GDPR
Last Update: December 14, 2024
What is GDPR?
The EU General Data Protection Regulation ("GDPR") came into force across the European Union on 25th May 2018. The Regulation aims to standardize data protection laws and processing across the EU; affording individuals stronger, more consistent rights to access and control their personal information.
Our Commitment
Memberia ('Company' or 'we' or 'us' or 'our') is committed to ensuring the security and protection of the personal information that we process, and to provide a compliant and consistent approach to data protection. We recognize our obligations in updating and expanding this program to meet the demands of the GDPR.
Scope of the GDPR
The GDPR applies to both EU and non-EU businesses who a) market their products to people in the EU or who b) monitor the behavior of people in the EU. In other words, even if you're based outside of the EU but you control or process the data of EU citizens, the GDPR will apply to you.
Important Definitions in GDPR
| TERM | DEFINITION |
|---|---|
| Data Subject | A person who lives in the EU. |
| Personal Data | Any information related to an identified/identifiable data subject (e.g., name, national ID number, address, IP address, health info). |
| Controller | A natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. |
| Processor | A natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller. |
| Third Party | A natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data. |
| Processing | Any operation or set of operations which is performed on personal data, such as collection, recording, organization, storage, adaptation, retrieval, use, disclosure, alignment, restriction, erasure or destruction. |
| Consent | Any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she signifies agreement to the processing of personal data relating to him or her. |
| Personal Data Breach | A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed. |
| Supervisory Authority | One or more governmental agencies in a member state who oversee that country's data privacy enforcement. |
What is Personal Data as per GDPR?
As per GDPR, personal data is any information relating to an identified or identifiable individual; meaning, information that could be used, on its own or in conjunction with other data, to identify an individual. Personal data will include not only data that is commonly considered to be personal in nature (e.g., social security numbers, names, physical addresses, email addresses), but also data such as IP addresses, behavioral data, location data, biometric data, financial information, and much more. It's also important to note that even personal data that has been "pseudonymized" can be considered personal data if the pseudonym can be linked to any particular individual.
Your Rights under GDPR
At the heart of GDPR lies a set of rights a person can exercise against organizations processing their personal data. Specifically, individuals have the right to:
| RIGHT | DESCRIPTION |
|---|---|
| Access | Request access to your personal data and learn how an organization uses it. |
| Erasure | Withdraw consent to store and use personal data and have the information erased. |
| Data Portability | Transfer your data from one service provider to another, and current provider must comply with this request. |
| Rectification | Require any errors in personal data to be corrected, and an organization must reply to the request within one month. |
| To Be Informed | Companies must be transparent about how they gather personal information, and must do it before they collect the data. |
| Restrict Processing | Block and suppress processing of personal data. Under suppressing, an organization can still store personal information but cannot use it. |
| Stop Processing | Object to using and processing personal data, including direct marketing, profiling, and statistical research. |
Memberia and Customer Relationship
Unless explicitly clarified in any engagement, while Customer is Controller, Memberia will be both Processor and Controller of personal data with the consent of Customer.
What Types of Information Does Memberia Collect?
We collect certain information about visitors and users of our websites and applications.
1) Information from Organizations/Businesses
Name, company name, address, email address, phone number(s), payment details (like credit card information), the responses you give to surveys initiated for research purposes, and support queries. This information is used to provide you with and/or improve our services; for example, processing subscriptions, verifying your identity, contacting you, and invoicing you.
2) Information from Users and Members
Names, member IDs, email addresses, phone numbers, other contact details, information about your device and about your visits to and use of our application (including information about your browser, IP address), QR/barcode verification records, membership status and dates, transaction details, support queries, and web analytics data.
3) Information from Website Visitors
The device type and browser you are using, network connection, IP address, information about the cookies installed on your device, support queries, and web analytics data.
4) Information from Chat Support Users
Name, email address, information about the device and browser you use, chat transcript, and other personal information you provide us during our chat. We may request additional documentation from you during our chat to verify your identity.
How Do We Collect Personal Information?
When you perform certain actions like register on our platform, buy/order items or services, subscribe to our newsletter, submit feedback, fill out a survey, or send us a communication via any available option. We also collect personal information automatically as you navigate through the sites or when you use services associated with our platform.
How Does Memberia Use Personal Information?
Your information is used when we need to identify you to ease processing of transactions happening on our platform. Other legitimate interests may include:
- Providing you with membership management and verification services
- Verifying your identity when you sign in to our platform
- Providing support services
- Sharing company news and service updates
- Checking your actions to identify potentially fraudulent activity and ensure compliance with user terms
- Responding to your comments or queries, asking for your feedback
- Managing legal/operational affairs including risk management
- Improving our products and services
When Do We Disclose Your Personal Information?
Your personal information may be accessed by individuals, employees, or legal entities empowered by Memberia, who need it to perform their tasks and duties to provide you with proper services. We may share your Personal Information with third parties in the following cases:
- When the relevant customer has consented to the disclosure
- When it's needed for support purposes and/or service delivery
- Through subcontractors or service providers who assist us, including infrastructure providers who may transfer and access your personal information from other countries
- When it's required by the law either to protect our rights, or someone from injury, and/or to comply with a judicial proceeding, court order, or legal process
How Long Do We Keep Your Personal Information?
Your private information is kept on our servers as long as it's needed to provide you and your company or team with our services and to be able to comply with the legal obligations. If you don't want us to store your personal information, you have the right to get it erased, but in this case, we'll have to close your Memberia account. Information about deleted accounts is kept on our servers so we could use it for our legitimate business interests: to comply with the law, prevent fraud, resolve disputes, troubleshoot problems, and assist with investigations.
How Is Your Personal Information Kept Secure?
In order to keep your information secure, we apply certain organizational measures to protect it against unauthorized or unlawful use and accidental loss or destruction. We share and provide access to your information to the minimum extent necessary. To store your information we use secure servers. We verify and identify all individuals who request access to private information before granting them access. We use SSL-certificate encryption to protect data transfer. All web and mobile connections for data transfer are encrypted between our servers and the users. Our database is backed up regularly to prevent data loss. Original database and its backups can only be accessed by authorized personnel.
How Can You Access and Manage Your Personal Information?
All personal information that we collect about you is available in your account or in our servers and available for you on demand. You have the right to make all the necessary edits and corrections of any errors available in this data. You can receive your personal information in a structured, machine-readable format, erase it, or restrict its processing. You can also object to processing of your personal data based on a set of our legitimate interests, such as profiling for direct marketing. If it happens that you have some unresolved concerns you have the right to complain to the data protection authorities.
What Happens in the Case of Personal Data Breach?
In the case of a personal data breach, Memberia shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the personal data breach to the supervisory authority competent in accordance with Article 55, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons. Memberia shall notify the customer without undue delay after becoming aware of a personal data breach.
Marketing Choices Regarding Your Personal Information
In case we have your consent, we will send you marketing materials that will include information about products, services, and updates that may be interesting for you. If you decide not to receive such email notifications you can easily opt-out using the unsubscribe option or contact us via memberiapro@hotmail.com.
Cookies
Memberia and all websites of our partners are using cookies to analyze user behavior, gather demographic info about our user base in general. A cookie is a small file that's placed on your device when you visit any website. Using the browser settings of your device you can manage the use of cookies; in case you disable those you can limit certain features on our websites.
Web Beacons
Another technology we're using is Web Beacons. It's required to track your use of our website, on occasions like promotions or newsletter use. The data we collect via web beacons allows us to track the number of users who opened our newsletters. Also, web beacons help us to understand the behavior of our customers, members, and visitors.
Analytics
Memberia websites may use analytics services to analyze user behavior. These analytics tools use cookies to gather data about user activity. This data is used to evaluate user behavior, compile reports, and provide data to services relating to website activity. You can block the use of cookies via your browser settings if you prefer not to provide browsing data.
Links to Other Websites
If you click on a link to a third party site, you will leave Memberia and go to the site you selected. Since we can't control activities of third parties, we are not accepting responsibility for any use of your personal information by those parties. Please review the privacy policy of any other service provider from whom you request services.
Use of Artificial Intelligence
The AI features offered within our services are provided through third-party AI services. When these features are used, the processed data is transmitted to and processed by the respective AI service. This process is carried out to deliver the services and enhance the user experience. AI features can be collectively disabled for all users via the Organization page.
Changes in Our Privacy Policy
We reserve the right to change or modify this Privacy Policy at any time. In case some changes are applied, we will publish them in the Privacy Policy section. You will be notified via email that certain changes to our Policy were applied.
Contact Information
If you have any questions regarding this Privacy Policy, including processing of your personal information, or if you believe your privacy rights have been violated, please email us at memberiapro@hotmail.com or use the "Request Call" feature on our website to get in touch. We will respond to all requests, inquiries or concerns within fifteen (15) days.
Beta Version Information
This product is currently in beta. You can create an account to try the system without entering any personal information.