At MIXIE we take privacy very seriously. Therefore, we want you to know that your personal data will be treated in accordance with the requirements and guarantees set out in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and in the Spanish regulations that develop it.
Who is responsible for the processing of your data?
The entity responsible for the processing of your personal data is MIXIE DIGITAL, S.L. (“MIXIE” or “we” or “us”), a Spanish company with registered office at Calle Puio 12 – 3C, 20009 Donostia-San Sebastián (Spain), and with C.I.F. B01658152. If you have any questions, you can contact us at firstname.lastname@example.org.
What personal data do we process?
As you will understand, in order to make use of our Platform and our Services or to be able to answer your queries, it is necessary that we request and process certain personal information. Generally, this information is provided to us by you when you create an account with MIXIE through our App or Platform or when you contact us with a query.
The personal data that we will request from you are those that in each case are necessary for us to provide you with our Services and/or allow you to use the functionalities enabled on our Platform. We will not ask you for personal data that are not adequate or relevant and we will indicate those that are mandatory.
Below, we show you some examples of the type of data we process:
Depending on the case, the registration and account creation process may be done directly on our App or Platform or through a third-party platform on which our Services may be available (for example, a trade show Organizer that has enabled our services on its own platform). In this case, the account will be created in MIXIE from the data associated with your account on such third-party platform (so that you do not have to enter the data manually again). In case we have enabled this system, you can also register and create an account with us through your LinkedIn user account, without the need to create a specific password on our Platform. In this case, we will obtain the email address and professional data associated with your account/profile on that platform. You should note that the data that such platform may share with us by linking your account with our Platform will depend on the configuration of your account on such platform and its privacy policies, which we recommend you to review.
By accessing our Services through a third-party platform, you understand and agree that the data provided for the creation of your account on the third-party platform will be used to register you as a User of our Platform. In any case, we may occasionally ask you to complete certain data that may be incomplete in your user account through which you access our Services and/or, for security reasons, we may require you to validate your e-mail and/or complete the registration process directly on our Platform so that you can access certain features (for example, to edit/consult data associated with your account), creating a specific password to access your account with us.
For what purposes do we process your data?
The purposes for which we will use your data will depend on the reason for which you have provided them in each case, the relationship you have with us and/or the services or functionality you use. Below, we show you the purposes for which we may use your data.
We use the account data to register you in our system, create and manage your account, allow you to access your account and make use of the associated functionalities, send you relevant notifications about your account and provide you with support and assistance when you need it. In the event that you are the contact person for an Organizer, Exhibitor or Company, we use your identification and contact details as the contact person and contact person to manage our relationship with the Organizer, Exhibitor or Company on whose behalf you create and use the account.
This purpose may include sending communications related to your user status, for example, for the following reasons:
We also use the account data and interaction data generated from your use of our Platform to provide our Services properly and to enable you to use the features related to Mixie Points.
Mixie Points are primarily intended to streamline and facilitate the interaction between the Exhibitors/Companies that enable them and the Visitors who are interested in their products/news by accessing the Mixie Points enabled at their booths at Fairs or Private Exhibitions. Therefore, as an essential part of the service provided by MIXIE to its Users, when a Visitor scans a QR code enabled in a Mixie Point, we process your personal data to allow you to access the contents enabled by the respective Exhibitor or Company in the corresponding Mixie Point that you are voluntarily accessing by scanning the code. We share your data with the Exhibitor or Company with whose Mixie Point you have interacted, so that the latter can (i) know which Visitors have shown interest in consulting the Promotional Content that the Exhibitor or Company has made available; (ii) to contact the Visitor afterwards (given the interest that the Visitor has shown in knowing its products and novelties) in order to know its opinion about them and, if necessary, send additional information and/or initiate potential professional or commercial relationships, provided that the Visitor is interested in it. Likewise, we may also share the data of the Visitors who interact with the Mixie Points set up in a Fair with the Organizer so that it can evaluate the interest shown by the Visitors in the different Mixie Points set up in the Fair and be able to know their opinion about the organization and issues related to the Fair. The personal data that we share are those that the Visitor himself has provided when creating his account (identification and professional contact data), the Mixie Point with which he has interacted and the date of access to the Mixie Point.
We use the information you provide when you contact us in order to respond to your inquiries, provide support and help you resolve issues appropriately. To do this, we may use your contact details and, where appropriate, we may need to use other information we have about you (your account details, technical information about your device or App/Platform usage data), if necessary to resolve technical issues affecting your account or our App/Platform.
Provided that you have authorized us to do so when registering and according to your preferences, we may use your contact information to keep you informed by e-mail about news, updates and new products and services that we believe may be of interest to you within the scope of our activity, as well as (provided that you have expressly consented) to send you commercial communications relating to Organizers, Exhibitors or Companies. You may stop receiving this type of communications at any time by clicking on the unsubscribe option that you will find in all our communications or by sending us an e-mail expressing your opposition.
We may use the technical information generated by your use of our Platform and interaction data to help further the security of our systems, detect anomalous or potentially fraudulent usage patterns, diagnose and resolve technical issues, and perform maintenance. We may also use your account and interaction data to analyze and understand how our Platform and Services are used and, in this way, gather statistics that allow us to detect bugs, identify potential improvements, optimize their operation, develop new features and constantly improve our Services.
We may process and retain certain personal information (such as account and interaction data) to comply with the legal obligations to which we are subject in each case, as well as to maintain the necessary records for the exercise or defense of our rights against potential claims or requests that we may receive.
What is the legal basis for the processing of data?
When we collect and process your personal information, we do so because there is a legal basis that justifies and legitimizes the processing of the data. Therefore, our processing of your information will be based on one of the following reasons.
Therefore, as a consubstantial part of such service, the use of Mixie Points necessarily entails the access of Organizers, Companies and/or Exhibitors, as appropriate, to the data of the Visitors who have interacted with their Mixie Points (given the explicit interest they have shown by being interested in their products and novelties) in order to know which Visitors have interacted with their Mixie Points and to be able to expand the information they have consulted and, where appropriate, initiate contacts or potential commercial or business relationships.
When and why is data shared?
If we share your data it will be because you have previously consented to it, because we are legally obliged to do so or because it is necessary to provide the Services in accordance with the purposes for which they are designed. If we share personal data, we will do so with the due guarantees and in compliance with current legislation, in the following cases.
Therefore, Visitors understand and accept that, as an inherent part of their own purpose, the use of the Mixie Points (i.e. the act of scanning the QR code enabled in a Mixie Point and showing interest in consulting the promotional contents enabled therein) implies that the Company or Exhibitor with whose Mixie Point they interact (as well as the Organizer of the Fair) will have access to their identification and professional contact data, taking into account the interest shown by the Visitor in accessing the Promotional Content made available through the Mixie Point he/she voluntarily decides to access. Upon receipt of the data, the Organizers, Companies and/or Exhibitors, as appropriate, become responsible for the processing of the Visitor’s data and, consequently, it is the Organizers, Companies and/or Exhibitors and Exhibitors (and not MXIE) themselves who are exclusively responsible for the processing of the Visitor’s data beyond the purposes described above and who will be responsible for the processing of the Visitor’s data, as data controllers, to inform the Visitor of their respective privacy policies and, if necessary, to obtain the Visitor’s consent to the processing of his/her data, in accordance with the requirements set forth in the applicable regulations on personal data protection.
If at any time we intend to use your personal information for any purpose that is not necessary to provide our services to you or is not in our legitimate interests or in compliance with our legal obligations and requires your consent, we will inform you of this and ask you to take some action that unambiguously demonstrates your consent (for example, by activating a particular setting in your user account or clicking an opt-in notice).
How long will we keep the data?
If you decide to close your user account with us (you can do so at any time from the personal area of your MIXIE account), we will cancel it within a reasonable period of time after verifying that there are no pending incidents or proceedings. Once your account is cancelled, we will stop processing your personal data and will only keep it for the purposes described in the previous paragraph until our legal obligations or responsibilities expire. We reserve the right to terminate your user account if it remains inactive for 12 months.
How do we protect data?
We take reasonable technical and organizational measures in accordance with industry standards to provide adequate protection and security of personal information from loss, misuse, unauthorized access or alteration. These security measures include diligent selection of our information storage providers, as well as a variety of other technical measures such as data encryption, the use of firewalls and access controls to our business information.
Although we strive to maintain the security of our systems, since no information system can be completely secure, you should be aware that no company can guarantee absolute security of your information. The security and protection of your personal information also depends on you. Therefore, it is the responsibility of each User to maintain the confidentiality and security of their passwords, account information and devices from unauthorized use by third parties.
What are your obligations?
What are your rights?
If we are processing your data, you may exercise your rights under current legislation at any time. These rights include the following possibilities:
Access and rectification. You have the right to request access to the personal information we hold about you, as well as the right to rectify your data if it is inaccurate or out of date. If you have a user account, you may do so from the personal area of your user account; otherwise, you may do so by contacting us.
Deletion. You may ask us to delete your personal information, for example, when it is no longer needed for the purposes for which it was collected, unless there is a legal obligation to retain it or there are no other legitimate reasons that require its retention.
Opposition. Under certain circumstances, you may object to our processing of your personal information for certain purposes or processing activities, even if we rely on a legitimate interest in doing so. In some cases and upon a case-by-case assessment, we may demonstrate that there are legitimate reasons that justify continuing to process your personal information.
Revoke your consent. When we use information on the basis of your consent, you may withdraw your consent at any time. For example, you can withdraw your consent to our use of your information for marketing purposes by clicking on the “unsubscribe” option found in all of our marketing communications. If you have a user account with us, you may also do so from the private area of your account. From that moment, we will stop sending you commercial communications. In any case, the lawfulness of the processing carried out up to that moment will not be affected.
Limitation. Under certain legally established circumstances, you may have the right to request that we limit the processing of your personal information, for example, when you question the accuracy of that information, in which case it may only be retained for the exercise or defense of claims.
Portability. You have the right to request the portability of your data for reuse. This right allows us to receive the personal data we have collected from you in a structured, commonly used, machine-readable format and, if technically feasible, to transmit it directly to another data controller that you specify.
To exercise your rights, you must send us a written communication to our postal or e-mail address, detailing your request and proving your identity by means of a copy of your ID card or equivalent official documentation. To do so, you can use the models and forms provided by the Spanish Data Protection Agency on its website www.aepd.es.
If you consider that we have not complied with the applicable regulations or have not attended to your rights, you have the right to file a complaint with the corresponding data protection authority (in Spain, the Spanish Data Protection Agency, www.aepd.es). In any case, we would appreciate it if you would first give us the opportunity to resolve any questions or complaints you may have.