Mitigram AB (“Mitigram”) values your privacy and is committed to protecting your personal data. This Privacy Policy provides a comprehensive overview of how Mitigram collects, uses, protects, and discloses personal information when you access or use Mitigram’s Marketplace Service (the “Service”).

Mitigram is based in Sweden, Europe, and your personal information is processed in accordance with Swedish privacy laws and the EU General Data Protection Regulation (GDPR).

By accessing or using the Service, you consent to the provisions set out in this Policy and Mitigram’s use of your information as described herein. If you disagree with this Policy, you must refrain from using the Service.

 

1. Personal Data Mitigram Collects

Mitigram may collect the following categories of personal data:

• Registration Information: Email address and affiliated entity required to create your User Account.
• Identity Data: Name, job title, industry, and geographical location (country and city).
• Technical Data: IP address, device type, browser details, usage patterns, and login data.
• Profile Data: User preferences, feedback, communication history, and actions within the Service.
• Third Party Services Data: Information received when you integrate your account with third-party services.

 

2. How Mitigram Collects Personal Data

Mitigram collects data primarily through:

• Direct interactions (e.g., account registration, profile updates, direct communications).
• Automated technologies (e.g., cookies, log files).
• Integration with third-party services (subject to their respective privacy policies).

 

3. Purposes and Legal Basis for Processing

Mitigram processes your personal data based on:

• Legitimate Interests: Providing, managing, and maintaining your user account and access to the Service; communicating Service- related information; ensuring platform security; performing business analytics; and continuously improving the quality of the Service.
• Legal Obligations: Complying with applicable laws, regulatory requirements, or responding to governmental requests. CONFIDENTIAL

 

4. Sharing of Personal Data

Mitigram may share personal data with:

• Service providers supporting operations (e.g., hosting, analytics). Regulatory or governmental entities to comply with legal requirements.
• Affiliates and business partners essential for Service provision.
• Relevant third parties in the event of a merger, acquisition, or business transfer involving Mitigram, subject to appropriate confidentiality arrangements. Mitigram ensures data protection through appropriate contractual safeguards.

 

5. International Data Transfers

Currently, Mitigram processes and stores personal data within the European Economic Area (EEA). Should Mitigram in the future transfer personal data outside the EEA, Mitigram will ensure compliance with applicable data protection laws, implementing adequate safeguards, such as Standard Contractual Clauses.

 

6. Data Security

Mitigram implements robust security measures, including encryption, access controls, and regular security audits, to safeguard your personal data against unauthorized access or disclosure. Mitigram is certified under ISO 27001:2022, demonstrating compliance with internationally recognized standards for information security management.

 

7. Data Retention

Mitigram retains personal data only as necessary to fulfill stated purposes, comply with legal obligations, resolve disputes, and enforce agreements.

 

8. User Data Protection Rights

You have the right to access your personal data, request correction or erasure of your data, restrict or object to data processing, request data portability, and withdraw consent at any time. Additionally, you may request the deletion of your User Account. Mitigram will comply within a reasonable timeframe, retaining only information necessary to comply with legal obligations or enforce agreements.

To exercise any of these rights, please contact Mitigram at privacy@mitigram.com.

 

9. User Account Responsibilities

User Accounts are created by Mitigram upon request from your employer (our customer company). You are responsible for ensuring all personal information provided to Mitigram remains accurate, current, and complete. You must maintain the confidentiality of your password and are responsible for all activities occurring under your User Account. CONFIDENTIAL Mitigram reserves the right to suspend or terminate accounts in case of violations of this policy, Mitigram’s Terms of Service, or applicable laws.

 

10. Code of Conduct

The Service may only be used lawfully. Users must not engage in actions that are defamatory, abusive, harassing, obscene, illegal, harmful to Mitigram or other Users, or disruptive to the Service’s integrity.

 

11. Authorized Business Representatives

The Service is strictly designed for professional use by authorized business representatives. User Accounts are exclusively created and managed by Mitigram upon the request of customer companies. Consequently, Mitigram does not collect, process, or store personal data relating to minors.

 

12. Third-Party Services

Mitigram is not responsible for the privacy practices of third-party services linked from the Service. Users should review third-party privacy policies before interacting or sharing personal information.

 

13. Policy Updates

Mitigram may periodically update this Privacy Policy. Changes will be communicated via the Service and reflected on this page with an updated revision date.

 

14. Contact Information

For inquiries, requests, or concerns regarding your data privacy: Mitigram AB Tulegatan 2A SE-113 58 Stockholm, Sweden Email: privacy@mitigram.com