Privacy Policy

Effective September 25, 2020

We at Miso Technologies, Inc. (“Miso,” “we,” “us,” “our”) are serious about your privacy. The following Privacy Policy explains how we handle personal data that we collect, store, use, transfer, and otherwise process. If you have any questions regarding this Privacy Policy or do not feel that your concerns have been addressed, please direct your questions through the “How to Contact Us” section at the end of this Privacy Policy.

Definitions

Collect means to receive personal information directly from the data subject for purposes of using such data.

Personal Data means any data that relates to an identified or identifiable natural person.

Processing means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

You means any individual person identified or identifiable by personal data, as relevant for the context in which it is used in this Privacy Policy.

Responsibility for Your Personal Data

Miso is an artificial intelligence machine learning engine that is used to drive more efficient search results by learning from the individuals using the Services (you). Companies hire us to optimize their own internal search and learning tools by introducing AI machine learning. You may come in contact with the Miso Services either by using this Site, or by using the online sites belonging to our Customers. Miso is responsible for the Processing of your personal data under this Privacy Policy. You may contact the company regarding any questions or complaints as specified in the “How to Contact Us” section below. At times, we may operate as a data “processor,” processing your personal information at the direct of our Customer who has collected your data. We may also Collect your personal information through your ongoing personal engagement with the Services.

Neither our Websites nor any of our products or services are directed to children younger than age sixteen (16). We do not knowingly collect personal data from children under the age of sixteen (16) via the Websites and we will delete any such information later determined to be from a person younger than age sixteen (16).

The Websites may contain links to other third party websites (including but not limited to publications containing articles written about Miso or its products and services), all of which are separate legal entities whose information practices may be different from ours. This Privacy Policy does not cover any such third party websites. If you provide personal data to such third party websites all information you disclose will be subject to the Privacy Policy and practices of such third parties. We are not responsible for the privacy policies and practices of such third parties and, therefore, you should review the specific privacy policies posted on those websites prior to submitting personal data to them.

Data that we Process

In the vast majority of cases, Miso engages in “small-data” optimization, meaning that we do not draw information about you from outside. Instead, our machines learn from your direct engagement with them and they will become more efficient at returning results that are appropriate or wanted by you.

Personal Data

Most search engines simply take your query and give you results. Our machine learns from queries to provide more accurate and efficient results, and learns from you to discover what exactly you are looking for and what your preferences are. In order to accomplish this, Our Customers provide us with information that is collected by them about you through your engagement with their services. This may include personal information such as your name, email address, location, browser or other technical data, and it includes your interaction history with our Customer’s website, application, or services.

That information is continuously fed to our artificial intelligence machine to help our Customers gain greater insight into your preferences as they relate to their services. We process this data only as directed by our Customers – producing various analytical reports and data streams that our Customers use pursuant to their own privacy and business policies. Our Customers only learn about you what is directly relevant to your interactions with them through our Services, and they do not have access to information about your broader interests or preferences. We do not aggregate data learned about you if you engage with multiple Customers who all use Miso-powered Services. We do not store any personal information about you generated by our processing of Customer data for our own use.

Impersonal Data

Through your engagement with the Services, we may collect information about your browsing activity so that we can better improve the Services. This information is not used to identify you in any way and is used in its disaggregated and depersonalized form to audit and review the performance of the Services, including uptime, latency, and lag. We do not sell this data.

Customer Data

We collect a variety of information from our Customers, all of which is necessary for us to provide the Services. This may include: name, phone number, email address, billing information or other information that is given to us by the Customer voluntarily over the course of our business relationship. We use this information for our own marketing and internal business purposes, which you can opt out of at any time. Please note that if you choose to opt out, we may no longer be able to provide the Services to you. We do not sell or otherwise distribute our Customer’s data.

To the extent that we have stored and can share it, we may share selected personal data about you with the following parties or in the following circumstances.

Third Party Service Providers. We may share personal data about you with third parties who perform services for us or on our or our Customers’ behalf, for the limited purpose of carrying out such services on behalf of our Customers. This includes, without limitation, third parties that assist in managing our organization, hosting or administering our Websites or other systems, sending communications on our or our clients’ behalf, maintaining or analyzing our or our clients’ data, providing marketing assistance, or in providing other services to us or our clients. It also includes third parties providing services for money laundering checks, credit risk reduction and other fraud and crime prevention purposes and companies providing similar services, including financial institutions, credit reference agencies and regulatory bodies with whom such personal data is shared.
We may share selected personal data about you with experts, consultants and other persons or entities to the extent reasonably necessary or appropriate in the context of providing the services to our clients.
We reserve the right to disclose and transfer personal data about you in connection with a merger, consolidation, restructuring, financing, sale of substantially all assets, or other organizational change.
We may disclose personal data about you when we believe in good faith that the law requires it; at the request of governmental authorities conducting an audit or investigation; pursuant to a court order, subpoena, or discovery request in litigation; to verify or enforce compliance with our agreements or policies and applicable laws, rules, and regulations; or whenever we believe disclosure is necessary to limit our legal liability or to protect or enforce the rights, interests, or safety of our Websites, its users, or other third parties. We also reserve the right to report to law enforcement agencies any activities that we, in good faith, believe to be unlawful.
We may also share personal data about you in accordance with any express consent you or your authorized agent give us which is specific to the purposes of the processing which you will be informed about at the time we request such consent. You do not have to give such consent. If you do give consent, you may withdraw it at any time by contacting us (see “How to Contact Us” section below), however please be aware that such withdrawal will not affect the lawfulness of personal data collected and processed prior to the date of your withdrawal of consent.

Cross-Border Transfers of Personal Data

Miso complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and the United Kingdom to the United States in reliance on Privacy Shield. Miso has certified that it adheres to the Privacy Shield Principles with respect to such data. If there is any conflict between the policies in this privacy policy and data subject rights under the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification page, please visit https://www.privacyshield.gov/

With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, Miso is subject to the regulatory and enforcement powers of the U.S. Federal Trade Commission.

Pursuant to the Privacy Shield Frameworks, EU and UK individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States. Upon request, we will provide you with access to the personal information that we hold about you. You may also correct, amend, or delete the personal information we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States under Privacy Shield, should direct their query to privacy@askmiso.com If requested to remove data, we will respond within a reasonable timeframe.

We will provide an individual opt-out choice, or opt-in for sensitive data, before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your personal information, please submit a written request to privacy@askmiso.com

In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Miso’s accountability for personal data that it receives in the United States under the Privacy Shield and subsequently transfers to a third party is described in the Privacy Shield Principles. In particular, Miso remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process personal data on its behalf do so in a manner inconsistent with the Principles, unless Miso proves that it is not responsible for the event giving rise to the damage.

We also work with the appropriate regulatory authorities to resolve any complaints regarding personal data that we cannot resolve with our users directly. Miso is regulated by the US Federal Trade Commission. If you are a EU/EEA customer of Miso, you may also have the right to complain to the data protection authorities in your country, and, under certain conditions, to invoke binding arbitration.

In compliance with the Privacy Shield Principles, Miso commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to Privacy Shield. European Union and United Kingdom individuals with Privacy Shield inquiries or complaints should first contact Miso at: privacy@askmiso.com

Miso has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/privacy-shield-complaints/ for more information and to file a complaint. This service is provided free of charge to you.

If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms.
See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction

Data Retention Period

All personal data retained by us will be deleted when such personal data are no longer necessary for the purposes for which it was processed, unless applicable law requires a longer retention period.

Your Rights as a Data Subject

To the extent provided by applicable law, you have the following rights:

To request access to the personal data that we hold about you and to request that we rectify or erase it;
To request a copy of the personal data that we hold about you;
To request a transfer of your personal data from us to another data controller; and
To request restriction of processing of your personal data or object to its processing.

You may also have the right to make a GDPR complaint to the relevant Supervisory Authority. A list of Supervisory Authorities is available here: https://edpb.europa.eu/about-edpb/board/members_en.

We do not impose any charge for these requests. For any such request, you can contact us by e-mail, postal mail, or phone as specified in the “How to Contact Us” section below.

We will endeavor to respond to all reasonable requests in a timely manner, but in no event longer than the amount of time required by applicable law.

To the extent we are not the controller of your data, we will notify the controller of your request if required by applicable law.

Updating Personal Data About You

If any of the personal data that you have provided to us changes, for example if you change your email address or if you wish to cancel any request you have made of us, or if you become aware we have any inaccurate personal data about you, please contact us as specified in the “How to Contact Us” section below. We will not be responsible for any losses arising from any inaccurate, inauthentic, deficient or incomplete personal data that you provide to us.

Where the lawful basis of our processing under the EU General Data Protection Regulation (GDPR) is that you have consented to it for a particular identified purpose, you have the right to withdraw that consent at any time. To do so, please contact us as specified in the “How to Contact Us” section below. If you do withdraw consent, this will not affect the lawfulness of any processing that was based on your consent before its withdrawal.

Security of Personal Data

We have implemented appropriate technical and organizational measures (i) to ensure a level of security appropriate to the risks that are presented by Miso’ processing of personal data, in particular from accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored or otherwise processed, and (ii) to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services for the personal data.

Changes to this Privacy Policy

We reserve the right to modify or amend this Privacy Policy at any time. The current version of this Privacy Policy will be published on our website.

How to Contact Us

For any questions about this Privacy Policy, to exercise any of your rights listed above, or for any questions or complaints regarding the manner in which we handle or protect personal data, we can be contacted as follows:

Via e-mail at privacy@askmiso.com.

If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction

Last Modified: Sept 25th, 2020