Middleware
Privacy policy

Introduction

Thank you for joining our community at Middleware (“Company”, “we”, “us”, or “our”). We are committed to safeguarding your personal information and privacy. If you have any questions or concerns about our policy or practices regarding your personal information, please reach out to us at [email protected].

Privacy Policy

When you visit our website (https://middleware.io/) and use our services, you entrust us with your personal information. We take your privacy extremely seriously. This privacy notice outlines our privacy policy, explaining what information we collect, how we use it, and your rights regarding it. Please take a moment to read this policy carefully, as it’s essential. If you disagree with any terms, please discontinue using our Site and services.

Scope
This privacy policy applies to all information collected through:

• Our website (https://middleware.io/)
• Related services
• Sales
• Marketing
• Events

The above is collectively referred to as the “Sites” in this privacy policy.

Information We Collect

We collect personal information that you voluntarily provide when:

• Registering on the Site
• Expressing interest in our products or services
• Participating in activities on the Sites (e.g., posting in online forums, entering competitions, contests, or giveaways)
• Contacting us

The personal information we collect varies depending on the context of your interactions with us and the Sites, your choices, and the products and features you use.

Personal Information We Collect

1. Registration Information:

• First and last name
• Email address
• Phone number
• Company name

2. Payment Details:

• Credit card information
• Billing and mailing addresses
• Other payment-related information

3. Automatically Collected Information:

• IP address
• Browser type and version
• Pages visited on our services
• Visit date and time
• Time spent on pages and other statistics
• Language preferences
• Geolocation data

If you wish to change our access or permissions, you can do so in your device’s settings.

Information We Share

We only share and disclose your information in the following situations:

1. Compliance with Laws

We may disclose your information to comply with applicable laws, governmental requests, judicial proceedings, court orders, or legal processes, such as:

• Responding to court orders or subpoenas
• Meeting national security or law enforcement requirements

2. Vital Interests and Legal Rights

We may disclose your information to:

• Investigate, prevent, or address potential policy violations
• Prevent fraud, threats to safety, or illegal activities
• Provide evidence in litigation involving us

3. Vendors and Service Providers

We share your data with third-party vendors, consultants, and service providers who:

• Perform services for us or on our behalf
• Require access to your information to perform their work

Examples include:
• Payment processing
• Data analysis
• Email delivery
• Hosting services
• Customer service
• Marketing efforts

4. With Your Consent

We may disclose your personal information for any other purpose with your explicit consent.

5. Cross-Border Transfers

Our servers are located in:

• U.S.
• France
• Canada
• Singapore

If you access our Sites from outside these locations, your information may be transferred to, stored, and processed in our facilities and by third parties (see “Disclosure of Your Information” above) in:

• us-east-1 (N. Virginia)
• us-east-2 (Ohio)
• ap-south-1 (Mumbai)
• ap-northeast-2 (Seoul)
• ca-central-1 (Canada)
• eu-central-1 (Frankfurt)
• 40+ servers

If you’re a resident of the European Economic Area (EEA), please note that these countries may have different data protection laws. We will protect your personal information in accordance with this privacy policy and applicable laws.

6. European Commission’s Standard Contractual Clauses

We implement the European Commission’s Standard Contractual Clauses for personal information transfers between:

• Our group companies
• Us and our third-party providers
  These clauses require recipients to protect EEA personal information according to European data protection laws. Our Standard Contractual Clauses are available upon request. We have similar safeguards in place with our third-party service providers and partners, and further details can be provided upon request.

Information Handling and Retention

You can review or update your personal data held by us at any time by signing in to your account on our website. Upon receiving a request to access, edit, or delete personal data, we will take reasonable steps to verify your identity before granting access or taking action. This ensures the safeguarding of your information.

We retain your information for the statutory retention period to comply with legal requirements and support claims or defenses in court. After this period expires, the corresponding data is routinely deleted, unless it remains necessary for contract fulfillment or initiation.

Information Security

We are committed to holding your information securely. We have implemented robust physical and electronic security measures to safeguard your sensitive information from unauthorized access or disclosure. We adhere to stringent procedures to ensure compliance with the General Data Protection Regulations (GDPR). For more information on security, please refer to our security page.

Use of Site by Children

We do not knowingly solicit data from or market to children under 18 years of age. By using the Sites, you represent that you are at least 18 or the parent/guardian of a minor and consent to their use of the Site [and App]. If we discover personal information from users under 18, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we have collected from children under 18, please contact us at [email protected]

Privacy Rights

Under privacy laws like the European General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), you have the following rights:

Right to Access

You have the right to access certain personal information associated with your account that we have collected.

Right to Correction

You can request rectification of inaccurate information about you.

Right to Restrict Processing

In certain cases, you may limit or restrict how we use your personal data.

Right to Deletion

You can request deletion of your personal information, except where required by law or regulation, or to ensure Middleware’s safety, security, and integrity.

Right to Object

If we process your information based on legitimate interests or public interest, you can object in certain circumstances.

Right to Withdraw Consent

Where consent is relied upon, you can withdraw consent using features like an email unsubscribe link.

Information We Collect

We collect and process personal information, such as email addresses and names, that you provide through an application form. This information is collected for recruitment, interviewing, and hiring purposes.

Information from Third Parties

We collect or reference information from publicly available sources (e.g., LinkedIn) or third parties (e.g., recruiting agencies, former employers) to support our Recruitment Activities. Personal information disclosed by third parties includes:

• Contact information
• Candidate salary expectations (if provided)
• Academic and professional background information, such as referrals from current and former employees, contractors, and recruiting agencies

How We Use Information

During our recruitment activities, we use your information as follows:

• Communicate with you: We contact you during screening, interviewing, and communicate through our Recruitment Activities.
• Engage in Recruitment Activities: We use your information to evaluate and verify your application, conduct interviews and screenings, background and criminal checks (as applicable), check references, prepare offers, and arrange travel (if applicable).
• Legal, Regulatory, Safety, and Compliance Purposes: We use your information to comply with laws, respond to regulatory requests, resolve legal disputes, and review compliance with applicable terms.
• Other Purposes: If we need to use your information for purposes not described above, we will notify you in advance and ask for your consent.
• Updates: We may use your contact information to provide Middleware product updates and news.

How We Store and Protect Information

We retain your personal information for the duration necessary to perform recruitment activities, fulfill legal obligations, resolve disputes, enforce our rights, or for business purposes. We implement reasonable physical, technical, and administrative safeguards to protect your information from unauthorized use, access, loss, misuse, alteration, or destruction. We require third-party service providers to adhere to industry-standard security measures.

Data Policy

1. Data Removal Policy

You can cancel your account by emailing [email protected]. Your data will be automatically removed after 30 days. For immediate deletion, email us with your use case, and our team will assist within 24 hours.

2. Data Retention Policy

If you have an active account, use our time travel feature to access past data. If your account is canceled, contact us at [email protected] to retrieve old data. We store data for up to 30 days after account cancellation.

Cookies and Their Use
You can review or update personal data by signing into your account on our website. We verify your identity before granting access or taking action. We preserve and retain information according to statutory retention periods, deleting data after expiration.

Information Security

We are committed to holding your information securely. We have implemented robust physical and electronic security procedures to safeguard your sensitive information from unauthorized access or disclosure. We adhere to stringent procedures to ensure compliance with the General Data Protection Regulations (GDPR). For more information on security, please refer to our security page.

Use of Site by Children

We do not knowingly solicit data from or market to children under 18 years of age. By using our Sites, you represent that you are at least 18 or the parent/guardian of a minor and consent to their use of the Site [and App]. If we discover personal information from users under 18, we will deactivate the account and promptly delete such data. If you become aware of any data we have collected from children under 18, please contact us at [email protected].

Consent

Privacy Rights

Under privacy laws like GDPR and CCPA, you have the following rights:

1. Right to Access
2. Right to Correction
3. Right to Restrict Processing
4. Right to Deletion
5. Right to Object
6. Right to Withdraw Consent

Cookies and Their Use

Cookies are small text files placed on your computer’s hard drive to identify your computer as you view different pages. Cookies allow us to:

• Analyze web traffic
• Identify signed-in users
• Test content
• Store preferences
• Recognize returning users

Opt-Out Cookies

You can configure your browser’s cookie settings to enable or disable cookies.

Links from Our Sites

We may have links to external websites, but we have no control over their privacy policies.

CCPA Privacy Statement for California Residents

We comply with the California Consumer Privacy Act (CCPA). This statement applies solely to California residents.

Information We Collect, Use, and Disclose

• Identifiers
• Commercial information
• Internet activity information
• Geolocation data
• Professional or employment-related information
• Inferences drawn from other personal information

Your Rights and Choices

From January 1, 2020, California residents have the following rights:

1. Right to Know
2. Right to Delete
3. Right to Non-Discrimination
4. Exercising Your Rights

Policy Review

We may update this privacy policy. The updated version will be indicated by an updated “Revised” date.

Effective Date

This policy is effective from August 2024.