“Collect” means to receive personal information directly from the data subject for purposes of using such data.
“Customers” means an individual or entity using our Services to connect with You.
“Personal Data” means any data that relates to an identified or identifiable natural person.
“Processing” means any operation or set of operations which is performed upon Personal Data, whether or not by automatic means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
“Services“ means the Company’s Website, products, and services available to You.
“Website” means https://miso.ai/
Responsibility for Your Personal Data
Neither our Website nor any of our products or services are directed to children younger than age of sixteen (16). We do not knowingly collect Personal Data from children under the age of sixteen (16) via the Website and we will delete any such information later determined to be from a person younger than age of sixteen (16).
Data that we Process
In the vast majority of cases, Miso engages in “small-data” optimization, meaning that we do not draw information about You from outside. Instead, our machines learn from your direct engagement with them and they will become more efficient at returning results that are appropriate or wanted by You. For most of the companies that use our Services to help organize and access information on their own websites, the items that our machines learn, will be based on your interactions with that Customer’s website and will not extend to other companies that may use separate installations of our Services.
Most search engines simply take your query and give You results. Our machine learns from queries to provide more accurate and efficient results, and learns from You to discover what exactly You are looking for and what your preferences are. In order to accomplish this, our Customers provide us with information that is collected by them about You through your engagement with their services. This may include personal information such as your name, email address, location, browser or other technical data, and it includes your interaction history with our Customer’s website, application, or services.
That information is continuously fed to our artificial intelligence machine to help our Customers gain greater insight into your preferences as they relate to their services. We process this data only as directed by our Customers – producing various analytical reports and data streams that our Customers use pursuant to their own privacy and business policies. Our Customers only learn about You by your interactions with them through our Services, and they do not have access to information about your broader interests or preferences. We do not aggregate data learned about You if You engage with multiple Customers who all use Miso-powered services. We do not store any personal information about You generated by our processing of Customer data for our own use.
Through your engagement with the Services, we may collect information about your browsing activity so that we can better improve the Services. This information is not used to identify You in any way and is used in its disaggregated and depersonalized form to audit and review the performance of the Services, including uptime, latency, and lag. We do not sell this data.
We collect a variety of information from our Customers, all of which is necessary for us to provide the Services. This may include: name, phone number, email address, billing information or other information that is given to us by the Customer voluntarily over the course of our business relationship. We use this information for our own marketing and internal business purposes, which You can opt out of at any time. Please note that if You choose to opt out, we may no longer be able to provide the Services to You. We do not sell or otherwise distribute our Customer’s data.
Sharing of Personal Data
To the extent that we have stored and can share it, we may share selected Personal Data about You with the following parties or in the following circumstances.
- Third Party Service Providers. We may share Personal Data about You with third parties who perform services for us or on our or our Customers’ behalf, for the limited purpose of carrying out such Services on behalf of our Customers. This includes, without limitation, third parties that assist in managing our organization, hosting or administering our Website or other systems, sending communications on our or our clients’ behalf, maintaining or analyzing our or our clients’ data, providing marketing assistance, or in providing other services to us or our clients. It also includes third parties providing services for money laundering checks, credit risk reduction and other fraud and crime prevention purposes and companies providing similar services, including financial institutions, credit reference agencies and regulatory bodies with whom such Personal Data is shared.
- We may share selected Personal Data about You with experts, consultants and other persons or entities to the extent reasonably necessary or appropriate in the context of providing the Services to our clients.
- We reserve the right to disclose and transfer Personal Data about You in connection with a merger, consolidation, restructuring, financing, sale of substantially all assets, or other organizational change.
- We may disclose Personal Data about You when we believe in good faith that the law requires it; at the request of governmental authorities conducting an audit or investigation; pursuant to a court order, subpoena, or discovery request in litigation; to verify or enforce compliance with our agreements or policies and applicable laws, rules, and regulations; or whenever we believe disclosure is necessary to limit our legal liability or to protect or enforce the rights, interests, or safety of our Website, its users, or other third parties. We also reserve the right to report to law enforcement agencies any activities that we, in good faith, believe to be unlawful.
- We may also share Personal Data about You in accordance with any express consent You or your authorized agent give us which is specific to the purposes of the processing which You will be informed about at the time we request such consent. You do not have to give such consent. If You do give consent, You may withdraw it at any time by contacting us (see “How to Contact Us” section below), however please be aware that such withdrawal will not affect the lawfulness of Personal Data collected and processed prior to the date of your withdrawal of consent.
Cross-Border Transfers of Personal Data
We are located in the United States and we do all processing in the United States.
Data Retention Period
All Personal Data retained by us will be deleted when such Personal Data are no longer necessary for the purposes for which it was processed, unless applicable law requires a longer retention period.
Your Rights as a Data Subject
To the extent provided by applicable law, You have the following rights:
- To request access to the Personal Data that we hold about You and to request that we rectify or erase it;
- To request a copy of the Personal Data that we hold about You;
- To request a transfer of your Personal Data from us to another data controller; and
- To request restriction of processing of your Personal Data or object to its processing.
We do not impose any charge for these requests. For any such request, You can contact us by e-mail, postal mail, or phone as specified in the “How to Contact Us” section below.
We will endeavor to respond to all reasonable requests in a timely manner, but in no event longer than the amount of time required by applicable law.
To the extent we are not the controller of your data, we will notify the controller of your request if required by applicable law.
Updating Personal Data About You
If any of the Personal Data that You have provided to us changes, for example if You change your email address or if You wish to cancel any request You have made of us, or if You become aware we have any inaccurate Personal Data about You, please contact us as specified in the “How to Contact Us” section below. We will not be responsible for any losses arising from any inaccurate, inauthentic, deficient or incomplete Personal Data that You provide to us.
Where the lawful basis of our processing under the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), or other relevant data privacy laws and regulations, is that You have consented to it for a particular identified purpose, You have the right to withdraw that consent at any time. To do so, please contact us as specified in the “How to Contact Us” section below. If You do withdraw consent, this will not affect the lawfulness of any processing that was based on your consent before its withdrawal.
Security of Personal Data
We have implemented appropriate technical and organizational measures (i) to ensure a level of security appropriate to the risks that are presented by Miso’ processing of Personal Data, in particular from accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data transmitted, stored or otherwise processed, and (ii) to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services for the Personal Data.
EU-US Data Privacy Framework (EU-US DPF) and the UK Extension to the EU-US DPF for Data Transfer of EU and UK Data into the United States
Pursuant to the EU-U.S. DPF and UK Extension to the EU-U.S. DPF, we attest to the following:
- We recognize the right of EU and UK individuals to have access to their Personal Data to review, correct, or amend inaccurate or outdated information. Furthermore, individuals also have the right to demand erasure of Personal Data that has been handled in violation of the DPF Principles. Individuals wishing to exercise any of these rights may contact us via e-mail at email@example.com.
- We are subject to the oversight and enforcement authority of the United States Federal Trade Commission.
- We remain liable for Personal Data that has been transferred to third parties acting as our agents unless we can prove we were not a party to the events giving rise to the damages.
- We may be required to release Personal Data in response to lawful requests made by public authorities including to meet national security and law enforcement requirements.
In compliance with the EU-U.S. DPF framework and the UK Extension to the EU-U.S. DPF, Miso commits to resolve complaints about our collection or use of your PPersonal Data transferred to the U.S. pursuant to the EU-U.S. DPF. EU and UK individuals with inquiries or complaints should first contact Miso via e-mail at firstname.lastname@example.org.
Miso has further committed to refer unresolved EU-U.S. DPF Principles-related complaints to a U.S. based independent dispute resolution mechanism, BBB NATIONAL PROGRAMS. If You do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbbprograms.org/dpf-complaints for more information and to file a complaint. This service is provided free of charge to You.
If your DPF complaint cannot be resolved through the above channels, under certain conditions, You may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf
How to Contact Us
Last Modified: November 10, 2023