We take the privacy of our users very seriously. Our policy is written to be clear, and understandable. Please let us know if you have any privacy concerns that have not been addressed by sending an email to: firstname.lastname@example.org
We’ll start by getting a few definitions out of the way that should help you understand this policy. When we say “we,” “us,” and “MNX.io,” we’re referring to MNX Solutions, LLC d/b/a MNX.io, a State of Michigan limited liability company. When we say “you” or “Member,” we’re referring to the person or entity that’s registered with us to use the Services.
Data we collect
- Information from your Use of the Service: We may get information about how and when you use the Services. This information may include your IP address, time, date, browser used, and actions taken by you within the application.
- Cookies: When you register to use MNX.io, we store “cookies,” which are strings of code, on your computer. We use those cookies to collect information about when you visit our Website, when you use the Services, your browser type and version, your operating system, and other similar information. You may turn off cookies that have been placed on your computer by following the instructions on your browser, but if you block our cookies, it may be more difficult (and maybe even impossible) to use the Services.
How we use your data
- To promote use of our Services. For example, if you leave your Personal Information when you visit our Website and don’t sign up for any of the Services, we may send you an email asking whether you want to sign up. And if you use any of our Services, and we think you might benefit from using another Service we offer, we may send you an email telling you about it.
- To bill and collect money owed to us. This includes sending you emails, invoices, receipts, notices of delinquency, and alerting you if we need a different credit card number. We use third parties for secure credit card transaction processing (stripe.com), and we send billing information to those third parties to process your orders and credit card payments.
- To enforce compliance with our Terms of Service and applicable law. This may include developing tools and algorithms that help us prevent violations.
- To provide customer support.
- To protect the rights and safety of our Members and third parties, as well as our own.
- To meet legal requirements like complying with court orders and valid subpoenas. This section deserves special attention, and is described in further details below.
- To provide information to representatives and advisors, like attorneys and accountants, to help us comply with legal, accounting, or security requirements.
- To prosecute and defend a court, arbitration, or similar proceeding.
- To communicate with you about your account for informational, not promotional, reasons.
- To send you informational and promotional content that you may choose (or “opt in”) to receive. You can stop receiving our promotional emails by following the unsubscribe instructions included in every email.
Further detail on meeting legal requirements
Respect for the privacy and security of data you store with MNX.io underpins our approach to complying with these legal requests. When we receive such a request, our team reviews the request to make sure it satisfies legal requirements and our policies. Generally speaking, for us to comply, the request must be made in writing, signed by an authorized official of the requesting agency and issued under an appropriate law. If we believe a request is overly broad, we’ll seek to narrow it. We notify users about legal demands when appropriate, unless prohibited by law or court order.
The government needs legal process—such as a subpoena, court order or search warrant—to force MNX.io to disclose user information. Exceptions can be made in certain emergency cases, though even then the government can’t force MNX.io to disclose.
What kinds of emergency cases?
Sometimes we voluntarily disclose user information to government agencies when we believe that doing so is necessary to prevent death or serious physical harm to someone. The law allows us to make these exceptions, such as in cases involving kidnapping or bomb threats. Emergency requests must contain a description of the emergency and an explanation of how the information requested might prevent the harm. Any information we provide in response to the request is limited to what we believe would help prevent the harm.
We normally keep logs of email and server activity for up to 12 months. This is for the purposes of diagnosing and fixing problems, which are often reported to us weeks or months after they occur.
Backups and logs may be kept longer than these limits in special circumstances. For example, if a problem is taking a long time to resolve, logs relevant to that investigation may be retained. Or if a server that contains backups or logs is temporarily offline because of a fault, then those backups or logs may not be deleted until the server is brought back up.
These situations are unusual, however, and when they do occur, they are temporary.
- Sep 16, 2016: Data retention changes, we no longer store backups of your servers by default.