Privacy Policy

Updated on 22/04/2022

Article 1. Purpose of this policy

MIMSHA is committed to protecting your personal data and privacy.

This confidentiality and personal data protection policy (hereinafter referred to as "confidentiality policy") informs you about the use of your personal data when using the MIMSHA application.

This policy informs you of the origin and use of the information collected, as well as the rights and options available to you under the applicable legislation on the protection of personal data.

The privacy policy is therefore important to you, and we invite you to read it carefully.

We refer you to Article 2 "Definitions of terms" of the General Terms of Use for the definition of words beginning with a capital letter.

The privacy policy may change over time. We recommend that you always read it.

Article 2. Why does MIMSHA collect your data ?

In the course of its business activities, MIMSHA may need to process information about you. For example, by registering on our application, browsing our website, sending a parcel, or transporting a parcel, you transmit information to us, some of which is likely to identify you ("personal data").

This data enables us to provide and improve our service.

Article 3. What data do we collect about you and under what circumstances ?

We only use your personal data in the cases provided for by the regulations in force:

3.1 The data you provide

The compulsory or optional nature of the data you provide is indicated by an asterisk.

When you access your Personal Space to send a Good or to obtain remuneration from a User, you must provide us with:

Your full name.
Your e-mail address.
Your telephone number.
Your city.
Your zip code.
Your identification.
Your bank details.

When you contact customer service by e-mail, we collect and process the following information:

Identification, contact and account data, particularly your e-mail address, surname/first name, and user ID number.
Data relating to your request, i.e. any element provided in support of your request and/or useful for processing your request, e.g. the subject of your request.

When you report a Passenger or Shipper, you must be logged in to your Personal Area or when you do so by e-mail, we collect the following information:

Data relating to the User's Personal Space.
Data relating to the Good or User that is the subject of the alert, as well as the related Personal Space.
Data relating to the alert, in particular: reason for the alert, message attached in support of the alert, date and time of the alert, history of alerts concerning the same User or the same Property.

When you are a Sender and you contribute to Costs via our Stripe online payment platform, you must communicate "Know Your Customer" information to our payment service provider. To verify your identity, our payment service provider uses the following information, in compliance with anti-money laundering and anti-terrorist financing regulations:

Full name.
Your postal address.
E-mail address.
Date of birth.
Above a certain threshold: Valid identity document (national identity card or passport).

When you are a Traveler and wish to send a Good, you must provide "Know Your Customer" information to our payment service provider Stripe. Stripe uses the following information to verify your identity, in compliance with anti-money laundering and anti-terrorist financing regulations:

First and last name.
Your postal address.
E-mail address.
Date of birth.
Above a certain threshold: Valid identity document (national identity card or passport).

When you are a Sponsor and you receive payment from a User, you must provide "Know Your Customer" information to our payment service provider Stripe. To verify your identity, Stripe uses the following information in accordance with anti-money laundering and anti-terrorist financing regulations:

First and last name.
Your postal address.
E-mail address.
Date of birth.
Above a certain threshold: Valid identity document (national identity card or passport).

3.2 Data we collect through your use of our services.

We use cookies and other tracking devices to record usage data when you access our services (or use them in any other way), including our Site and Applications, when you conduct a search, reply to, or post Advertisements, or use our Messaging service or Secure Payment Service.

A cookie is a text file deposited when you consult a site, mobile application or online advertisement and stored in a specific space on the hard disk of your computer or mobile device. Cookies are managed by your Internet browser or the mobile application you use, and only the issuer of a cookie can decide whether to read or modify the information it contains.

A cookie has a limited validity period. It is deposited and stored on your terminal in compliance with applicable legislation and subject to the choices you have made, which you may modify at any time, under the conditions specified in Article 9.

A cookie does not identify you personally. It enables its issuer to recognize your terminal and to collect a certain amount of information relating to the browsing conducted from this terminal.

Cookies have several functions, such as enabling you to navigate efficiently on a site or mobile application, remembering your choices and the goods and services you wish to purchase, and offering you relevant advertising content based on your centres of interest as you navigate. Further information on cookies can be found on the CNIL website: www.cnil.fr

We also collect technical data about your Internet connection, browser, and devices.

We also use this data to improve your experience, to offer you a personalized experience on our Site according to your profile and to offer you personalized advertising. These technologies give us access to the following information in particular:

Information relating to your use of our sites and applications.

Information relating to the presence of cookies on your terminal, the time and date of consultation of a page, and a description of the page on which the Web beacon is placed.
Information on whether you read the e-mails we send you, and on clicks you make on links contained in these e-mails.

Under no circumstances we collect the content of telephone conversations, which remain strictly private and confidential between the Sender and the Traveller.

3.3 Partner data

We may receive personal data about you from our customers and partners.

Article 4. Who is responsible for the processing mentioned in this Policy ?

The Services are operated by MIMSHA, a simplified joint stock company with capital of 1,003.92 euros, registered with the Paris Trade and Companies Register under number 828 809 889, whose registered office is located at 10, Rue de Penthièvre, 75008 Paris, France, represented by its Chairperson, Mr Shamim ABDOUL RAHMANE.

MIMSHA can be contacted at the following addresses:

Postal:

10, Rue de Penthièvre

75008 PARIS

FRANCE

E-mail: contact@mimsha.com

Your personal data is only accessible to authorized persons working on behalf of MIMSHA, and to our customer relations team.

Article 5. How long do we keep your data ?

Your personal data is kept for a period that complies with legal provisions or is proportionate to the purposes for which it was recorded. Retention periods vary according to the purpose for which the data was collected:

Data relating to your Personal Area and your Goods are kept for 5 years from the end of the commercial relationship, or from the request for deletion, for purposes of proof or to meet our legal obligations.

Your User profile is deleted (...) months after the date of last activity. Proof of activity is any action that reasonably demonstrates that you are offering the delivery of a Good.

Data relating to the identity verification operation are kept for 5 years from completion of the operation, apart from biometric and image data, which are only kept for 30 days from document loading.

Your credit card details are kept by our payment service provider until full payment has been made and, for proof purposes in the event of a claim, for 13 months, or 15 months in the case of a deferred debit card.

Data relating to your browsing of our online services is stored for 13 months.

Article 6. Is your data transferred outside the European Union ?

We store your personal data within the European Union. However, some processing operations involve transfers to subcontractors or business partners located in other countries, some of which may have less protective legislation on the protection of personal data than that in force in the country where you reside. In the event of a transfer of this type, we ensure that the processing is conducted in accordance with this privacy policy and that it is governed by the European Commission's standard contractual clauses, which guarantee an adequate level of protection for the privacy and fundamental rights of individuals.

Article 7. How is your data protected ?

As data controller, we implement appropriate technical and organizational measures in accordance with applicable legal provisions, to protect your personal data against alteration, accidental or unlawful loss, use, disclosure, or unauthorized access.

Article 8. What are your rights ?

You have the right to access your personal data and request that it be amended, completed, or updated. You may also request the deletion of your data or object to its processing, provided you can justify this on legitimate grounds.

You may ask to exercise your right to data portability, i.e. the right to receive the personal data you have provided us with in a structured, commonly used format, and the right to transmit this data to another data controller.

Finally, you may formulate instructions concerning the storage, deletion, and communication of your personal data after your death.

In the event of an unsatisfactory response, you can lodge a complaint with the Commission Nationale de l'Informatique et des Libertés (CNIL): https://www.cnil.fr/fr/plaintes

Article 9. Your right to object to commercial solicitations

We may use your contact details for commercial solicitations, in accordance with applicable law and the clauses of this privacy policy. You may object to these solicitations at any time, depending on the communication channel we use to send them to you.

Concerning commercial solicitations by electronic means (e-mail and SMS):

We respect the rules of Article L.34-5 of the French Post and Electronic Communications Code, which requires your prior and express consent for the sending of commercial prospecting by electronic means (e-mail, push notifications or SMS).

Thus, when you create your Personal Space, you are expressly asked for your consent:

To receive offers from MIMSHA.
To receive offers from MIMSHA's partners.

In all cases, you always have the option of objecting to receiving these solicitations by taking the following actions:

For e-mail, by clicking on the unsubscribe link provided in each e-mail, by visiting your online account or by contacting our customer service department.

For SMS, by sending a STOP SMS to the number indicated in the SMS or by contacting our customer service department.

Article 10. Your rights to accept and manage cookies

Except in the case of a specific exemption, the recording of a cookie on your navigation terminal is subject to your wishes. You can modify your choices regarding acceptance or refusal of cookies placed on your terminal at any time, either by using the settings tool we make available on our sites and applications, or on your browser, or online with various operators.

To manage cookies in the way that best suits you, we invite you to configure your browser according to the purpose of the cookies.

MIMSHA legal notice

The mimsha.com website is published by MIMSHA.

Corporate form: Simplified joint stock company (SAS)

Registered with the Trade and Companies Registry of: Paris - 828-809-889

Intracommunity VAT number: FR64828809889

Registered office: 10 RUE DE PENTHIEVRE 75008 PARIS

Director of publication: Mr Shamim ABDOUL RAHMANE

Site and application hosting: Amazon Web Services Inc - 410 Terry Ave North Seattle,

WA 98109-5210 UNITED STATES

Site and application data hosting location: Europe