Privacy policy

MinglMe values your privacy and actively works to ensure you feel safe about how we process your personal data. This policy describes:
What information we collect and why
How we use the information
Your rights and how to exercise them

Definitions
In this policy, "the Service" has the same meaning as in MinglMe's Terms of Service, namely the digital services provided by Mingel Me AB via www.minglme.com, the MinglMe app, and the brokering of tickets to Activities organised by independent third-party providers ("Hosts").

Changes to the privacy policy
We reserve the right to update the privacy policy at any time. The date at the top shows when the policy was last changed. We recommend that you check the policy regularly to stay up to date.

Data controller
Mingel Me AB, company registration no. 559510-0610, is the data controller responsible for the processing of personal data in our business. As the data controller, it is our responsibility to ensure that your data is handled correctly and securely in accordance with the General Data Protection Regulation (GDPR) and national data protection legislation, which exist to protect individuals' privacy.
To create a user account or otherwise use the Service, you must first accept this policy. Please read this policy before using the Service.

Age limit
The Service is intended only for persons aged 18 or older. By creating an account, you confirm that you are at least 18 years old. Responsibility for meeting the age requirement at registration rests with the user.
If we become aware that a person under the age of 18 has created an account, the account will be terminated and the associated personal data deleted, except for data we are legally required to retain.
For Activities where, for example, alcohol is served, the Host may require you to verify your age with a valid form of identification. Such age verification is entirely the Host's responsibility.

Personal data we collect
When you use the Service, we may collect and store the following types of data:
User data: Email, name, phone number and information you choose to share in your profile, such as personality traits, interests, ice breaker and photo.
Sensitive data: To use the Service, you need to specify the gender you are seeking for a romantic relationship, as this is necessary for us to show relevant singles to you in the Service. You may also choose to specify gender identity in your profile. Such data is processed based on your explicit consent under GDPR Art. 9.2(a) and solely for the purpose of providing the Service. You may withdraw your consent at any time, which means that the account will be terminated since the data is necessary for the Service to function.
Feedback: Your responses to surveys or feedback forms.
Technical data: IP address, device ID, browser settings and activity in the Service (e.g. pages visited).
App-specific data: If you use the MinglMe app, we may collect device ID, operating system, app version and push notification tokens to send notifications to you.
Camera and photos: With your permission, the app gains access to your camera and photo library so you can upload a profile picture. We only access photos you choose to upload.
Notifications: With your permission, we may send push notifications regarding bookings, changes to Activities, messages from other users or Hosts, and important information about your account. You may turn off notifications at any time in your device settings.
Other sources: In addition to the data you provide to us, we may obtain data from partners such as Meta and Google.

The app does not request access to your contacts, location or microphone.
You are not required to provide the personal data we request, but if you choose not to, in many cases we will not be able to provide our services to you.

How we use your data
We process your data in order to:
Create and manage your user account
Give you a safe and personal user experience
Show relevant singles to you in the Service (based on the information you have provided, such as the gender you are seeking for a romantic relationship and age range)
Accounting and invoicing purposes
Communicate with you
Send newsletters to you
Send offers and marketing from MinglMe and, with your explicit consent, from selected partners
Improve the Service through analysis of technical data and user behaviour
Handle flagged inappropriate behaviour, security incidents and any legal claims

Legal basis for processing
We process your data on the following grounds:
Contract: To provide the Service to you.
Legitimate interest: E.g. to improve the Service, communicate important updates, and handle inappropriate behaviour or security incidents.
Consent: E.g. to process sensitive personal data or send tailored marketing.
Legal obligation: E.g. to meet requirements under the Swedish Accounting Act.

You may withdraw your consent at any time by contacting us.

Use of Meta Pixel
Our website uses Meta Pixel, a tracking technology provided by Meta (formerly Facebook), to analyse and understand how users interact with our website. This technology collects data such as pages visited, time spent on the website, and actions taken (e.g. purchases or form submissions). The information is used to improve our services and tailor our marketing so that we can show you relevant ads on Meta's platforms. Meta Pixel is used only to the extent that you have consented to marketing cookies.

Secure payment
We offer secure payment in partnership with Stripe. Stripe handles payments both for the MinglMe subscription and for ticket purchases for Activities. When you pay, you are redirected to a secure page with an SSL certificate from Stripe. There you can enter your details and pay securely. We never handle or store your card details.
For ticket purchases for Activities, MinglMe acts as a payment intermediary on behalf of the Host, in accordance with MinglMe's Terms of Service.

Storage of data
We store your data for as long as is necessary for the purpose for which it was collected. Specific retention periods:
User account and profile data: For as long as your account is active. After 36 months of inactivity, the account may be deleted following advance notice by email.
Booking history and Activity-related communication: Up to 36 months after the most recent Activity, to handle any complaints and disputes.
Accounting records: 7 years under the Swedish Accounting Act (1999:1078).
Marketing consent: Until you withdraw your consent.
Technical logs (IP addresses, device IDs, etc.): Up to 12 months.
Support cases: Up to 24 months after the case is closed.
Chat messages between users in the Service: For as long as your account is active, or as long as is necessary to handle flagged inappropriate behaviour or legal claims.

When you withdraw your consent, unsubscribe from communications or delete your account, we will cease the relevant processing. Data is deleted or anonymised in accordance with applicable legislation.

Account deletion
Deleting your account yourself
You may delete your account at any time directly in the Service. Log in via the web or the app and go to Profile → Settings → Account. Deletion performed by you takes effect immediately.
You may also request deletion by contacting us at support@minglme.se. Such requests are processed within seven (7) days.
When MinglMe may delete an account
MinglMe reserves the right to delete or suspend an account without prior notice if:
The profile picture or profile text contains offensive, abusive, threatening, discriminatory or otherwise inappropriate content
The profile picture does not depict the account holder (the profile picture must show you as a person)
The user has been flagged by other users or Hosts for inappropriate behaviour at Activities brokered through MinglMe or in chats on MinglMe's website or app
The user has provided false information at registration
The user is under 18 years old
The user violates MinglMe's Terms of Service
It is required by law or by decision of an authority
What happens to your data after deletion
When your account is deleted, your personal data is removed or anonymised. Some data is however retained for a limited time after deletion:
Accounting records (invoices, payment details) are retained for 7 years under the Swedish Accounting Act (1999:1078)
Data related to completed or ongoing Activities may be retained until the relevant liability period has expired
Data needed to handle any legal claims may be retained until the statute of limitations has expired

Cookies and tracking tools
Cookies are small text files stored on your computer or device by your browser when you visit our platforms.
We use cookies to:
Recognise you and your device
Remember your settings
Analyse web traffic
For marketing purposes

You can read more about how we use cookies, update your consent and see a list of all cookies used on the website via our cookie declaration.

How we protect your data
We take technical and organisational measures to protect your personal data, such as:
Encryption and authentication techniques
Regular review of systems and processes
Training of staff who process your data
Sharing of data
We only share your data with third parties if:
It is required to provide the Service (e.g. IT providers or payment services)
We have your explicit permission
It is required by law

We engage suppliers (data processors) that process your personal data on our behalf and according to our instructions. We primarily use data processors within the EU/EEA. We may, however, engage data processors outside the EU/EEA. We take appropriate measures under the GDPR to ensure that your personal data is protected and secure even if it is processed outside the EU/EEA. To ensure adequate safeguards in accordance with the GDPR among the data processors we work with outside the EU/EEA, their processing will always follow the European Commission's standard contractual clauses.

Our data processors
We engage the following main suppliers, which process personal data on our behalf:
Stripe (payment service for both subscriptions and ticket purchases) – processes payment data. Stripe may transfer data to the USA, which is done based on the European Commission's standard contractual clauses.
Brevo (email and newsletter delivery) – processes email address and name.
Vercel (web hosting and operations provider) – processes technical data and content in the Service.
Amazon Web Services (AWS) (cloud service and data storage) – stores and processes data required for the Service to function. AWS may transfer data to the USA, which is done based on the European Commission's standard contractual clauses.
Sanity (content management) – stores content published in the Service.
Google (analytics and login) – processes user data for analysis of how the Service is used. May transfer data to the USA under the European Commission's standard contractual clauses or other valid transfer mechanism.
Meta (marketing analysis via Meta Pixel) – processes website behaviour. May transfer data to the USA under the European Commission's standard contractual clauses.
Supermetrics (aggregated marketing analysis) – processes aggregated analytics data.
Sharing of data with Activity Hosts
To enable booked Activities to be carried out safely and to a high standard, MinglMe may share limited personal data with Hosts.
Such data may include:
First name and age group
Any reported allergies, food intolerances or dietary requirements (where the Activity involves food or drink)
Other information necessary for the safe conduct of the Activity

Data is only shared to the extent necessary to plan and carry out the specific Activity. The Host may not use the data for any purpose other than carrying out the Activity.

Sharing of personal data with marketing partners
MinglMe may, in connection with certain partnerships, share your name and email address with selected partners so they can contact you with offers, information or marketing relating to their activities or services.
Such sharing only occurs if you have given your explicit consent. Consent is voluntary and can be withdrawn at any time via your account or by contacting us.
In such cases, our partners are independent data controllers and are themselves responsible for their processing of your personal data in accordance with applicable data protection legislation.

Your rights
You have the right, at any time, to:
Withdraw or change consents you have given us
Request access to your personal data
Request that your data is not processed for direct marketing purposes
Have incorrect data corrected
Have your data deleted
Restrict the processing of your data
Request transfer of your data to another party

Contact
If you have questions about the processing of personal data, or if you believe the data is incorrect, want to request rectification, erasure, restriction, or wish to object to the processing, please contact us at support@minglme.se.

Complaints
You have the right to file any complaints regarding the processing of your personal data with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten), which is the supervisory authority for the processing of personal data in Sweden.

Cookie Declaration