you review their Privacy Policies before you connect with them, access them, or share any personal data with them.
PROCESSED PERSONAL DATA
We collect and use the following types of personal data to deliver and maintain efficient and secure Services, for the purposes stated below:
(a) name;
(b) email address;
(c) telephone number;
(d) IP address;
(e) birthday;
(f) picture;
(g) genetic information;
PROCESSED PERSONAL DATA
We collect and use the following types of personal data to deliver and maintain efficient and secure Services, for the purposes stated below:
(a) name;
(b) email address;
(c) telephone number;
(d) IP address;
(e) birthday;
(f) picture;
(g) genetic information;
(h) payment information; and
(i) information in communication and posted content.
Please note that we are unable to provide the Services without processing the above-stated personal data. When you use the Services, certain information will be collected automatically, including;
(a) browser and device data such as IP address, device identifier, device type, operating system name and version, device and manufacturer model, language, plug-ins, add-ons, and the language version of the Sites you’re visiting;
(b) content that you post, upload, and/or contribute to the Services; and
(c) information about your use of Services such as geolocation data, browsing history, time spent on the Sites, pages visited, links clicked, language preferences, patterns of use, and the pages that led or referred you to our site.
(c) information about your use of Services such as geolocation data, browsing history, time spent on the Sites, pages visited, links clicked, language preferences, patterns of use, and the pages that led or referred you to our site.
PURPOSES OF PROCESSING AND LEGAL BASES
We will process the information set out above for the following purposes:
(a) to administrate your account, to enable and provide the Services and integration with third-party services, and to otherwise provide the Services according to the terms of use. The processing of personal data for this purpose is based on the necessity for the fulfillment of our agreement with you;
(b) to personalize and improve your experience of the Services, based on our legitimate interest in providing you with a customized experience that is tailored to your preferences;
(c) to send you alerts or messages by email or otherwise, including to provide you with marketing of our and our related parties’ products and services based on our legitimate interest in sending you promotional material about products and services you might be interested in;
(d) to inform you about updates on the Services or the terms of use based on our legitimate interest in keeping you posted about developments of the Services (such as new features) and the terms you agreed to use the Services under;
(e) to improve and develop the Services or new services and products and to analyze your use of the Services based on our legitimate interest in offering you up-to-date Services based on your use of the Services, and developing new products and services that cater to your preferences and/or your consent to our use of cookies;
(f) to ensure the technical functioning of the Services and to prevent the use of the Services in breach of the terms of use to be able to fulfill our agreement with you and based on our legitimate interest to ensure that our Services are not abused for the protection of ourselves and our other users;
(g) to enforce the terms of use, including to protect our rights, property, and safety and also the rights, property, and safety of third parties if necessary based on our legitimate interest in protecting our business, our Services users, and other third parties; and
(h) to fulfill requirements by law, based on our obligation to comply with such laws.
For processing activities that are based on a legitimate interest, we carefully balanced such legitimate interest with your right to privacy and concluded that our interest can be exercised without interfering with your rights and freedoms in a way that prohibits the processing of personal data about you.
RETENTION OF PERSONAL DATA
As the main rule, we store your personal data for only as long as necessary to perform the Services, unless there is a legal obligation to store the data for longer.
After you have closed your account, personal data connected to the account will be stored for 30 days at most.
Contact information to you used for sending marketing, and information is stored for as long as your account is active and will be deleted when you unsubscribe from our mailing list with the link in an email or similar from us. Personal data used to improve the Services and to develop new services are anonymized as soon as possible, however in no case longer than six months after which the personal data was collected or created. Personal data processed according to a legal obligation are stored for as long as the legal obligation warrants that the personal data is stored. This includes when personal data is processed for bookkeeping purposes, where the account details are stored during the current year and until the seventh year after the end of the calendar year which the fiscal year ended.
DISCLOSURE OF PERSONAL DATA
We may share and disclose your personal data to our partners, suppliers, and related third parties for the above-stated purposes within and outside the EU/EEA where you may have less legal rights concerning your personal data. The recipients below are located outside the EU/EEA and we are therefore applying specified safeguards for the data transfers. You can acquire further information regarding the transfer by contacting us.
COOKIES
A cookie is a small piece of data sent from a Website and stored in a user’s web browser, mobile phone, or other device while the user is browsing that Website. A cookie can help the Website provider recognize your device and/or browser the next time you visit that Website, provide you with access to certain functions on the Website, and/or register your surf patterns. There are other technologies such as pixel tags, web bugs, web storage, and other similar files and technologies that may carry the same functions as cookies. In this cookie policy, we use the term “cookies” for cookies and all such similar technologies.
We use the following cookies:
(a) strictly necessary cookies are strictly necessary to enable you to move around the website and use its features. The Site cannot function without these cookies. Strictly necessary cookies do not require your consent as they enable services you have specifically asked for and which cannot be provided otherwise;
(b) functionality cookies that enable the Site to save details that you have provided to offer a better experience, such as, e.g. allow the Site to remember choices you make such as your username, language, or the region you are in. Some parts of the Site may not function properly without these cookies; and
(c) performance cookies are used for us to analyze the performance and design of the Site and to detect errors. These cookies also enable us to recognize that you have visited the Site before, which pages on the Site visitors visit most frequently, and how much time visitors spend on the Site. The purpose of these cookies is solely to improve the performance of the website and your experience.
(a) strictly necessary cookies are strictly necessary to enable you to move around the website and use its features. The Site cannot function without these cookies. Strictly necessary cookies do not require your consent as they enable services you have specifically asked for and which cannot be provided otherwise;
(b) functionality cookies that enable the Site to save details that you have provided to offer a better experience, such as, e.g. allow the Site to remember choices you make such as your username, language, or the region you are in. Some parts of the Site may not function properly without these cookies; and
(c) performance cookies are used for us to analyze the performance and design of the Site and to detect errors. These cookies also enable us to recognize that you have visited the Site before, which pages on the Site visitors visit most frequently, and how much time visitors spend on the Site. The purpose of these cookies is solely to improve the performance of the website and your experience.
By clicking “Accept All” on our cookie banner on the Site you consent to the use of cookies. The personal data processing that occurs through cookies is based on your consent as a legal ground for processing. This means that you have a choice to allow or deny some or all of the cookies, except for strictly necessary cookies. Most web browsers also allow you to manage your cookie preferences. You can set your browser to refuse cookies or delete certain cookies. In general, you should also be able to manage similar technologies by using your browser’s preferences. You can review or remove cookies that have already been set through your web browser. The way you can do this usually differs from one web browser to another. Most web browsers have published instructions on how to manage cookies. Since cookies are always set to the device and browser you use to visit the Site, you will need to separately manage cookies on all the different devices and browsers you use to visit the Site. Please note that if you choose to block cookies, the functionality of the Site may be affected.
We have the following purposes and legal grounds for the personal data processing that occurs via cookies:
(a) performance and functionality. We analyze the performance and design of the Site to detect errors. Personal data processing that occurs within the scope of these purposes is based on our legitimate interest in offering you up-to-date Services based on your use of the Services and developing new products and services that cater to your preferences and/or your consent to our use of cookies.
(a) performance and functionality. We analyze the performance and design of the Site to detect errors. Personal data processing that occurs within the scope of these purposes is based on our legitimate interest in offering you up-to-date Services based on your use of the Services and developing new products and services that cater to your preferences and/or your consent to our use of cookies.
RESPONDING TO LEGAL REQUESTS AND PREVENTING HARM
We may access, preserve, and share your information in response to a legal request (like a search warrant, court order, subpoena, or the like), or when necessary to detect, prevent, and address fraud and other illegal activity, to protect ourselves, you and other users, including as part of investigations, if we have a good faith belief that the applicable law requires us to do so. This may include responding to legal requests from jurisdictions outside of the EU/EEA where we have a good faith belief that the response is required by law in that jurisdiction, affects users in that jurisdiction, and is consistent with internationally recognized standards. Information that we receive about you (including financial transaction data) on the Site using our Services may be accessed, preserved, and retained for an extended period when it is the subject of a legal request or obligation, government investigation, or investigations concerning possible violations of our terms of use or policies, or otherwise to prevent harm.
SOME OTHER THINGS YOU NEED TO KNOW
You should be aware that when you are on our Site you may be directed to other sites operated by third parties where the personal information collected is outside of our control. The privacy notice of the new site will govern the information
obtained from you on that site.
If the ownership of our business changes, we may transfer your information to the new owners so they can continue the Services. The new owner will still have to honor the commitments we have made in this Privacy Notice.
If we make changes to this Privacy Notice, we will notify you by publication. If the changes are material, we will provide you additional, prominent notice as appropriate under the circumstances and, where required under applicable law, ask for your consent.
You have an absolute right to object to the processing of your personal data for direct marketing. You also have the right to recall your prior given consent. The withdrawal of your consent does not affect the lawfulness of the processing based on the consent before its withdrawal, and we may continue processing your personal data based on other legal grounds, except for direct marketing.
You have the right to request access and further information concerning the processing of your personal data or request that we correct, rectify, complete, erase, or restrict the processing of your personal data. You have the right to obtain a copy of the personal data that we process relating to you free of charge once (1) every calendar year. For any additional copies requested by you, we may charge a reasonable fee based on administrative costs. If the processing is based on the legal ground of legitimate or public interests, you have the right to object to the processing. If you do this, we will no longer be permitted to process the personal data unless we can demonstrate compelling reasons for why our legitimate grounds for the processing override your interests, rights, and freedoms – unless the processing is not for the establishment, exercise, or defense of legal claims.
If the processing is based on the legal grounds of consent or fulfillment of contract you have the right to data portability. Data portability means that you can receive the personal data that you have provided to us, in a structured, commonly used, and machine-readable format, and have the right to transfer such data to other data controllers.
To exercise the aforementioned rights, or if you have any questions about our sharing practices, your rights under EU law, or wish to have your personal information removed, please contact us at the following address: maiagenomics@support.com. To ensure
that you receive a swift response, please state your full name and, if applicable, your address, username, and email address used for registration. Note that you should sign the request to receive information on the processing of your personal data yourself.
If you have any complaints regarding our processing of your personal data, you may file a complaint with the competent data protection authority. You can find out more about the local data protection authorities under this link.