Privacy Policy
This Privacy Policy explains how Mutedo collects, uses and shares your personal data when you interact with us. This covers cases where you visit our website at https://mutedo.dk, use the Mutedo service via https://app.mutedo.dk, use the Mutedo app, contact us directly, sign up to our newsletter, or engage with us in any other way.
Definitions
“Mutedo service” or “our service” refers to anyinterface of our health assistant application. Including but not limited to:
a. Web (https://app.mutedo.dk)
b. Microsoft Teams App
Our roles and responsibilities
Mutedo may have different roles depending on how you interact with us.
When you use the Mutedo service: If you access our services through your employer, they have entered into a contractual agreement with Mutedo, making your employer the data controller and Mutedo the data processor. As the data processor, Mutedo is responsible for processing personal data on behalf of your employer as instructed and in compliance with GDPR. It's important to note that while your employer provides access to our services, they do not have access to your individual health information, which is protected under strict confidentiality and privacy standards. Detailed responsibilities and data protection measures are outlined in the service agreement with your employer.
Other interactions with Mutedo: This includes activities such as signing up for our newsletter, contacting us directly, or visiting our website (
https://mutedo.dk). In these cases, Mutedo acts as both the data controller and processor. As the data controller, we process your personal data based on explicit consent or our legitimate interests, which are detailed in the specific sections of our comprehensive privacy policy.
Types of Information we collect How We Use Your Personal Data and Why
Legal Grounds for Processing:
With Your Consent: We process your personal data only for specific purposes when you give us your consent. You can withdraw this consent at any time by contacting us at
support@mutedo.dk.
To Fulfill Our Contract: We process your personal data to fulfill our contractual obligations to you.
To Comply with Legal Obligations: We process your personal data as necessary to comply with our legal obligations.
For Our Legitimate Interests: We process your personal data for our legitimate interests, which include providing you a personalized and safe service.
Purposes for Using Your Information:
Registration: We use your data to register you as a new user. This involves collecting identity and contact information based on our need to fulfill our contract with you and our legitimate interests.
Service and Support: We provide services such as technical support, requiring identity, contact, and other user-generated data. This processing is necessary to fulfill our contract and for our legitimate interests.
Health assistant service: For those using our Health assistant feature, you may input sensitive information about your health and wellbeing. We store this with your consent.
Research and Development: We use anonymized data for research and development to improve our services. This may include collecting special category data with your consent and for our legitimate interests.
Fraud Prevention: We process necessary data to keep our services secure and operational, under our legal obligations and legitimate interests.
Communication and Marketing: You can opt-in to receive marketing emails. Service-related communications, like reminders and updates, will be sent as they are essential for managing your account and are based on our legitimate interests. You can manage your preferences through the user account settings or directly through links in our emails.
How We Collect Your Personal Data
When You Sign Up: when you register to use our platform, we collect your identity, contact details, profile information, and any user-generated content you provide. We use this information to send you a registration email, validate your eligibility, create your account, and enable your use of our platform. The lawful bases we rely on are to fulfill a contract, with your consent, and for our legitimate interests.
When You Use Mutedo: As you interact with our platform, we continue to collect personal data including your activity,communication preferences, and support requests. This may include identity, contact, profile, technical, behavioral, and special category data. Our collection and use of this data are based on contractual necessity, your consent, and our legitimate interests.
Using OpenAI Services: Mutedo utilizes OpenAI services to enhance certain features. Please note that your free text 'prompts' may be processed in the United States and stored for a maximum of 30 days by OpenAI. OpenAI does not use this data to train their models, as outlined in our termsof service with OpenAI. For more details on OpenAI's privacy practices, please visit their website.
Direct Interactions: You may also provide us with your identity and contact data through forms, or by engaging with us via post, phone, email, social media, or otherwise.
If You Do Not Provide Required Data: If you fail to provide necessary personal data when requested, which we need to comply with legal obligations or to perform our contract with you, we may not be able to provide you access to our platform. If this happens, we may need to deactivate your account, but we will notify you if this is the case.
Who Do We Share Your Personal Data With?
Mutedo's Commitment: At Mutedo, we are committed to protecting your personal data and will never sell it. We limit our sharing of your personal data strictly to scenarios required by law.
Circumstances When We May Share Your Data:
Legal Requirements: We may be required to share your data with legal authorities if it is necessary to comply with a legal obligation, respond to valid legal requests from law enforcement or other governmental bodies, or to protect the rights, property, or safety of our users, ourselves, or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.
Each instance where we might share your data is handled with the highest regard for privacy and security, complying strictly with the legal requirements and ensuring minimal data exposure.
What Are Your Rights?
Under EU data protection law, particularly the General Data Protection Regulation (GDPR), you have several important rights regarding your personal data. We encourage you to understand these rights as they are crucial in ensuring your data is handled properly:
The Right to Be Informed: You have the right to clear, transparent, and easily understandable information about how we use your personal data and your rights. This is why we provide this policy.
The Right of Access: You can request access to your personal data to verify the lawfulness of the processing.
The Right to Rectification: If your personal data is inaccurate or incomplete, you can update it yourself via your account settings or ask us to correct it.
The Right to Erasure (‘Right to be Forgotten’): You may request the deletion of your personal data when it is no longer necessary for us to retain it. This is not an absolute right and only applies in certain circumstances.
The Right to Restrict Processing: You have the right to request that we suspend the processing of your personal data, for example, if you want us to establish its accuracy or the reason for processing it.
The Right to Data Portability: This allows you to obtain and reuse your personal data across different services for your own purposes. If requested, we will provide your data in a structured, commonly used, and machine-readable format, such as a CSV file. You can also request that we transmit this data directly to another organization.
The Right to Object: You are entitled to object to certain types of processing, including processing for direct marketing (such as email campaigns).
The Right to Withdraw Consent: If we are processing your personal data based on your consent, you can withdraw this consent at any time. Upon doing so, we will cease any further processing of your data based on that consent.
The Right to Lodge a Complaint: If you believe that we are not processing your personal data in accordance with the law, you can lodge a complaint with the Danish Data Protection Agency.
Rights Related to Automated Decision Making Including Profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. We do not engage in such activities at Mutedo.If you need to exercise any ofthese rights or have questions about them, please contact us directly at support@mutedo.dk.
Data Security, Integrity, and Retention of Your Personal Data
Security Measures: At Mutedo, the security, integrity, and confidentiality of your personal data are paramount. We have implemented robust technical, administrative, and physical security measures to protect your personal data from unauthorized access, misuse, or disclosure. Access to your personal data is strictly limited to Mutedo employees who need to know this information to perform their job functions. They are obligated to process your personal data solely on our instructions and are bound by confidentiality agreements.
Breach Response: In the event of a personal data breach, we have procedures in place to promptly address the situation. Should any breach occur, we will notify you and the relevant regulatory authority without undue delay, as required by law. We will also take all necessary steps to mitigate the breach and prevent its recurrence, including notifying appropriate regulatory bodies like the Danish Data Protection Agency.
Data Retention: We retain your personal data only for as long as necessary to fulfill the purposes outlined in our Privacy Policy, or as long as is required or permitted by law. If you request the deletion of your account, we will remove your contact and identification details from our records within 60 days. Furthermore, any records of your interactions with our platform will be permanently and irrevocably anonymized, ensuring they cannot be reconstructed to identify you individually. This anonymization allows us touse the data for research while ensuring your privacy.
International Data Transfers
Data Storage and Processing within the EU: At Mutedo, we process and store all personal data within the European Union. This ensures that your personal data is protected under the stringent data protection regulations applicable in the EU.
Use of Services Outside the EU: Occasionally, we utilize services based outside the European Union, specifically in the United States. Whenever we do this, we take strict measures to ensure that any data transferred is cleansed of personal information to a degree that it cannot be traced back to any individual user. This process guarantees that the privacy and integrity of your data are maintained, even when interacting with systems located outside the EU.
Cookie policy
Our Platform may employ cookies to differentiate you from other users, thereby enhancing your experience and interaction with our platform. These cookies also enable us to continually refine and optimize our services.
Cookies are small text files that are placed on your computer, smartphone, or other device when you visit our website. They are used to help the site provide a better user experience, to track how our site is used or to remember certain information about the user.
We may use cookies for a number of reasons:A) Strictly Necessary Cookies: These are required for the operation of our website. They include, for instance, cookies that enable you to log into secure areas.
B) Analytical/Performance Cookies: These allow us to recognize and count the number of visitors and see how visitors move around our website. This helps us to improve the way our website works.
C) Functionality Cookies: These are used to recognize you when you return to our website. This enables us to personalize our content for you, greet you by name, and remember your preferences.
When you first visit our website, a banner or pop-up will appear asking for your consent to set cookies. By continuing to use our website, agreeing through the consent banner, or by setting your cookie preferences, you consent to our use of cookies as described in this policy. You can set your browser not to accept cookies, and the above website tells you how to remove cookies from your browser. However, some of our website features may not function as a result.
Please note that third parties (including, for example, advertising networks and providers of external services like web traffic analysis services) may also use cookies, over which we have no control. These cookies are likely to be analytical/performance cookies or targeting cookies.
Cookies can be "persistent" or "session" cookies. Persistent cookies remain on your computer when you have gone offline, while session cookies are deleted as soon as you close your web browser.
We may update this policy from time to time. Any changes we make to our cookie policy in the future will be posted on this page. Please check back frequently to see any updates or changes to our cookie policy.
Under GDPR, you have the right to request information about the cookies we store on your device and, if necessary, request the deletion of these cookies. Please contact us if you would like more information or if you would like to exercise this right.
Changes to our privacy policy
We reserve the right to make amendments to our Privacy Policy, the details of which will be promptly reflected on this page. When deemed necessary, we may communicate these changes to you via email or provide a notification upon your subsequent log-in to the Platform. By continuing to use the Platform post notification of any changes, you thereby signify your consent to the said alterations.
