Privacy Policy

Company Name: Miratex International Ltd

Registration Number: 10501006

Registered Address: 85 Great Portland Street, First Floor, London, W1W 7LT]

Website: https://miratexsolution.com

Contact: https://miratexsolution.com/contact-us/

1. Introduction

Miratex International Ltd (“we,” “us,” or “our“) is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you interact with our digital transformation solutions, API services, and system integration platforms (collectively, “Services“).

By using our Services, you consent to the practices described in this policy. If you do not agree, please discontinue use immediately.

2. Data We Collect

We may process the following categories of data:

2.1 Personal Data Provided by You

Business Contact Information (name, email, phone number, job title).
Company Details (legal name, VAT number, business registration).
Technical Requirements (API integration preferences, system specifications).
Payment & Billing Data (for paid services, processed via secure gateways).

2.2 Automatically Collected Data

Technical Logs (IP address, device type, browser, operating system).
Usage Analytics (API call volumes, error rates, session duration).
Cookies & Tracking Technologies (see Section 9).

2.3 Data from Third Parties

Client-Side Systems (if integrating with your software).
Publicly Available Business Data (e.g., LinkedIn, corporate registries).

3. How We Use Your Data

Purpose

Delivering API/integration services

Fraud prevention & security

Customer support

Marketing (e.g., newsletters)

Legal Basis (GDPR)

Contract (Art. 6(1)(b))

Legal obligation (Art. 6(1)(c))

Legitimate interest (Art.6(1)(f))

Consent (Art. 6(1)(a))

Data Types

Business contact, technical specs

IP logs, access timestamps

Email, chat history

Email, preferences

4. Data Sharing & Third Parties

We disclose data only to:

Subprocessors (e.g., hosting, payments).
Technical Partners (e.g., Postman for API testing, Auth0 for identity management).
Legal Authorities (if required by EU/UK law).

We never sell your data.

5. International Data Transfers

EU/UK → Other Countries: Data may be transferred outside the EU/EEA (e.g., to US subprocessors) using Standard Contractual Clauses (SCCs) or UK International Data Transfer Agreements (IDTA).
Switzerland: Recognized under the UK-Swiss Data Bridge.

6. Data Retention

Data Type

Client contracts

API logs

Marketing consents

Retention Period

7 years

2 years

Until withdrawn

Reason

UK tax law

Debugging, compliance

GDPR Art. 7

7. Your Rights (GDPR & UK DPA 2018)

You may:
✅ Access – Request a copy of your data.
✅ Rectify – Correct inaccurate information.
✅ Erasure – Ask for deletion (where applicable).
✅ Restrict Processing – Limit how we use your data.
✅ Object – Opt out of marketing or automated decisions.
✅ Portability – Receive your data in a machine-readable format.

To exercise rights, contact: https://miratexsolution.com/contact-us

8. GDPR Statement

8.1 Compliance Commitment

Miratex International Ltd adheres to:

EU GDPR (2016/679)
UK Data Protection Act 2018
Swiss FADP (revFADP 2023)

8.2 Data Protection by Design

Encryption: AES-256 for data at rest, TLS 1.3 for APIs.
Access Controls: Role-based permissions (SOC 2 aligned).
DPIAs: Conducted for high-risk processing (e.g., large-scale API monitoring).

8.3 Lawful Processing We rely on:

Contractual necessity (for service delivery).
Legitimate interests (fraud prevention, network security).
Consent (for optional communications).

8.4 Data Subject Requests

Response Time: 30 days (free of charge).
Verification: ID checks required for sensitive requests.

8.5 Breach Notification

72-hour reporting to the UK ICO or relevant EU DPA.
User alerts if high risk to rights/freedoms.

9. Cookies & Tracking

We use:

Essential cookies (session management, no consent needed).
Analytics cookies (Matomo, anonymized IPs).

Opt-out: Configure browser settings or use our [Cookie Preference Center].

10. Security Measures

SOC 2 Type II audits for infrastructure.
Annual penetration testing (CREST-certified).
Employee training on GDPR/cybersecurity.

11. Policy Updates

Changes will be:

Posted here with 30 days’ notice.
Emailed to active clients.

12. Contact & Complaints

Questions? Contact: https://miratexsolution.com/contact-us/

Complaints: Lodge with:

UK ICO (ico.org.uk)
Swiss FDPIC (www.edoeb.admin.ch)