Privacy Policy

We value your trust in providing Us your data, thus we are striving to use all commercially acceptable means of protecting it. Below you will find the necessary information about the data we collect and process when you use Our Services, including:

  • website: www.quidlo.com,
  • web app,
  • desktop app,
  • mobile app,
  • JIRA plugin,

and others (hereinafter referred to as “Services”).

Controller of your personal data

If you have been designated as an authorized user by an entity using the Services, then for the purposes related to the operation of such entity, the controller of your personal data is the entity (hereinafter referred to as the „Customer”). You received the Customer data in the e-mail with an invitation to use the Services. In this regard, your personal data will be processed by Miquido, being the provider of Services, acting as a data processor, authorised by the Client to process the data.

If you are the Customer, employee or representative of the Customer or an Authorised User, for purposes related to ensuring proper operation of the Services and for purposes related to execution of the contract between the Customer for using the Services, the controller of your personal data is Miquido Spółka z ograniczoną odpowiedzialnością sp. k. with its registered office in Kraków, Zabłocie street 43A, 30-701 Kraków, entered into the register of entrepreneurs kept by the District Court for Kraków-Śródmieście in Kraków, Division XI (Commercial) of the National Court Register, under number 0000651969, NIP (tax identification number): 9452138173, REGON (statistical number): 121160945 (“Miquido”, “We”, “Our” or “Us”).

In all cases regarding your personal data, you can contact Us:

  • by mail – our address is Zabłocie 43a, 30-701 Kraków, Poland,
  • by e-mail - hello@quidlo.com.

Legal basis and purpose of data processing

  1. We will process your personal data that We collect from you when you are using Our Services in order to:
    • comply with the Terms & Conditions and to ensure the possibility of using the Services on all platforms and devices (including website, web app, mobile app, desktop app, JIRA plugin) – based on the agreement concluded with the Customer (Article 6 (1) (b) of the GDPR), for the duration of the agreement and the time required by the regulations of law;
    • to perform the agreement between Us and the Customer, obtain and settle remuneration for the use of the Services (in case you are the Customer, or its representative or authorized user, and on the basis of a contract with the Customer) - based on the agreement concluded with the Customer (Article 6 (1) (b) of the GDPR), for the duration of the agreement and the time required by the regulations of law;
    • to answer your questions, contact you and conduct business communication – based on our legitimate interest as a data controller (Article 6 (1) (f) of the GDPR), for the time necessary to contact you, or longer, if we obtain a different legal basis, e.g. the obligation to resolve a complaint;
    • analyse the way Our Services are used and to improve their functionality– based on the grounds of Our legitimate interests as a data controller (Article 6 (1) (f) of the GDPR), for the period necessary to achieve the mentioned purpose;
    • establish, investigate or defend against claims in connection with conducting dispute proceedings, proceedings before public authorities and other proceedings – on the grounds of Our legitimate interests as a data controller (Article 6 (1) (f) of the GDPR), for a period no longer than the period of limitation of claims;
    • fulfil legal obligations incumbent on the administrator of personal data resulting from legal provisions for tax and accounting purposes (Article 6 (1) (c) of the GDPR), for the duration of the agreement and the time required by the regulations of law;
    • prepare backups of databases and archive data - based on the grounds of Our legitimate interests as a data controller (Article 6 (1) (f) of the GDPR), for the period determined in accordance with the policy of making backups and archiving.
  2. Miquido, being the provider of the Services, has no decisive influence on the purpose of using authorised user’s or the Customer’s representative personal data by the Customer. The Customer should inform those individuals for what purposes he will use their contact and identification data and other data that you provide as part of using the Services.

The scope of the processed personal data

  1. The following constitutes the scope of your personal data we process:
    • when you are the Customer or an authorised user and use the Services: first name, last name, e-mail address, affiliation to an organization, data provided using the Services,
    • when you are the Customer (his representative or employee): first name, last name, business address, tax identification number, data for payment settlement,
    • when you use a contact form: first name, last name, e-mail address, date and time of sending Us your request and all information that you decide to provide Us with by sending your request,
    • each time you use Our Services: the IP address of the device you are using, technical specification of the device and browser you are using and their settings, information on how you use Our Services.
  2. In addition, We inform you that Miquido does not process your personal data required to make a payment (including credit card details). When making a payment you transfer your data to an external entity performing a payment processing service, from which Miquido only receives a confirmation that a payment for the use of the Services was made.

Transfer of personal data

  1. Your personal data may be transferred only to Our data processors that we cooperate with on the basis of a contract or other legal act, or on the grounds of Our legitimate interests as a data controller. Your personal data may be made available to entities authorized to receive data in accordance with applicable laws, including relevant judicial authorities. We also use third party service providers delivering the following services:
    • Google Analytics – services provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, to record and collect data on how you use Our Website, such as time and pages visited, the type of browser you use, the type of device, as well IP address. This information is not personalised and helps Us improve the functionality of Our Website. Find out more about how Google Analytics processes data here:
      https://support.google.com/analytics/answer/6004245
    • Hotjar – services provided by Hotjar Limited, Level 2, St. Julian’s Business Centre, 3 Elia Zammit Street, St Julian’s STJ 1000, Malta, to better understand the behaviour of Our users, which enables Us to adjust Our services to their needs. Learn more about how Hotjar processes data here: https://www.hotjar.com/legal/policies/privacy/.
    • Amazon Web Services - services provided by Amazon Web Services, One Burlington Plaza, Burlington Road, Dublin 4, Ireland, for the purpose of hosting data, that enable our Services to run as well as to provide infrastructure to run specific features of our Services. AWS Privacy Policy is found in the following link https://aws.amazon.com/privacy/,
    • Google Data Studio - services provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, in order to visualize data about users’ behaviour on the Website and Applications. Learn more about how Data Studio processes data here:
      https://support.google.com/datastudio/answer/9626001?hl=en
    • SendGrid - services provided by Twilio Ireland Limited, 25-28 North Wall Quay, Dublin 1, Ireland, to send you business communication via email. You may access the following link in order to review SendGrid’s Privacy Policies regarding the information they collect https://api.sendgrid.com/privacy.html
  2. We may transfer your personal data to third countries in connection with the use of the services of external entities who store the personal data entrusted to them on servers located outside the European Economic Area (EEA). We may transfer your personal data outside the EEA to third countries only if it is necessary to achieve business purposes and when the third country ensures an adequate level of protection, through:
    • the use of a relevant decision of the European Commission regarding the assurance of an adequate level of protection of Personal Data in that country,
    • the use of standard contractual clauses issued by the European Commission, if a given country does not have a confirmed decision of the European Commission,
    • application of binding corporate rules approved by the competent supervisory authority.
    In each individual case when your personal data is transferred outside of the European Economic Area (EEA), to a country that does not guarantee the same or an adequate level of personal data protection that follows from the legal regulations in force in Poland, We will make sure that this is done on a valid legal basis and with the legally required security measures employed.

Links to third-party websites

While using Our Services you might find links that redirect users to third-party websites. For people visiting those websites, a separate entity will be the administrator of their personal data, and the rules for processing personal data may differ from those described in this document. For detailed information on how the data is processed, please check the privacy policy on those websites.

Your rights

  1. You can contact Us with respect to each of the following rights:
    • The right to receive information and to access your data and receive copies of it (Article 15 of the GDPR),
    • The right to withdraw consent (Article 7 of the GDPR),
    • The right to rectification your personal data (Article 16 of the GDPR),
    • The right to data portability (Article 20 of the GDPR),
    • The right to data erasure and restriction of processing (Article 17 and 18 of the GDPR),
    • The right to object to processing (Article 21 of the GDPR),
    • The right to file a complaint with the supervisory authority (Article 77 of the GDPR).
  2. In some cases, exercising the above rights may not be possible – there may be situations where we will continue to be authorized to process your personal data.
  3. In order to execute any of the abovementioned rights please contact Us using one of the ways indicated at the beginning of this document.
  4. Providing the data is voluntary regardless of the purpose for which it is processed. However, failure to do so may prevent, depending on the specific case, the conclusion of a contract or use of selected services within the service.

Cookie policy

  1. The entity publishing cookie files on end device and gaining access to them is Miquido Spółka z ograniczoną odpowiedzilanością, sp. k. located at Zabłocie 43, 30-701 Kraków.
  2. The Website uses cookie files (text files saved on user´s computer) that identify a user in a way required to allow some operations.
  3. Cookie files are used to:
    • adjust contents of the site to user´s preferences and optimizing the use of the site, these files in particular allow the recognition of user´s device and display the site adequately to his individual needs;
    • collect statistics that inform on user´s use of Websites, which allows improvement of their structure and contents;
    • maintain session after logging in, so the user does not have to enter his login and password on every sub-site.
  4. The following types of cookie files are used within Our Services:
    • "necessary" cookie files that allow the use of services available within the Website: Token, G_AUTHUSER_H, G_ENABLED_IDPS, ThirdPartyCookiesTest,
    • performance cookie files that allow collection of information on the use of pages within the Services, collect statistics that inform on how users use the Services which allows improvement of their structure and contents: _revolt, _hjIncludedInSample
  5. In many cases software used to view websites (web browser) automatically allow storage of cookie files in user´s end device. Website users can change these settings at any time. These settings can be changed in particular to block automated acceptance of cookie files in web browser settings, or to inform on each storage of cookie files on user´s device. Detailed information about the possibility and methods of cookie files support is available in the software settings (settings of the web browser). On the following pages you can get additional information – describing the possibilities of configuring cookies for the most popular browsers:
  6. Some cookie files are stored on site user´s end device and may be used by advertisers and partners cooperating with Miquido i.e., Google. More information on these cookie files can be found on websites of each third party.
  7. Miquido informs that limitation of the use of cookie files may affect some functionalities available on pages within the Website.

Archive