GDPR Compliance for Enrich Minion

1. Introduction

This document describes how Enrich Minion (referred to as "we," "us," or "our") collects, uses, stores, and protects personal data. We are committed to safeguarding privacy and complying with the General Data Protection Regulation (GDPR).

2. Company Information

• Name: Enrich Minion
• Address: Viru väljak 2, 10111, Tallinn, Estonia
• Email: zillionverifier@info
• Website: enrichminion.com
• Reg. Code: 16031675
• VAT Number: EE102376195

3. Data Collection and Purpose

We collect various types of data to enhance user experience, including user account information, email marketing data, and identity verification details. This may include data from Google Analytics, IP addresses, and details provided during the signup process. We integrate with third-party services like Stripe and Pipedrive for payments and customer relationship management without sharing personal data.

4. Data Storage and Security

We store data securely using top-tier cloud services with access limited to authorized personnel. Our security measures include encryption, firewalls, and regular audits.

5. Data Retention Policy

We retain personal data only as long as necessary to provide services or until a user requests deletion. Users have full control over their data in compliance with GDPR guidelines.

6. Data Protection Officer (DPO)

Our CEO, Erik Paulson, serves as the Data Protection Officer (DPO). For inquiries or concerns regarding data privacy, please contact us at: zillionverifier@info.

7. Data Breach Protocol

We have established protocols for monitoring and responding to data breaches. Affected individuals and authorities will be notified within 72 hours of breach detection.

8. Third-Country Data Transfers

Data is stored in the AWS RDS server region (US West - Northern California). We ensure all data transfers comply with GDPR’s requirements for cross-border security and protection.

9. User Rights and Data Management

Enrich Minion recognizes and upholds the following user rights under the GDPR:

• Access to Data: Users can access their personal data via the user dashboard.
• Correction/Deletion/Restriction: Users can request data updates or deletion via Gleap, email, or Pipedrive.
• Data Portability: We store user files in AWS S3, enabling easy transfer of data.
• Transparency: We commit to transparency in data processing and ensure no data is used for purposes such as direct marketing or profiling without consent.
• Communication Preferences: Users will be notified of how their email is used for file-related notifications and marketing campaigns, with the option to opt out.

10. Consent Mechanism

Consent for data collection is obtained during the signup process. Users can withdraw consent anytime directly from the application.

11. Additional Information

• Cookies Policy: Available at Cookies Policy
• Global Operations: We adhere to GDPR standards globally for all international data transfers.
• Target Market: Enrich Minion is designed for B2B use, primarily for agencies and enterprises.