Privacy Policy

MessageMind Privacy Policy (Art. 13 of EU Regulation 679/2016 – GDPR)

Last updated: April 21, 2025

This Privacy Policy, in compliance with the General Data Protection Regulation (GDPR – EU Regulation 679/2016), outlines how MessageMind, legally operated by TMMA SRLS, VAT number IT17152861005, with registered office at VIA DURAZZO 28 – 00195 – ROMA (RM), Italy (hereinafter the “Controller”), collects, uses, and safeguards the personal data of Customers globally who use the MessageMind platform and associated integrated services including Google, LinkedIn, Facebook/Meta, Twilio, AME, and custom APIs.

  1. Data Controller The Data Controller is TMMA SRLS (MessageMind), based at VIA DURAZZO 28 – 00195 – ROMA (RM), Italy. For any inquiries, clarifications, or requests regarding the processing of personal data, please contact the Controller via email at: [email protected]

  2. Categories of Data Subjects and Data Processed MessageMind processes personal data of Customers worldwide, including but not limited to representatives, executives, employees, and collaborators authorized to use the platform. The processed data includes identification details, contact information, login data via integrated services such as Google, LinkedIn, Facebook/Meta, data obtained through Twilio and AME integrations, custom API data, banking and fiscal data, billing data, and software usage data.

  3. Purposes and Legal Basis of Processing

  • Contractual Performance: Execution of contracts for platform services, including integration with third-party services (Google, LinkedIn, Facebook/Meta, Twilio, AME) as per Art. 6(1)(b) GDPR.

  • Support and Informational Requests: Responding to Customer queries via integrated channels (Art. 6(1)(b) GDPR).

  • Commercial Communications (Soft Marketing): Sending emails about similar services previously acquired by Customers (Art. 6(1)(f) GDPR).

  • Direct Marketing: Sending promotional materials upon explicit, freely given consent (Art. 6(1)(a) GDPR).

  • Customer Satisfaction Surveys: Conducting voluntary surveys for continuous service improvement (Art. 6(1)(f) GDPR).

  • Extraordinary Operations and Legal Defense: Processing data for corporate operations or legal defense (Art. 6(1)(f) GDPR).

  1. Processing Methods and Retention Period Personal data are processed electronically and/or on paper, ensuring confidentiality, integrity, and security, and retained only for the duration necessary to fulfill processing purposes or as required by law.

  2. Security Measures MessageMind implements technical and organizational measures according to Art. 32 GDPR, safeguarding data against unauthorized access, loss, misuse, or alteration.

  3. Data Disclosure Personal data may be shared with:

  • Authorized personnel (employees and collaborators);

  • Third-party IT providers and integrated platforms (Google, LinkedIn, Facebook/Meta, Twilio, AME);

  • External consultants (legal, fiscal, financial, technical);

  • Authorities when required by law.

  1. International Data Transfers MessageMind may transfer personal data internationally outside the European Economic Area (EEA). Such transfers will comply with GDPR standards, utilizing adequacy decisions or standard contractual clauses approved by the European Commission.

  2. Rights of Data Subjects Data subjects have the following rights under GDPR:

  • Access, rectify, or erase personal data;

  • Restrict processing or object to processing;

  • Data portability;

  • Lodge a complaint with the competent Data Protection Authority.

  1. Revisiting Consent Customers can review or modify their consent for marketing purposes at any time through the “Revisit Consent” button on the platform or by emailing [email protected].

Explicit consent to personal data processing for direct marketing purposes (optional): ☐ I consent to the processing of my data for direct marketing purposes.

For further information, please contact: [email protected]