Privacy Policy

 

MAPIDEA is a Location Intelligence Service owned and operated by Mapidea, Consultoria em Geografia S.A. (“MAPIDEA”, “Us,” or “We”), a Portuguese company. This document explains the information collected and stored at MAPIDEA and associated applications, web services, and other mechanisms associated with MAPIDEA (collectively, the “Service”). The Privacy Policy also explains how we use the information collected on the Service.

Policy acceptance

By visiting the MAPIDEA website (the “Site”) or using the Service, including by registering, or by otherwise providing us with personally identifiable information (such as an email address), You agree to the terms and conditions of this Privacy Policy.

Non-personal information collection

We collect information that is not personally identifiable in connection with use of the Site or the Service, such as login and device-related information (examples are: browser type, your IP address, and the date and time of day of your use).

Usage of non-personal information

We may use collected information to enhance the visitor experience of the Service, to operate and maintain the Service, to investigate and understand how our Service is used, to monitor and protect the security and integrity of the Service, and to analyze our business. We analyze traffic to the site in various ways, including using a service called Google Analytics. We use this information to generate statistics and to measure activity to improve the usefulness of the Site and the Service. Google Analytics is subject to the privacy policy of Google. By visiting the Site or using the Service, You are agreeing to the terms of the Google Privacy Policy that apply to Google Analytics. These terms can be found at “How Google uses data when you use our partners’ sites or apps”, located at https://www.google.com/policies/privacy/partners/, or any other URL Google may provide from time to time. We are not responsible for any changes made to the Google Privacy Policy or of advising You of such changes. We reserve the right to change analytical service providers at any time without notice.

Cookies

We use cookies to make interactions with the Site easy and meaningful. When You visit the Site, our servers send a cookie to your computer. Standing alone, cookies do not personally identify You; they merely recognize your Web browser. Unless You choose to identify yourself by opening an account, or filling out a form, You remain anonymous to us.

How we use Cookies

We use cookies for a variety of reasons detailed below. Unfortunately in most cases there are no industry standard options for disabling cookies without completely disabling the functionality and features they add to this site. It is recommended that you leave on all cookies if you are not sure whether you need them or not in case they are used to provide a service that you use.

Disabling Cookies

You can prevent the setting of cookies by adjusting the settings on your browser (see your browser Help for how to do this). Be aware that disabling cookies will affect the functionality of this and many other websites that you visit. Disabling cookies will usually result in also disabling certain functionality and features of the this site. Therefore it is recommended that you do not disable cookies.

The Cookies We Set

Email newsletters related cookies

This site offers newsletter or email subscription services and cookies may be used to remember if you are already registered and whether to show certain notifications which might only be valid to subscribed/unsubscribed users.

Forms related cookies

When you submit data to through a form such as those found on contact pages or comment forms cookies may be set to remember your user details for future correspondence.

Third Party Cookies

In some special cases we also use cookies provided by trusted third parties. The following section details which third party cookies you might encounter through this site.

This site uses Google Analytics which is one of the most widespread and trusted analytics solution on the web for helping us to understand how you use the site and ways that we can improve your experience. These cookies may track things such as how long you spend on the site and the pages that you visit so we can continue to produce engaging content.

For more information on Google Analytics cookies, see the official Google Analytics page.

Third party analytics are used to track and measure usage of this site so that we can continue to produce engaging content. These cookies may track things such as how long you spend on the site or pages you visit which helps us to understand how we can improve the site for you.

We also use social media buttons and/or plugins on this site that allow you to connect with your social network in various ways. For these to work the following social media sites including; LinkedIn, Facebook, Twitter and Instagram, will set cookies through our site which may be used to enhance your profile on their site or contribute to the data they hold for various purposes outlined in their respective privacy policies.

Personal information collection

If you subscribe to a MAPIDEA Service you pass us information regarding your Company Name, Billing Address, Fiscal ID number, company address, company phone number. If your MAPIDEA Subscription is hosted in a Mapidea managed server, personal information of You or your Subscription Instance users may be collected (i.e. name, username and email address) to created and manage the respective User Accounts. We also may collect personal information if You contact us or otherwise give it to us (e.g., in an email).

Usage and disclosure of personal information

We may use personal information to operate and maintain the Service, to investigate and understand how the Service is used, to monitor and protect the security and integrity of the Service, and to analyze our business. The Company may also use information You provide to contact You to further discuss your interest in the Services and to send You information regarding MAPIDEA. We may disclose personal information as required by law or in response to service of legal process, such as a court order, summons, subpoena, or the like. We may share personal information with our corporate affiliates and with business partners who provide services related to the Service (such as website hosting or payment processing). These business partners do not have the right to use this personal information for any purpose other than those related to the Service. Information about our users, including personal information, may be disclosed or transferred to entities now or in the future affiliated with MAPIDEA or as part of any merger, acquisition, change of control, debt financing, insolvency, bankruptcy or sale of our assets. Such information may be used in the businesses of any entity so receiving it. Except as provided above, we will not sell or transfer your personal information to third parties.

Customer data

Customer data is all the information, including company or personal information, text, images, location data or any other files that You or your MAPIDEA Subscription Users provide, or are provided on your behalf, to the Company through your use of the Service. We inform You that You will be the only responsible party of the provision of personal information. In regard to the compliance of the Privacy rules, You shall notify the provision of personal information to the Company through the address provided below. The Company will not collect this personal information. We will only process the personal information for the provision of the Service and it will not be processed for any other purposes.

Data Retention

We retain your company information for 2 years after which it is destroyed. Users information is destroyed upon the end of your MAPIDEA Subscription.

Data Security

We use industry standard physical, managerial, and technical safeguards to preserve the integrity and security of your personal information. We cannot, however, ensure the security of any information you transmit to the Service, and You do so at your own risk. Depending on where You live, you may have a legal right to receive notice of a security breach in writing or by emailing us at info@mapidea.com.

Your European Union (EU) Privacy Rights

In conformity with the Notice Principle of the EU-U.S. Privacy Shield Framework, COMPANY informs data subjects of the EU, Iceland, Liechtenstein, and Norway that:

  1. MAPIDEA is a company that declares its commitment to comply with the Privacy Shield Principles.

  2. MAPIDEA collects the following types of personal information:

  3. From those paying customers who choose to purchase a paid Subscription plan, information that you provide to use for the purpose of registering with MAPIDEA and/or subscribing to MAPIDEA services and/or email notifications, including name, address, email address, phone number, and organization information.

  4. From those who contact us via email, over the phone, or in person: name, email address, and social media information, if provided.

  5. MAPIDEA is fully committed to subject to the Privacy Principles all personal information received from the EU in reliance on the Privacy Shield.

  6. The purposes for which MAPIDEA collects and uses personal information are to enhance the visitor experience of the Service; to operate and maintain the Service; to investigate and understand how the Service is used; to monitor and protect the security and integrity of the Service; and to analyze our business. MAPIDEA may collect, store, and use non-personal information about your visits to and use of its websites, including information about your computer and your visits to its websites such as your IP address, geographical location, browser type, referral source, length of visit and number of page views.

  7. MAPIDEA may be contacted with any inquiries or complaints regarding non-compliance with the EU-U.S. Privacy Shield by writing to:

    Mapidea
    Rua Inocêncio Francisco da Silva, nº 16, 1D  1500-348 Lisboa PORTUGAL
    info@mapidea.com

  1. The type of third parties to which MAPIDEA discloses Personal Information are corporate affiliates and business partners, for the limited and specified purpose of providing services related to the Service (such as website hosting or payment processing). These business partners do not have the right to use this Personal Information for any purpose other than those related to the Service, and onward transfers only occur on the basis of a contract. We may disclose Personal Information about our users to entities now or in the future affiliated with MAPIDEA for the purpose of enhancing the visitor experience of the Service; operating and maintaining the Service; investigating and understanding how the Service is used; monitoring and protecting the security and integrity of the Service; and analyzing our business. We may also disclose Personal Information about our users as part of any merger, acquisition, change of control, debt financing, insolvency, bankruptcy or sale of our assets for the purpose of completing our contractual obligations. Except as provided above, we will not sell or transfer your Personal Information to third parties.

  2. Anyone in the EU whose personal information has been transferred to the United States has a right to access their personal information.

  3. The choices and means MAPIDEA offers individuals for limiting the use and disclosure of their personal information are the following: writing to us at any of the physical or email addresses indicated in v. and requesting the limitation or disclosure of their personal information.

  4. The independent dispute resolution bodies MAPIDEA designates to address individuals’ complaints regarding our non-compliance with the EU-U.S. Privacy Shield are the EU data protection authorities (DPAs); MAPIDEA voluntarily commits to cooperate with EU DPAs.

  5. MAPIDEA is required to disclose personal information in response to lawful requests by public authorities, including to meet national security, law enforcement, or other public interest requirements.

  6. MAPIDEA is liable in cases of onward transfers to third parties. This privacy policy does not cover any applications, software, or web-based applications supported or created by MAPIDEA or its partners.

In accordance with the Data Integrity and Purpose Limitation Principle of the EU-U.S. Privacy Shield, MAPIDEA will take reasonable steps to ensure that personal information is relevant to its intended use, accurate, complete, and current.In conformity with the Choice Principle of the EU-U.S. Privacy Shield, MAPIDEA offers data subjects of the EU, Iceland, Liechtenstein, and Norway the opportunity to opt out when their personal information is (i) to be disclosed to a third party or (ii) to be used for a purpose that is materially different from the purpose(s) for which it was originally collected or subsequently authorized.

In accordance with the Security Principle of the EU-U.S. Privacy Shield, MAPIDEA shall take reasonable and appropriate security measures, taking into account the risks involved in the processing and the nature of the data. In accordance with the Recourse, Enforcement and Liability Principle of the EU-U.S. Privacy Shield, MAPIDEA has robust mechanisms to ensure compliance with the Principles and provides recourse for EU data subjects whose personal information have been processed in a non-compliant manner, including effective remedies. MAPIDEA complies with the Recourse, Enforcement and Liability Principle through a self-assessment system which includes internal procedures ensuring that employees receive training on the implementation of the organization’s privacy policies. Compliance is periodically reviewed in an objective manner. In conformity with the Accountability for Onward Transfer Principle of the EU-U.S. Privacy Shield, MAPIDEA acknowledges that the onward transfer of the personal information of data subjects of the EU, Iceland, Liechtenstein, and Norway will only take place (i) for limited and specified purposes, (ii) on the basis of a contract or comparable arrangement within a corporate group and (iii) only if that contract provides the same level of protection as the one guaranteed by the Principles.

Changes to our Privacy Policy

We may change this privacy policy from time to time. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice by adding a notice on the Services homepages, login screens, or by sending you an email notification. We will also keep prior versions of this Privacy Policy in an archive for your review. We encourage you to review our privacy policy whenever you use the Services to stay informed about our information practices and the ways you can help protect your privacy.

If you disagree with any changes to this privacy policy, you will need to stop using the Services and cancel your Subscriptions.

Contact Us

If You have questions or concerns about how your information is handled, please direct your inquiry to Mapidea, as set forth below.

Mapidea
Rua Inocêncio Francisco da Silva, nº 16, 1D 1500-348 Lisboa PORTUGAL
info@mapidea.com

MAPIDEA Personal Data Protection Agreement

This MAPIDEA Personal Data Protection Agreement (“PDPA”) supplements the MAPIDEA Master Subscription License and Services Agreement (“Agreement”) set forth in the applicable Order Form between Mapidea, Consultoria em Geografia S.A. (“MAPIDEA,” “Processor,” or “us”) and you (“Customer,” “Controller,” or “You”), (together, the “Parties,” “us,” or “we”).

The PDPA reflects your agreement with respect to MAPIDEA’s Processing of your Personal Data in accordance with the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016 (the “GDPR”). To the extent that the terms of this PDPA are inconsistent with the Agreement or applicable Order Form, this PDPA shall control as it pertains to the Processing of Personal Data. Any references to the Agreement will be construed as including this PDPA. All capitalized terms not defined in this PDPA will have the meanings set forth in the Agreement.

Personal Data Processing Terms

“Personal Data” means any information relating to an identified or identifiable natural person (“Data Subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

“Controller” means the natural or legal person, which, alone or jointly with others, determines the purposes and means of the processing of personal data.

“Processor” means a natural or legal person which processes personal data on behalf of the Controller.

“Subprocessor” means a processor engaged by the Processor to Process Personal Data controlled by the Controller.

The Parties

  1. You are the Controller of any Personal Data in Your Content.

  2. MAPIDEA is the Processor of such Personal Data, Processing it only on documented instructions from the Controller, including with regard to transfers of Personal Data to countries outside the European Economic Area or to international organisations, unless required to do so by Union or Member State law to which the processor is subject, in which case it is obliged to inform the Controller.

  3. You and MAPIDEA agree to the terms and conditions contained in this PDPA in order to comply with the provisions of the GDPR.

Terms and Conditions

  1. A. Processing

    1. In its performance of the Agreement MAPIDEA may have access to Personal Data of which you are the Controller.

    2. MAPIDEA’s purpose for processing any Personal Data of which You are the Controller is the provision of Services as defined in the Agreement.

    3. The Personal Data of which You are Controller and that MAPIDEA may process as a Processor is varied and may include geolocation, among other types of Personal Data.

    4. The main categories of Data Subjects are identified or identifiable natural persons about whom You provide Personal Data via your use of the Services, and at your discretion.

    5. MAPIDEA will adopt technical and organizational measures appropriate to the type of Personal Data to be processed and to the purposes and risks of the Processing, and will implement measures by design and default to ensure the protection of the rights of the Data Subject.

    6. MAPIDEA will not use any Personal Data You control and which we processes on your behalf for purposes other than those described in this PDPA, nor will it share the Personal Data with third parties, unless you have previously and expressly authorized such transmission. In the event MAPIDEA uses the data for different purposes, it will be considered a controller in accordance with the provisions of applicable regulations.

    7. MAPIDEA will, insofar as possible, assist You with your obligation to respond to requests for exercising Data Subject’s rights.

    8. Taking into account the nature of the Processing and the information available to MAPIDEA, we will assist you with ensuring compliance with the obligations laid out in GDPR Articles 32 to 36.

  2. Duty of Confidentiality

    1. MAPIDEA is committed to protecting the confidentiality of your Personal Data subject to Processing under the Agreement, and to maintaining the absolute confidentiality of any Personal Data that may be known to us at the time the Services are provided. MAPIDEA commits to extending these obligations to all personnel who have authorization to process the Personal Data of which you are the Controller.

  3. Subprocessors

    1. In providing the Services we may use third parties for cloud hosting, storage, or technical support like the following: “Amazon Web Services, Inc”, “Microsoft Ireland Operations, Ltd.”, etc.

    2. The data processing performed by the Subprocessors will conform to our documented instructions. MAPIDEA has formalized contracts through which the Subprocessors undertake to treat the data in conditions analogous to those provided for in this PDPA.

    3. You agree that Subprocessors may be substituted by other service providers chosen by MAPIDEA. In the event of substitution MAPIDEA agrees to notify You with at least one (1) month of notice so that You can indicate your agreement with respect to the substitution. The substitution of the existing Subprocessor by a new Subprocessor will create an assignment.

    4. If MAPIDEA engages another Subprocessor to comply with the object and purpose of the Services, You may authorize MAPIDEA to perform such subprocessing by prior specific or general written authorization.

    5. The contract that regulates the relationship between MAPIDEA and existing or future Subprocessors shall provide sufficient guarantees regarding the application of appropriate technical and organizational measures, and shall impose the same data protection obligations as set out in this PDPA and in the Agreement between you and MAPIDEA.

    6. MAPIDEA shall be fully liable for any acts or omissions of its Subprocessors with respect to their Personal Data protection obligations to the same extent it would be liable if directly performing the services of each Subprocessor under the terms of this PDPA, except as otherwise set forth in the Agreement.

  4. Audits

    1. MAPIDEA shall allow for and contribute to audits or inspections conducted by You which are conducted by an authorized auditor of your choice—as reasonably required by you to ensure that MAPIDEA is complying with its obligations under this PDPA or the GDPR.

    2. Prior to any audit or inspection You or the authorized auditor of your choice will signed a nondisclosure agreement acceptable to MAPIDEA in order to respect the confidentiality of MAPIDEA’s business and commercial interests, and to respect the confidentiality of third-party data and information of which You or the authorized auditor of your choice may become aware in the course of undertaking any audit or inspection.

    3. MAPIDEA shall make available to You all information necessary to demonstrate compliance with the obligations laid down in this PDPA or the GDPR.

    4. In the event you request or conduct an audit or inspection, You will bear your own costs in relation to it. You agree to reimburse MAPIDEA for any services rendered at our then-current, reasonable professional services rates.

    5. MAPIDEA agrees to come to a mutual understanding with the Processor on the timing, scope, security controls, confidentiality requirements, and duration of any audit or inspection.

  5. Elimination of Personal Data

    1. Once the existing contractual relationship between us has concluded, Personal Data will be deleted or returned to You at your discretion, eliminating as many copies of the same as exist.

    2. The above applies unless any European Union or Member State law requires the storage of the Personal Data.

  6. Duration

    1. The duration of the processing of Personal Data to be carried out by MAPIDEA is determined by the Service Term in the Subscription Plan