1. Information We Collect About You

We use Your data to develop and ensure MiraKey’ Services work better for You and for others. This describes what data We collect about You (which can vary depending on jurisdiction).

2. Information You Provide

MiraKey uses data You input into Our system when You open, register, and use a MiraKey account. Examples include but are not limited to; email addresses or phone numbers, information that identifies who You are, transaction information and any other data You give us. We collect information You provide when You:

• Make a request to receive information about MiraKey or Our Services;
• Apply or sign up for a MiraKey account or other Services;
• Go through Our identity or account verification process, authenticate into Your account, communicate with Us, answer Our surveys, upload content, or otherwise interact with the Services.

We call this information Seller Account Data.
Specifically, We collect (and/or have collected during at least the 12-month period preceding the effective date of this Privacy Notice) the following categories of information:

• Financial information, such as bank account information and payment card numbers;
• Transaction information, such as information about when and where payment transactions occur, the names of the transacting parties, a description of the transactions, the payment or transfer amounts, billing and shipping information, and the devices and payment methods used to complete the transactions.
• Other Information You Provide, such as information that You voluntarily provide to Us, including Your survey responses; participation in contests, promotions, or other prospective seller marketing forms or devices; suggestions for improvements; referrals; or any other actions You perform on the Services.
• Internet or other electronic network activity information, which includes information about how You use and interact with Our Services, including Your access time, “log-in” and “log-out” information, browser type and language, the domain name of Your internet service provider, other attributes about Your browser, any specific page You visit on Our platform, content You view, features You use, the date and time of Your use of the Services, Your search terms, and the website You visited before You visited or used the Services;
• Online identifiers (e.g., information You use to log in to your account), Internet Protocol (“IP”) address, and unique personal identifiers (including device identifier; cookies, beacons, pixel tags, mobile ad identifiers and similar technology; customer number; unique alias, and other identifiers);
• Professional or employment-related information, such as information You provide about Your business (e.g., appointments, staffing availability, and contact data) and Your employees (e.g., job titles, payroll information, and hours worked and other timecard data);
• Inferences drawn from any of the information above to create a profile about You that may reflect, for example, Your preferences, characteristics, and behavior, including for account security purposes or to enhance Our Services to You.
• Identification Information, such as:
• Name, email address, postal address, signature, and phone number;
• FEIN, driver’s license number, Social Security number, Taxpayer Identification number, or other government-issued identification number

3. Information We May Collect About Your Customers

We also obtain information about Your customers on Your behalf when they transact with You. We call this information Your Customers’ Data. We collect Your Customers’ Data when they transact with You through Your use of MiraKey’ products, for instance when they make a payment at Your establishment, or schedule an appointment, or receive an invoice from You. The Customer Data We collect will vary depending on how You use Our Services and which Services You use. Your Customers’ Data may include:

• Device Information. Information about Your Customer’s device, including hardware model, operating system and version, device name, unique device identifier, mobile network information, and information about the device’s interaction with Our Services.
• Financial Information. Bank account and payment card numbers.
• Identification Information. Your customers’ name; email address; mailing address; phone number; government-issued identification; or other historical, contact, and demographic information, and signature.
• Location Information. The location of Your Customer’s device depending on how they pay.
• Transaction Information. When Your Customers use MiraKey to make or record payments to You, We collect information about when and where the transactions occur, the names of the transacting parties, a description of the transactions which may include item-level data, the payment or transfer amounts, billing and shipping information, and the devices and payment methods used to complete the transactions.
• Use Information. Information about how Your Customers transact with You using Our Services, including access time, “log-in” and “log-out” information, browser type and language, country and language setting on Your device, IP address, the domain name of Your Customer’s Internet service provider, other attributes about Your Customer’s browser, mobile device and operating system, features Your Customer uses, and the date and time of use of the Services.
• Other Information You or Your Customers Provide. Information that Your Customers voluntarily provide You, or that You input into MiraKey’ systems about Your Customers. For example, survey responses; participation in contests, promotions, or other prospective seller marketing forms or devices; suggestions for improvements; notes You take about Your customers, or any other actions performed when they transact with You using MiraKey.

4. Information Your Customers May Provide MiraKey

Identification information. Your customers’ name, email address, or telephone number, which We link to a tokenized version of their payment card number. Privacy laws that apply in certain places, like California, treat “businesses” and “service providers” differently. Under those laws, a business is the company that decides why and how to process personal information. A service provider processes personal information on behalf of a business in order to provide Services. When MiraKey processes Your Customers’ Data, we generally act as Your service provider. In select cases, however, we may act as a business when We process Your Customers’ Data. For example, We act as a business when We use Your Customers’ Data to send Your Customers digital receipts directly from MiraKey, or when We allow You to use Customer Directory or MiraKey Marketing to contact Your buyer using a masked email address that gets routed to them via MiraKey.

5. Sources of Information We collect about You

We collect (and/or have collected during at least the 12-month period preceding the effective date of this Privacy Notice) information about You from the following categories of sources:

• You directly, when You submit information to Us or allow Us to access information about You;
• Your devices and applications when You interact with Our website or use Our Services;
• Our group companies and affiliates;
• Other sources, including:
• Social media networks;
• Online advertising companies;
• Service providers who help Us with third-party identity verification, credit confirmation and fraud detection;
• Credit bureaus and financial institutions;
• Mailing list providers; and
• Publicly available sources (such as public records of criminal convictions and arrest records).

6. How We Use Your Information

We may collect, use and share (or have collected, used or shared during at least the 12-month period preceding the effective date of this Privacy Notice), information about You for the following reasons:

• Performing, improving, and developing Our Services
• Delivering the information and support You request, including technical notices, security alerts, and support and administrative messages such as to resolve disputes, collect fees, and provide assistance for problems with Our Services or Your MiraKey account;
• Determining what or whether the Services are available in Your country;
• Developing new products and Services;
• Displaying Your historical transaction or appointment information;
• Improving, personalizing, and facilitating Your use of Our Services;
• Processing or recording payment transactions or money transfers;
• Providing, maintaining, and improving Our Services, including Our website; and
• Otherwise providing You with the MiraKey products and features You choose to use.

7. Communicating with You About Our Services

• Sending You surveys and getting Your feedback about Our Services;
• Providing information about and promoting Our Services and third-party Services to You; and
• Sending You information We think you may find useful or which You have requested from Us about Our products and Services.

8. Protecting Our Services and Maintaining a Trusted Environment

• Conducting investigations, complying with and enforcing applicable laws, regulations, legal requirements and industry standards, and responding to lawful requests for information from the government or to valid legal process;
• Contacting You to resolve disputes, collect fees, and help You with Our Services;
• Debugging to identify and fix errors that impair how Our Services function;
• Making sure You follow Our Terms of Service or applicable agreements or policies;
• Investigating, detecting, preventing, recovering from or reporting fraud, misrepresentations, security breaches or incidents, other potentially prohibited, malicious, or illegal activities, or to otherwise help protect Your account;
• Protecting Your, Our, Our customers’, or Your customers’ rights or property, or the security or integrity of Our Services;
• Verifying or maintaining the quality and safety of Our Services; and
• Verifying Your identity

9. Advertising and Marketing

• Marketing Our Services to You; and
• Communicating with You about opportunities, products, services, contests, promotions, discounts, incentives, surveys, and rewards offered by Us and select partners.
• If We send You marketing emails, each email will have instructions on how You can “opt out” of getting future marketing from Us.

10. When and With Whom We Share Your Information

We may share the personal information described “Information We Collect About You” section with the following categories of service providers and third parties:

• With other users of Our Services with whom You interact:
- With other users of Our Services with whom You interact through Your own use of Our Services. For example, we may share information with Your customers when You make or accept a payment, appointment, or money transfer using Our Services.
• With Our affiliates and group companies:
- With Our group companies and corporate affiliates, for the reasons outlined above. For example, we may share Your information internally to understand how You engage with MiraKey company products to help make Our Services better for You and for everyone, and to help Us build Services tailored to Your preferences.
• With Our service providers:
- With service providers who help Us provide, maintain, and improve Our Services (e.g., vendors who help Us with fraud prevention, identity verification, and fee collection services), as well as financial institutions, payment networks, payment card associations, credit bureaus, partners and other entities that help us provide the Services;
- With service providers that help Us run Our advertising campaigns, contests, special offers, or other events or activities.
• With Your consent:
- For example, at Your direction or as described at the time You agree to share; or When You authorize a third-party application or website to access Your information.
• Aggregated and anonymized information:
- We also may share (within Our group of companies or affiliates, or with service providers or other third parties) aggregated and anonymized information that does not specifically identify You or any individual user of Our Services.

11. Cookies and Other Similar Technologies

Digital cookies and similar technologies help Us make Our Services better to use by doing things like recognizing when You have signed in, analyzing how You use Our Services so We can make them more useful to You, giving You a more personalized experience, and making Our ads work better for You.
We use these automated technologies to collect Your device information, internet activity information, and inferences as described above. These technologies help Us to:

• Remember Your information so You do not have to re-enter it;
• Track and understand how You use and interact with Our online Services and emails;
• Tailor Our online Services to Your preferences;
• Measure how useful and effective Our Services and communications are to You; and
• Otherwise manage and enhance Our products and Services.

12. Third-Party Advertising and Analytics

We use other companies as service providers to help Us analyze Our site, track metrics, and advertise to You. These service providers generally promised Us under contract to keep data private but have their own policies that You should be aware of:

We may use third-party analytics service providers to help Us with Our online Services, such as but not limited to Google Analytics or Facebook. The analytics providers that administer these Services use technologies such as cookies, web beacons, and web server logs to help Us analyze how You use Our online Services.
• To learn more about how Google Analytics use your date please visit https://marketingplatform.google.com/about/
• To learn more about how Facebook uses your data please visit https://www.facebook.com/help/325807937506242/ or log on to your Facebook account and access your settings. To understand more about Facebook advertising please see here https://www.facebook.com/about/ads.

13. How Long We Keep Your Information

We keep Your information as long as You keep using Our Services. After that, we keep it for as long as We need it to insure business necessities and continue without interruption. We generally keep Your information as long as reasonably necessary to provide You with the Services or to comply with applicable law. However, even after You deactivate Your account, We can retain copies of information about You and any transactions or Services in which You may have participated for a period of time that is consistent with applicable law, applicable statute of limitations or as We believe is reasonably necessary to comply with applicable law, regulation, legal process, or governmental request, to detect or prevent fraud, to collect fees owed, to resolve disputes, to address problems with various stakeholders.

14. Location Information

In order to provide certain Services, we may request access to location information, including precise geolocation information collected from Your device. If You do not consent to the collection of this information, certain Services will not function properly, and You will not be able to use those Services. You can stop Our collection of location information at any time by changing the preferences on Your mobile device. If You do so, some of Our mobile applications will no longer function. You also may stop Our collection of location information via mobile application by following the standard uninstall process to remove all MiraKey mobile applications from Your device.

15. Promotional Communication

You can opt out of receiving promotional email messages from MiraKey by either following the opt-out instructions included in those messages or by logging into Your MiraKey account and changing Your email notification settings. You may only opt out of promotional text messages from MiraKey by replying STOP. Opting out of receiving communications may impact Your use of the Services. If You decide to opt out, we may still send You non-promotional (transactional) communications, such as digital receipts and messages about Your account or Our ongoing business relations.

16. Rights of California Residents

California Civil Code Section 1798.83, also known as the “Shine The Light” law, permits Our users who are California residents to request and obtain from Us, once a year and free of charge, information about categories of personal information (if any) We disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which We shared personal information in the immediately preceding calendar year.
If You are a California resident and would like to make such a request, please submit Your request in writing to Us using the contact information provided below. If You are under 18 years of age, reside in California, and have a registered account with the Site [or our mobile application], You have the right to request removal of unwanted data that You publicly post on the Site [or Our mobile application]. To request removal of such data, please contact Us using the contact information provided below, and include the email address associated with Your account and a statement that You reside in California. We will make sure the data is not publicly displayed on the Site  [or our mobile application], but please be aware that the data may not be completely or comprehensively removed from Our systems.
Businesses that use MiraKey software own and operate their own business entity and may do certain things differently than Us. MiraKey business customers and MiraKey are independent third parties, and this Privacy Policy does not apply to the privacy practices of any independent third-party business user of MiraKey Services. Certain laws require businesses to meet specific criteria and thresholds before rights are recognized and enforced. Consumers should review specific policies of all businesses they patron to determine their specific rights under the context to which it applies.

17. Privacy Rights regarding Your Personal Information

The following section provides specific information for California residents, as required under California privacy laws, including the California Consumer Privacy Act (“CCPA”) as well as other jurisdictions and regulations that allow for individual privacy rights such as the European Economic Area, including the United Kingdom, and the General Data Protection Regulation (“GDPR”).

18. Explanation of Individual Rights

Right to a Copy/Access or Portability: You may have the right to request, free of charge, a copy of the specific pieces of Personal Information that We have collected about You in a readily useable format that allows You to transmit this information to another entity without hindrance. Right to Know: You may have the right to request, free of charge, that We provide certain information about how We have handled Your Personal Information, including the categories of Personal Information collected; categories of sources of Personal Information; business and/or commercial purposes for collecting Your Personal Information; categories of third parties/with whom We have shared Your Personal Information; and whether We sell any categories of Personal Information to third parties (however, We do not sell Your Personal Information). Right to Deletion: You may have the right to request deletion of Your Personal Information that We have collected, subject to certain exemptions. Please note that We may need to retain certain information for record-keeping purposes and/or to complete any transactions that You began prior to requesting a change or deletion (e.g., when You make a purchase or enter a promotion, you may not be able to change or delete the Personal Information provided until after the completion of such purchase or promotion). We may also retain residual information, such as records to document that Your request has been fulfilled. Right to Non-Discrimination: You may have the right not to receive discriminatory treatment based on exercising Your privacy rights under applicable law. Right to Correct/Rectify: You may have the right to rectify any incorrect Personal Information We may hold about You. Right to Object/Restrict: You may have the right to object to a specific use of Your Personal Information as it is laid out in this Privacy Policy subject to Our legitimate business interests.

19. Submitting a Request

Where applicable law applies, You may request to access, correct, object to the use, restrict or delete Personal Information that You have previously provided to Us. You may submit a request by contacting Us at info@mymirakey.com with the subject line "Privacy Request" and We will respond to Your request consistent with applicable law. For Your protection, we may only implement requests with respect to the Personal Information associated with the particular email address that You use to send us upon registering for a MiraKey account, and We may need to verify Your identity before implementing Your request. We may require that You provide identifying documentation such as a copy of Your government-issued identification card and as an added level of security, we may also verify Your identity by contacting You at the email address or phone number We have on file. We will only consider Your Privacy Request validly received after We have successfully identified You.

20. Children’s Personal Information

Our Services are not directed to children under 16, and We do not knowingly collect or store any Personal Data about persons under the age of 16. If We collect Your data and later learn You are under 16, We will take steps to delete such information from Our files as soon as practicable. We do not sell Personal Data of children under the age of 16.

21. Security

We take security of Your data seriously and use best practices to keep Your data safe. We take reasonable measures, including administrative, technical, and physical safeguards, to protect Your information from loss, theft, and misuse, and unauthorized access, disclosure, alteration, and destruction. However, please be aware that no method of transmitting information over the Internet or of storing information is completely secure, and We cannot guarantee absolute security of the transmission or storage of Your information. We hold information about You both at our own premises and with the assistance of third-party service providers. In the event of an unauthorized loss or disclosure of Personal Data, Visitors, Partners, and Customers may be subject to a risk of harm resulting from such loss or disclosure.

22. Storage and Processing

We operate in several countries, and We (or Our service providers) may move Your data and process it in various geographical locations.
We may, and We may use third-party service providers, to process and store Your information in the United States, Canada, the European Union, and other countries.

23. Changes to This Privacy Notice

We may amend this Privacy Policy from time to time by posting a revised version and updating the “Effective Date” above. The revised version will be effective on the “Effective Date” listed. We will provide You with reasonable prior notice of material changes in how We use Your information, including by email if You have provided one. If You disagree with these changes, you may cancel Your account at any time. If You keep using Our Services, you consent to any amendment of this Privacy Policy.

24. Contact

If you have any questions or concerns, please contact our team with any questions or concerns regarding this Privacy Policy:
info@keymaster.plus

If you have any questions or concerns regarding our privacy policies, or if you believe our privacy policies or applicable laws relating to the protection of your personal information have not been respected, you may file a complaint with our privacy team listed above. We will respond to let you know when you can expect a further response. We may request additional details from you regarding your concerns and may need to engage or consult with other parties in order to investigate and address your issue. We may keep records of your request and any resolution.