Privacy policy

Privacy policy for Mondido Payments AB
Your personal privacy is very important to us and we want you who register as a User with us to feel confident in how we process your information. With this Privacy Policy, we therefore want to inform you about how we collect and process your information, why we do this, how long your information is stored and how we protect it. We also inform you about your rights and how you contact us in matters concerning your privacy.

Controller of personal data
Mondido Payments AB (hereinafter “Mondido”, “We”), business registration number 556960-7129, is controller for the personal data processed about you when you register an account, for you or your company, on Mondido.com (“Users”) or “Data subject”). Mondido decides the purpose of the treatment and the way in which the treatment should take place. Contact information to the Controller are outlined at the end of this Privacy Policy.

What is personal data and processing of personal data?
Personal data is information that can be directly or indirectly linked to a natural person. Examples of personal information are name, social security number, telephone number and e-mail address. Processing of personal data means all types of measures taken with personal data, such as registration, transfer, collection, storage and deletion.

Which personal data do we process?
Mondido processes different types of personal data depending on the nature of business for which you have registered with us. Below is a list of our different types of users.

User account
If you have registered for a User account with Mondido, i.e. registered you or your company, as a User of our website; www.mondido.com, but does not submit any other information, we register your name and e-mail address. We need this information to run our business and to give you access to our services, which includes customer support; marketing so as to send out newsletters about updates (and other information about our business) and for you to be able to log in and manage your account with Mondido.

Owner or authorized representative
If, in addition to having registered a User account with us as above, also is an owner or authorized representative in a limited company, own company or an association, you have sent in a copy of ID, social security number, address, telephone number, professional title and ownership in the company, we will store these information as long as you are a customer with us. We store these to conduct our business, to fulfill our agreement with you and due to other legal obligations.

How and from where do we collect data?
We collect information about you in connection with your registration on our website; www.mondido.com. We collect the information that you fill in yourself when you are logged in to www.mondido.com. It can e.g. be name, title, social security number, address and e-mail address. If someone other than you register information about you by inviting you to Mondido, we will store your email address for four weeks and if you accept the invitation, we will handle your information in accordance with this Privacy policy and section 4. If there is another who registers information about you as an owner or signatory, we handle your information in accordance with this Privacy policy and section 5.

In addition to the information that you provide to us or that we collect through your use of our services or through your correspondence with us, we may also collect information from a so-called third party. Information that we collect from third parties is, for example, credit information from credit information companies and address information from public registers. We also collect information about you by using cookies on our website.

What do we use the data for?
We will not process your personal data in any way other than as stated in this Privacy policy. We will not share your information without your prior consent and we will not sell your information on to third parties. In order to perform the service, we use certain subcontractors, please see which these are and for what purposes we use them, in the list of Recipients in this sub-appendix.

How long do we store your personal information?
We store your personal information for as long as is necessary to fulfill the purposes for which the information was collected. The information we collect from you and in connection with when you use our services is stored for different lengths of time depending on what purpose they are to be used for and what our legal obligations look like. It can e.g. be as long as required for us to be able to fulfill our responsibility towards you, to be able to handle complaint matters or as long as it takes to fulfill certain statutory storage periods regarding, for example accounting, investigation of money laundering, financing of terrorism, etc.

How do we protect your personal information?
We protect your information in accordance with the organizational and technical security measures and procedures that have been developed to ensure that your information is protected in such a way that unauthorized persons do not gain access. The processing of your data takes place according to internal control documents and only the administrators who have the right authorization have access to your personal data and can handle these.

Your rights as data subject
You as a data subject have by law several rights regarding the processing of your personal data. We list these below.

Right to information – you get these in this Privacy policy.
Right of access – by contacting us you get access to what information we have about you (we need to verify that you are the right recipient).
Right to correction – by contacting us you can request that incorrect information about you be corrected or deleted.
Right to be forgotten – if there is no longer a legal basis for storing your personal data, you have the right to have it deleted. It is important to remember that e.g. money laundering laws can prevent this (see section 9).
Right of limitation – you can ask us to limit our processing of your personal data if it is incorrect or illegal, but if you want us to keep certain data due to legal claims.
Right to object – you have the right to object to the processing of personal data that we do with the support of balancing of interests. In these cases, we may only continue the processing if we can show that there are compelling justifiable reasons for the processing or due to possible legal claims.
Right to object to direct marketing – if you have received direct marketing from us, you have the right to object to this and no longer receive marketing from us.
The right to data portability – personal data that you have registered with us for the fulfillment of an agreement or consent (see above), you can under certain conditions get out to use with another personal data controller.
Complaints – If you believe that your personal data is being processed in violation of applicable law, you have the right to submit a complaint to Mondido or to the Swedish Data Protection Authority.

Change of the Privacy policy
Mondido reserves the right to update and change this Privacy policy if necessary. The latest version of the privacy policy will always be published on our website. In the event of changes that are of crucial importance for our processing of personal data, you as the User will receive information about this via e-mail before the update takes effect.

About cookies
We use cookies on our website to improve your user experience and to analyze how you use the service.

Contact information:
Personal data manager: legal@mondido.com
The Data Protection Authotity, see their website here.