Meelo Personal Data Protection Policy

We are a company specialized in the development of computer tools in the fight against fraud and the risk of non-payments. We offer our customers scoring solutions that meet their risk management needs, hereinafter the “Customers”.

As such, we are required to process the personal data of their customers.

In this context, we may use the services of subcontracting partner companies, hereinafter the “Partners”. It is specified that Partners may have access to certain personal data of said customers.

We also process the personal data of users of our website.

Persons whose personal data are processed by Meelo, or its Partners, are hereinafter referred to as “Persons”.

As part of our activity, we act as a subcontractor for our Customers when the processing of personal data is carried out exclusively on their instructions and according to the purposes they have defined.

We also act as Data Controller for the processing of personal data for which we determine the purposes and means implemented for these purposes, in the context of certain treatments carried out in connection with the requests of our Customers, treatments carried out on our website, as well as in our relationships with our Partners.

‍

Purpose of the Policy

The purpose of this personal data protection policy, hereinafter the “Policy”, is to describe our commitments to protect the confidentiality of personal data that we process in the course of our business.

It explains how we collect, use and protect Persons' data in connection with applicable data protection laws, and in particular the European Regulation 2016/679 on data protection of April 27, 2016 as well as the law 78-17 relating to information technology, files and freedoms of January 6, 1978 as amended.

“Personal data” or “personal data” is defined in article 4 of the General Data Protection Regulation as any information likely to allow the identification of a natural person directly or indirectly.

‍

Scope of application

The Policy applies to Persons whose data is the subject of data processing, by Meelo or, where applicable, by its Partners.

The use of our website as well as the use of our services implies the acceptance by the Persons of the terms of the Policy.

‍

Treatments implemented by Meelo as Data Controller

When carrying out an operation from our website (request for information on the services we offer, request to exercise rights, response to a job offer or spontaneous application...) Personal data is processed by Meelo.

‍

Data collected

The data collected by Meelo in the contact form is as follows:

Name, First Name, Email, Phone Number, Phone Number, Company Name, and the subject of the request. You also have the option of contacting us via the Chat, we are committed to collecting as part of the exchanges the data strictly necessary for the objective pursued.

‍

Purposes

The personal data collected is used to respond to your requests.

‍

Legal basis

The legal basis for processing is defined in article 6 (1) of the General Data Protection Regulation, namely the consent of Persons when they contact us directly.

When carrying out processing in connection with the requests of our Customers, when we define jointly, or where applicable, separately the purposes and means of the processing of Personal Data.

When carrying out an operation from our Customers' computer systems, Personal data is processed by Meelo in order to strengthen the security level of the operation, to protect their personal data against possible fraud attempts, and to support them in their decision-making.

In this context, we only collect the data necessary for the provision of our anti-fraud and scoring services, to meet the needs of our Customers. In this context, the means and purposes can be defined jointly with our Customers.

Our Customers undertake to inform Persons of the collection of their data by Meelo, of the purposes of the processing and of the rights they have by referring to the Policy. The data collected by Meelo is stored securely and is only used for the purposes specified.

‍

Data collected

As part of relationships with our Customers, the data collected by Meelo is as follows:

-Name, first name, email address and telephone number of Persons, if applicable;

-Information relating to their business or organization if applicable;

-Information related to the use of our services, including login data, usage statistics, and information about the devices you use to access our services.

‍

Purposes

The personal data collected is used for the following purposes:

— To meet the needs of our Customers in order to strengthen the level of security of the operation, to ensure the existence of the declared Persons by means of harmonization, to protect the personal data of Persons against possible fraud attempts, and to support them in their decision-making.

— To improve and personalize our services;

— To communicate with our Customers about our services;

— To respond to requests and questions sent to us;

— To resolve problems and disputes in connection with the use of our services.

‍

Legal basis

The legal basis for processing is defined in article 6 (1) of the General Data Protection Regulation, namely the legitimate interest pursued by Meelo and its Customers in the context of the use of solutions to combat fraud and the risk of non-payments.

‍

Treatments implemented by Meelo as a subcontractor for its Customers

In this context, we act exclusively on the instructions of our Customers and according to the purposes they have defined.

We only collect the data necessary for the provision of our anti-fraud and scoring services, in accordance with the instructions of our Customers.

‍

Data collected

As part of relationships with our Customers, the data collected by Meelo is as follows:

— Name, first name, email address and telephone number of Persons, if applicable;

— Information relating to their company or organization, if applicable;

— Information related to the use of our services, including login data, usage statistics, and information about the devices you use to access our services.

‍

Purposes

The personal data collected is used for the following purposes:

— To improve and personalize our services;

— To communicate with our Customers about our services;

— To respond to requests and questions sent to us;

— To resolve problems and disputes in connection with the use of our services.

‍

Legal basis

‍

Data source

Information is collected from Persons through the Customer, as well as from Meelo Partners in the case of data enrichment services, if applicable.

‍

Information exchange

We do not sell processed personal data. However, we may share certain information with third parties in the following cases:

— When necessary or legitimate to provide the services requested by our Customers;

— When we have obtained the consent of the persons whose data is processed in order to share them with third parties;

— Where we are required to disclose data processed pursuant to a court order, subpoena, or other similar legal request.

In such cases, we ensure that these third parties also comply with data confidentiality and security obligations in accordance with the provisions of the General Data Protection Regulation.

‍

Data transfers

In the event of data transfer outside the European Union, or to countries without an adequacy decision by the European Commission, we are committed to applying the standard data protection clauses adopted by the European Commission.

‍

Data security

We put in place appropriate security measures to protect personal data from unauthorized access, loss, disclosure, or destruction. These measures include the use of security protocols, firewalls, and data encryption, as well as restricted access to only authorized persons who need to access the data.

‍

Responsibility and subcontracting

As a Subcontractor, we are committed to respecting the rights of Individuals regarding their personal data and to implementing appropriate technical and organizational measures to ensure compliance with the General Data Protection Regulation.

As a Data Controller, we may use Partners to facilitate our operations and provide our services. These Partners act as subcontractors, and as such may have access to personal data as part of their services.

We are committed to carefully selecting our Subcontractors and taking appropriate measures to ensure that they comply with confidentiality and data security obligations in accordance with the provisions of the General Data Protection Regulation.

Before sharing personal data with a subcontractor, we will ensure that a data processing contract is in place, including specific clauses to ensure compliance with the General Data Protection Regulation and the protection of the rights of data subjects.

We will ensure that our Subcontractors process personal data only in accordance with our instructions, and that appropriate measures are in place to protect such data and ensure its confidentiality and security.

In the event of a data breach by one of our subcontractors, we will take the necessary measures to remedy the situation as soon as possible and inform the persons concerned as well as the competent supervisory authority in accordance with current legal obligations.

‍

Human Rights

We recognize the rights of Individuals over their personal data, such as:

The right of access:

Individuals can obtain a copy of all of their data processed by Meelo, as well as information relating to the characteristics of the treatments carried out on their data.

‍

The right to rectification:

Individuals may obtain the correction and/or completeness of their inaccurate and/or incomplete data.

‍

The right to erasure:

Individuals may obtain the erasure of their data when:

— these data are no longer necessary for the purposes for which they were collected,

— in case of exercise of the right to object to the treatments concerned,

— if the treatment in question is unlawful. However, this right does not apply when the retention of data is necessary for Meelo to comply with a legal obligation or for the exercise of legal rights;

‍

The right to the limitation of treatment:

Individuals may obtain a limitation of the processing of their data when they contest its accuracy.

‍

The right to portability:

Individuals may obtain the data they have communicated to Meelo, in a structured, commonly used and machine-readable format, as well as their transmission by Meelo to another service provider when technically possible.

‍

The right to object:

Individuals may ask Meelo, for reasons relating to their particular situation, to stop the processing of their data in order to pursue its legitimate interests. Meelo will then stop these treatments unless it justifies that its legitimate and compelling interests take precedence over the rights and freedoms of Individuals.

‍

Contact

If you have any questions or concerns about this privacy policy, or if you want to exercise your rights with Meelo, please contact our DPO, at dpo@getmeelo.com.

‍

Shelf life

We keep personal data for a period of 90 days from their collection, at the end of this period they are then deleted.

Our Customers have the option of deleting said data before a period of 90 days from the moment one of their customers asks them to do so, in accordance with the regulations.

‍

Modification of the Policy

We reserve the right to change this Policy at any time. The changes will take effect immediately after they are posted on our website.

‍

Updated on 06/06/2025

Drastic reduction