How we use your data, keep it private and you can exercise your rights
How Monadd Ltd uses data
Monadd is a limited company registered in London, England. We run this website (monadd.io) and its subdomains.
Monadd Ltd facilitates postal address updating when moving to a new location.
We will not use this personal data for other purposes without asking your permission. We will not keep this information for longer than necessary.
We use sub-processor services to publish updates, log our code, keep in touch with people and understand how we can do all of these things better. Here you can find out what these services are and how we handle data for user research and improving Monadd Ltd core service.
This page was last updated on 11 March, 2022
The definitions below are adapted from the GDPR.
Personal data is any information relating to a user, by reference to which the user can be identified, directly or indirectly. Personal data broadly includes names, ID numbers, location data, and other factors relating to the identity of the user.
User is any natural or legal person who visits the website (monadd.io) or its subdomains, subscribes to our product, uses our product, or otherwise receives communications from Monadd.
Service refers to the primary service provided by Monadd which enables users to change their physical address as registered with select service providers.
Service provider is the entity with which a user seeks to change their postal address that was originally provided pursuant to the performance of a service by the entity, such as the provision of utilities.
Vendor is anyone contracted by Monadd to perform business-related functions, such as hosting or processing payments.
We use the following services to run our website and subdomains to publish updates, log code, keep in touch with people, and understand how people are using them.
Google API Services
We use Google API Services to validate that (1) you are a legitimate Gmail email user, and (2) accurately identify service providers. Monadd's use and transfer to any other app of information received from Google APIs adhere to Google API Services User Data Policy, including the Limited Use requirements. We use minimal and technically feasible permissions from Google API Services to only collect the information about service providers associated with your email address. We do not store, collect or transfer any information for any other purpose other than to identify your service providers and notify them about your move. You can read Google's API Services user data policy here.
We track visitors to Monadd’s websites using Google Analytics, which collects information about how people are using our sites to allow us to improve their experience. This may include information such as aggregated information from computers' Internet Protocol (“IP”) address, browser versions, pages of our websites that people visit, the time and date of your visit, the time spent on those pages, and other statistics. Data is stored indefinitely, so we can see how use of our website changes over time.
We use Metomic to allow all users and visitors to manage their cookie consent, which allows us to keep our website and services GDPR-friendly. Find out more about how they use data in their privacy statement.
Amazon Web Services
Our API runs on AWS lambda served by AWS API gateway, we do this so it can be as efficient as possible providing you with the best experience. We also handle API routing using AWS cloud-front and route 53. You can read more about privacy on Amazon AWS in their Data Privacy FAQ.
Our social media accounts
We use various social media accounts to share our work. We occasionally use the analytics tools provided by these platforms to understand how we can use these services better. Our social media accounts include:
How we collect and use personal data
We collect the data volunteered by you in the legitimate interest of using our services and signing to communications, including:
When you enroll you will be requested to provide us with details which can include your name, telephone number, email address, old and new postal address, and where applicable, tenant agreement and utility bills.
We collect billing and payment information you provide when you access our paid services.
We collect Personal Data when you communicate with us or if you sign up to receive promotional information via email – including full name and email address.
We may also receive information about you from publicly and commercially available sources and to match your information to your service providers as permitted by law.
We use the personal information that we collect as necessary and appropriate for the following purposes
To provide our products and services. We use your personal information to provide you with the products, services, and features that you or your company have requested; to respond to inquiries we receive from you; to verify your identity and in connection with a transaction that you have initiated.
To improve our products and services and to analyse how members navigate and use our products and services and individual features.
For audit and reporting purposes, to perform accounting and administrative tasks, and to enforce or manage legal claims.
How we use your data
Monadd is committed to processing your personal data lawfully, fairly and transparently. We only collect your data with your consent and for specific and legitimate purposes.
We process personal data during communications with users, including via email, newsletters, our social media accounts, or the Wix contact form.
We also process a user’s personal data for the purposes of effectively changing their postal addresses with their selected service providers. Our staff only have access to user personal data to facilitate this process as is necessary and appropriate. By signing up for our Service and specific features thereof, you consent to the processing of your personal data in this manner so we may fulfil our obligations to you.
Review and audit
Personal data, such as your name, location and email address, may be processed to evaluate the performance of our Service by evaluating user experience. This periodic review allows us to improve our Service to satisfy user expectations. User personal data may also be processed for auditing and reporting purposes, as well as general administrative and accounting operations.
Sharing of your data
Monadd does not share your personal data with third parties except for the specific and legitimate purposes outlined above. We do not share your personal data with third parties for promotional purposes, nor do we otherwise sell your personal data to third parties. Monadd only shares your personal data under the following conditions:
With service providers as explicitly selected by the user for the purposes of changing their postal addresses;
With vendors only as necessary for the effective performance of our Service and other obligations to the user;
As required by any applicable law.
We take all reasonable steps to ensure that users’ personal data is processed securely by the entities we share it with. If it is necessary to transfer personal data to third parties outside the European Economic Area, we will only do so if the third party is within a jurisdiction governed by analogous data protection legislation. While we believe our sub-processor vendors share our commitment to privacy and security, we do not ultimately have control over their privacy policies.
How we store your data
Monadd ensures that any software or device used to access or store user data will utilise the best security standards. This includes ensuring that Monadd is built in a security-hardened environment, with end-to-end encryption in place for all data in transit, and data at rest is encrypted. External audits of the data environment are carried out by external security professionals. A summary of the audit will be made available on the Monadd website.
Monadd only stores user personal data as long as necessary and appropriate for the legitimate purposes outlined above. We store user personal data for a period of 2 years, after which the data is irrevocably deleted. A user may request deletion of their data at any time before the 2 year period, provided that doing so does not interfere with the performance of any existing obligations of Monadd to the user.
Processing your requests
In certain cases, separate consent is not required, including:
For the performance of a contract: To perform our contractual obligations to you where we need to provide your Personal Data to our service providers, where we need to collect Personal Data from third party sources and when you access third party products and services, where we collect data from third parties or publicly-available sources.
To meet legal obligations.
For Legitimate Interests: to send you communications about the status of your order and any processing results from Monadd.
Things we don't do
Monadd Ltd doesn’t participate in the following data processing activities:
Buying or selling email address lists
We don’t use “soft opt-in”, meaning you won’t receive any marketing communication from us unless you’ve specifically agreed to it and signed up to receive our updates.
Keeping data secure
We follow best security practices, like HTTPS, VPC (Virtual Private Cloud) and we pseudonymise collected data as much as possible.
We maintain our technical infrastructure and only specific members of the team can access these servers. for more on our security measures visit our Security page.
Reviewing how we use data
Every quarter, we review our documentation of the data we handle and third party services we use. This helps us continuously improve our processes and hold ourselves to account. We will update this document as necessary.
How to control cookies
You can opt out of our analytics by turning on Do Not Track in your browser. We also employ Metomic to manage the cookies available on the website and gather your consent on cookie use. Metomic appears on the left bottom corner of the screen when you first visit our website.
Breach of Policy
In the event of a data breach, a violation of user rights, or a failure by Monadd to comply with this policy or other applicable laws, users may submit a complaint in writing to the Data Protection Officer (firstname.lastname@example.org). The DPO will respond to the complaint within 14 days of receipt. If a user remains dissatisfied with the outcome, they may pursue other avenues of recourse, including contacting the Information Commissioner’s Office. Our ICO registration number is: ZA516677.
Your rights and getting in touch
The General Data Protection Regulation gives EU citizens the following rights:
To exercise any of these rights, please contact us at email@example.com and we'll respond. We work to high standards when it comes to processing your personal information. You can find information specific to the services we use or our activities in the relevant sections of this document.
Our postal address is Monadd Ltd, 33 Foley Street, Work.Life, London, UK W1W 7TL
If you aren’t satisfied by our response, you can contact the Information Commissioner’s Office.
Changes to Policy
Monadd reserves the right to update or modify this policy without prior notice. We undertake to inform users of these changes as soon thereafter as possible via our communication channels.