Miderva Privacy Policy

At Miderva, we aim to clarify our approach to managing your personal data and ensure you're aware of your rights and options.

This privacy policy outlines how we manage your personal information when you engage with our application. For instance, when you complete a subscription form or explore our mobile app, you share data with us, including some that may identify you ("personal data").

Should you have any inquiries, feel free to reach out to us at contact@miderva.com.

Who is responsible for the processing operations mentioned in this document?

The data controller mentioned in this document is Miderva, a company with a capital of €500, headquartered at 124 Rue du Renard 76000 ROUEN, registered with the National Business Register (NBR) under number 983 000 407, and whose legal representative is Mr. Mohamed-Sélim HAMZA, President.

What data do we collect?

The data you send us directly

When you register for a Miderva Service, either through a subscription or a free account, we gather your contact details and account login details. After registration, we allocate a distinct identification number to you. This identification number aids us in identifying you while you're logged in.

During various interactions we have with you, you may need to provide us with information about yourself.

This includes:

• Names, first names, gender, date of birth;
• Postal address, email address, phone number;
• Information necessary for the delivery or carriage of a product ordered;>
• Encrypted username and password used to identify you on our or applications;
• Encrypted information related to your means of payment (including credit card number);
• Preferences regarding commercial prospecting;
• Any other information you wish to bring to our attention.

The data we collect in the course of our commercial relationship

The data we collect in the course of our commercial relationship with you includes, but is not limited to, the following:

• Information related to your commercial history with Miderva: subscriptions taken out, product and service orders, invoicing, and payment where applicable
• Inquiries made to our customer service or incidents reported to us, for example, regarding the execution of our services
• Your participation in promotional offers, contests, or events

The data we collect automatically when you use our mobile application

Every time you visit our mobile applications, we gather information about your connection and browsing.

The data collected using standard Internet technologies

We may utilize standard internet technologies such as scripts, pixels, and redirects. Scripts, written in JavaScript, are programs that run in your browser or mobile application and perform various actions, such as sending information to our servers. They can also generate pixels. Pixels, sometimes referred to as transparent GIFs or web bugs, are lines of code used to display a graphical image (often invisible) on a web page or in an email. Redirects enable a web page to be accessible under multiple URLs. When a browser opens a redirected URL, a page with a different URL opens.

These technologies aim to enhance your experience on our websites and applications, including providing personalized content based on your interests. For example, when a user clicks on an article "like" button, a script records the action. This allows us to track the total number of likes of an article and establish a ranking of the most liked articles.

These technologies grant us access to the following information:

• Details concerning your usage of our websites and applications
• Insights into whether you have opened the emails we send you and the links you click within these emails

Additionally, our websites and mobile applications may integrate third-party scripts, pixels, and redirects. These technologies allow third-party service providers to gather specific information such as your browser type and the webpage that referred you to our websites or mobile applications. These third-party service providers utilize the collected information for auditing, research purposes, and reporting on our websites and applications, as well as the advertisements displayed on them. We do not disclose your identifiable data to these third parties for their utilization of these technologies.

Sensitive Personal Information

We aim to avoid gathering sensitive personal details about you. This encompasses:

• Official government identification (such as driver’s license, passport, or social security number)
• Racial or ethnic background
• Political opinions
• Religious or philosophical beliefs
• Health, biometric, or genetic data
• Membership in any trade unions
• Sexual orientation or information pertaining to your sex life
• Criminal history
• Contents of private communications (excluding messages directed to us)

However we may occasionally collect precise geolocation information, which can be considered sensitive data, to facilitate GPS-based location services if you opt to enable them. Additionally, certain laws classify account access details like usernames and passwords as sensitive personal information. Nevertheless, we only collect such information for accounts directly created with us and not for any third-party accounts you may hold.

In some cases, we may request some of the aforementioned information (e.g., a reader survey inquiring about political affiliations or ethnicity), but you are free to decline to provide it. Unless specifically requested in such instances, we prefer that you refrain from sharing sensitive personal information with us.

What do we use your data for?

Operations necessary for providing products or services

• Handling your subscription to as Miderva service
• Managing your order for products or services and carrying out this order
• Overseeing subscriptions to our newsletters and/or email alerts
• Handling invoicing and collecting payments
• Managing shipments and tracking orders
• Customer relations: offering accessible Customer Service via mail, phone, email, or instant messaging chat for inquiries or complaints
• Conducting satisfaction surveys
• Communicating updates or advancements in our services
• Dealing with unpaid bills and resolving disputes; preventing fraud
• Managing the exercise of your rights regarding your personal data
• Ensuring compliance with relevant legislation, our contracts, and terms of use

Marketing and commercial outreach activities pertaining to the publications, products, and services offered by Miderva

• Enhancing postal address accuracy, updating, enriching, and removing duplicates from your personal data within a designated database maintained by Miderva
• Dissemination of information regarding our publications, and ongoing activities
• Distribution of marketing, advertising, and promotional content concerning our products and services through various channels including postal mail, inserts, email, mobile notifications, social media platforms, or other mediums
• Tailored initiatives for customer loyalty or commercial outreach
• Coordination of contests or promotional campaigns
• Gathering customer feedback
• Compilation of commercial analytics.

Operations involving commercial partnerships

• Collaborative file sharing, exchanging, or renting with business partners in adherence to existing regulations and security protocols
• Coordination of contests or other promotional or event-based initiatives in partnership with business associates

Traffic and audience measurement

• Analyzing audience demographics and behaviors derived from advertising campaign outcomes
• Identifying user interests and behaviors to better personalize experiences
• Enhancing customer insights for tailored experiences

Reader journey customization

• Adapting a segment of editorial content to match the presumed interests of the reader
• Assessing the effectiveness of our customization efforts
• Tailoring product and service offerings provided by Miderva to individual preferences
• Engaging with social media platforms to enrich reader experiences

How long do we keep data?

We retain your personal information for the necessary duration, or as permitted, based on the purpose for which it was collected (in accordance with applicable laws). Therefore, we may continue to store your personal information even after you have closed your account with us.

When determining the retention period for your information, we take into account:

• The duration of our relationship with you or the provision of Miderva Services to you
• Any legal obligations we are subject to (e.g., laws requiring us to retain transaction records for a specific period before deletion)
• Any legal positions we have taken (e.g., regarding statutes of limitations)

Instead of deleting your data, we may de-identify it by removing identifiable details.

Who may have access to the data we collect?

Within Miderva

Those who may access certain portions of your data comprise:

• Staff members from departments such as subscription services, customer relations, administration, finance, internal control, IT, and marketing & sales.

Access to your data is contingent upon individualized and restricted permissions. Personnel authorized to access personal data are obligated to maintain confidentiality, as stipulated by their personal and specific commitment to confidentiality.

With Service Providers

We collaborate with service providers, as previously defined, to handle specific responsibilities, which may include:

• Handling payment processing
• Fulfilling orders
• Maintaining technology and associated infrastructure
• Providing customer support
• Evaluating ad effectiveness
• Conducting surveys
• Disseminating emails
• Conducting list processing and analytics

During the execution of these tasks, service providers often access your personal information.

On occasion, we authorize them to utilize aggregated or de-identified data for alternative purposes, in compliance with relevant regulations.

Our sales partners

They advertise products or services for either themselves or advertisers. It's important to note that if you opt to subscribe to the products or services offered by our commercial partners and grant them access to certain information, particularly by logging into their websites or applications, their privacy policies and cookie practices apply to you. We have no authority over how our commercial partners collect or process your data on their respective platforms.

Police, judicial or administrative authorities

When we are legally obligated to do so or to ensure the rights, property, and safety of Miderva.

Is your data transferred outside the European Union?

We keep your personal data within the European Union. However, certain processing tasks may require transferring data to subcontractors or business partners situated in other countries, some of which might have data protection laws that are not as stringent as those in your country of residence. In such cases, we guarantee that the processing adheres to this privacy policy and complies with the standard contractual clauses set by the European Commission. These clauses ensure a sufficient level of privacy protection and uphold the fundamental rights of individuals.

How is your data protected?

We safeguard your personal data using suitable organizational, technological, and physical measures — however, we cannot assure absolute security. It is advisable to utilize complex and distinct passwords for your Times accounts and any associated third-party accounts. Refrain from sharing your password with others.

Should you suspect any security breaches in your interactions with us, please inform us promptly

What are your rights?

Your right to access your personal data

You have the right to access your personal data and request that it be corrected, completed, or updated. You may also request the erasure of your data or object to its processing, provided you can justify a legitimate reason.

You can request to exercise your right to data portability, which means the right to receive the personal data you have provided to us in a structured, commonly used format and the right to transmit this data to another data controller.

Additionally, you can formulate directives regarding the retention, erasure, and communication of your personal data after your death.

You can exercise your rights by contacting us through contact@miderva.com

Before responding to your request, we may need to verify your identity and/or request further information to address your request. We will strive to respond to your request in a reasonable timeframe and, in any case, within the deadlines set by law.

Your right to object to commercial solicitations

We may use your contact details for commercial solicitations, in compliance with applicable law and the clauses of this privacy policy. You can at any time object to these solicitations, according to modalities that depend on the communication channel we use to address them.

Electronic commercial solicitations

We comply with the rules of Article L.34-5 of the Postal and Electronic Communications Code, which requires prior and express consent for sending commercial solicitations via electronic means

In any case, you always have the option to opt out of receiving these solicitations by clicking on the unsubscribe link provided in each email.

Commercial solicitations on mobile applications

Upon the initial opening of Miderva's mobile applications on your smartphone or tablet, you may grant permission to receive mobile notifications or "push" notifications. These notifications allow us to provide you with content (news alerts, content highlighted) and may occasionally be used for commercial offers. You can disable these notifications at any time in your smartphone settings.

Solicitations by any other means

We invite you to contact our contact service to inform them that you do not wish to receive these solicitations through contact@miderva.com.