Monadd Ltd Privacy Policy
How Monadd Ltd uses data
Monadd is a limited company registered in London, England. We run this website (monadd.io) and its subdomains.
Monadd is committed to protecting the privacy of visitors to our website, as well as subscribers and users of our product. We are further committed to upholding our obligations under the EU General Data Protection Regulation 2016/679 (“GDPR”). This privacy policy governs the relationship between Monadd and its users in respect of their data, namely what data we collect, how it is used, and how it is protected.
Monadd Ltd facilitates postal address updating when moving to a new location.
We will not use this personal data for other purposes without asking your permission. We will not keep this information for longer than necessary.
We use sub-processor services to publish updates, log our code, keep in touch with people and understand how we can do all of these things better. Here you can find out what these services are and how we handle data for user research and improving Monadd Ltd core service.
This page was last updated on 11 March, 2022
Definitions
The definitions below are adapted from the GDPR.
Personal data is any information relating to a user, by reference to which the user can be identified, directly or indirectly. Personal data broadly includes names, ID numbers, location data, and other factors relating to the identity of the user.
User is any natural or legal person who visits the website (monadd.io) or its subdomains, subscribes to our product, uses our product, or otherwise receives communications from Monadd.
Service refers to the primary service provided by Monadd which enables users to change their physical address as registered with select service providers.
Service provider is the entity with which a user seeks to change their postal address that was originally provided pursuant to the performance of a service by the entity, such as the provision of utilities.
Vendor is anyone contracted by Monadd to perform business-related functions, such as hosting or processing payments.
Our websites
We use the following services to run our website and subdomains to publish updates, log code, keep in touch with people, and understand how people are using them.
Google API Services
We use Google API Services to validate that (1) you are a legitimate Gmail email user, and (2) accurately identify service providers. Monadd's use and transfer to any other app of information received from Google APIs adhere to Google API Services User Data Policy, including the Limited Use requirements. We use minimal and technically feasible permissions from Google API Services to only collect the information about service providers associated with your email address. We do not store, collect or transfer any information for any other purpose other than to identify your service providers and notify them about your move. You can read Google's API Services user data policy here.
Google Analytics
We track visitors to Monadd’s websites using Google Analytics, which collects information about how people are using our sites to allow us to improve their experience. This may include information such as aggregated information from computers' Internet Protocol (“IP”) address, browser versions, pages of our websites that people visit, the time and date of your visit, the time spent on those pages, and other statistics. Data is stored indefinitely, so we can see how use of our website changes over time.
Wix
Monadd's website uses Wix as the CMS (Content Management System) to update the content you see on monadd.io. Wix’s approach to customer data is outlined in their privacy policy.
Metomic
We use Metomic to allow all users and visitors to manage their cookie consent, which allows us to keep our website and services GDPR-friendly. Find out more about how they use data in their privacy statement.
Github
We use GitHub to host code, which allows us to keep track of changes and best organize our code. Find out more about how they use data in their privacy statement.
Hotjar
We use Hotjar to see what areas of Monadd are used with frequency, it allows us to keep track of how our website and app are used. Find out more about how they use data in their privacy statement.
Amazon Web Services
Our API runs on AWS lambda served by AWS API gateway, we do this so it can be as efficient as possible providing you with the best experience. We also handle API routing using AWS cloud-front and route 53. You can read more about privacy on Amazon AWS in their Data Privacy FAQ.
Netlify
Our webapp is hosted using Netlify, to enable us to smoothly deliver updates and manage our deployments. You can read more about your data and privacy on Netlify's in their privacy policy.
Our social media accounts
We use various social media accounts to share our work. We occasionally use the analytics tools provided by these platforms to understand how we can use these services better. Our social media accounts include:
- Monadd on Twitter (Privacy policy)
- Monadd on LinkedIn (Privacy policy)
- Monadd on Facebook (Privacy Policy)
- Monadd on Instagram (Privacy Policy)
How we collect and use personal data
We collect the data volunteered by you in the legitimate interest of using our services and signing to communications, including:
- When you enroll you will be requested to provide us with details which can include your name, telephone number, email address, old and new postal address, and where applicable, tenant agreement and utility bills.
- We collect billing and payment information you provide when you access our paid services.
- We collect Personal Data when you communicate with us or if you sign up to receive promotional information via email – including full name and email address.
- We may also receive information about you from publicly and commercially available sources and to match your information to your service providers as permitted by law.
- We use the personal information that we collect as necessary and appropriate for the following purposes
- To provide our products and services. We use your personal information to provide you with the products, services, and features that you or your company have requested; to respond to inquiries we receive from you; to verify your identity and in connection with a transaction that you have initiated.
- To improve our products and services and to analyse how members navigate and use our products and services and individual features.
- For audit and reporting purposes, to perform accounting and administrative tasks, and to enforce or manage legal claims.
How we use your data
Monadd is committed to processing your personal data lawfully, fairly and transparently. We only collect your data with your consent and for specific and legitimate purposes.
Communications
We process personal data during communications with users, including via email, newsletters, our social media accounts, or the Wix contact form.
Our Service
We also process a user’s personal data for the purposes of effectively changing their postal addresses with their selected service providers. Our staff only have access to user personal data to facilitate this process as is necessary and appropriate. By signing up for our Service and specific features thereof, you consent to the processing of your personal data in this manner so we may fulfil our obligations to you.
Review and audit
Personal data, such as your name, location and email address, may be processed to evaluate the performance of our Service by evaluating user experience. This periodic review allows us to improve our Service to satisfy user expectations. User personal data may also be processed for auditing and reporting purposes, as well as general administrative and accounting operations.
Sharing of your data
Monadd does not share your personal data with third parties except for the specific and legitimate purposes outlined above. We do not share your personal data with third parties for promotional purposes, nor do we otherwise sell your personal data to third parties. Monadd only shares your personal data under the following conditions:
- With service providers as explicitly selected by the user for the purposes of changing their postal addresses;
- With vendors only as necessary for the effective performance of our Service and other obligations to the user;
- As required by any applicable law.
We take all reasonable steps to ensure that users’ personal data is processed securely by the entities we share it with. If it is necessary to transfer personal data to third parties outside the European Economic Area, we will only do so if the third party is within a jurisdiction governed by analogous data protection legislation. While we believe our sub-processor vendors share our commitment to privacy and security, we do not ultimately have control over their privacy policies.
How we store your data
Monadd ensures that any software or device used to access or store user data will utilise the best security standards. This includes ensuring that Monadd is built in a security-hardened environment, with end-to-end encryption in place for all data in transit, and data at rest is encrypted. External audits of the data environment are carried out by external security professionals. A summary of the audit will be made available on the Monadd website.
Monadd only stores user personal data as long as necessary and appropriate for the legitimate purposes outlined above. We store user personal data for a period of 2 years, after which the data is irrevocably deleted. A user may request deletion of their data at any time before the 2 year period, provided that doing so does not interfere with the performance of any existing obligations of Monadd to the user.
Processing your requests
In certain cases, separate consent is not required, including:
- For the performance of a contract: To perform our contractual obligations to you where we need to provide your Personal Data to our service providers, where we need to collect Personal Data from third party sources and when you access third party products and services, where we collect data from third parties or publicly-available sources.
- To meet legal obligations.
- For Legitimate Interests: to send you communications about the status of your order and any processing results from Monadd.
Things we don't do
Monadd Ltd doesn’t participate in the following data processing activities:
- Buying or selling email address lists
- Telephone marketing
- Postal marketing
We don’t use “soft opt-in”, meaning you won’t receive any marketing communication from us unless you’ve specifically agreed to it and signed up to receive our updates.
Keeping data secure
We follow best security practices, like HTTPS, VPC (Virtual Private Cloud) and we pseudonymise collected data as much as possible.
We maintain our technical infrastructure and only specific members of the team can access these servers. for more on our security measures visit our Security page.
Reviewing how we use data
Every quarter, we review our documentation of the data we handle and third party services we use. This helps us continuously improve our processes and hold ourselves to account. We will update this document as necessary.
How to control cookies
You can opt out of our analytics by turning on Do Not Track in your browser. We also employ Metomic to manage the cookies available on the website and gather your consent on cookie use. Metomic appears on the left bottom corner of the screen when you first visit our website.
Find out how to do this for Google Chrome, Firefox, Safari, Internet Explorer and Microsoft Edge.
Breach of Policy
In the event of a data breach, a violation of user rights, or a failure by Monadd to comply with this policy or other applicable laws, users may submit a complaint in writing to the Data Protection Officer (support@monadd.io). The DPO will respond to the complaint within 14 days of receipt. If a user remains dissatisfied with the outcome, they may pursue other avenues of recourse, including contacting the Information Commissioner’s Office. Our ICO registration number is: ZA516677.
Your rights and getting in touch
The General Data Protection Regulation gives EU citizens the following rights:
- Right to be informed
- Right of access
- Right to rectification
- Right to erasure
- Right to restrict processing
- Right to data portability
- Right to object
- Rights related to automated decision-making, including profiling
To exercise any of these rights, please contact us at support@monadd.io and we'll respond. We work to high standards when it comes to processing your personal information. You can find information specific to the services we use or our activities in the relevant sections of this document.
Our postal address is Monadd Ltd, 33 Foley Street, Work.Life, London, UK W1W 7TL
If you aren’t satisfied by our response, you can contact the Information Commissioner’s Office.
Changes to Policy
Monadd reserves the right to update or modify this policy without prior notice. We undertake to inform users of these changes as soon thereafter as possible via our communication channels.