PRIVACY POLICY

Maji Financial Wellness Services understands that your privacy is important to you and that you care about how your personal data is used. We respect and value the privacy of everyone who visits our platform, www.maji.io (“Our Platform”).

Please read this Privacy Policy carefully and ensure that you understand it. By visiting Our Platform, you are accepting and consenting to the practices described in this policy.

  1. Definitions and Interpretation
    1. In this Policy, the following terms have the following meanings:
      1. “Personal data” means any and all data that relates to an identifiable person who can be directly or indirectly identified from that data. This definition shall, where applicable, incorporate the definitions provided in the EU Regulation 2016/679 – the General Data Protection Regulation (“GDPR”); and
      2. For the purpose of the Data Protection Act 2018 (Act), the data controller is Maji Financial Wellness Services (“Maji/We/Us/Our”) of 37 Oakfield Gardens, Beckenham, Kent BR3 3AY, United Kingdom. Our ICO Registration Number is: ZA521090.
  2. What Does This Policy Cover?
    1. This Privacy Policy applies only to your use of Our Platform. Our Platform may contain links to other websites. Please note that we have no control over how your data is collected, stored, or used by other websites and we advise you to check the privacy policies of any such websites before providing any data to them.
  3. Your Rights
    1. Under the GDPR, you have the following rights, which we will always work to uphold:
      1. The right to be informed about our collection and use of personal data. This document should tell you everything you need to know, but you can always contact us to find out more or to ask any questions;
      2. The right to access the personal data we hold about you;
      3. The right to have your personal data rectified if any personal data we hold about you is inaccurate or incomplete;
      4. The right to be forgotten – i.e. the right to ask us to delete or otherwise dispose of any of your personal data we have;
      5. The right to restrict (i.e. prevent) the processing of your personal data;
      6. The right to data portability. This means that you can ask us for a copy of your personal data held by us to use with another service or organisation;
      7. The right to object to us using your personal data for particular purpose or purposes;
      8. Rights with respect to automated decision-making and profiling. For our Beta product we will not be conducting any automated decision making or profiling.
    2. For more information about our use of your personal data or exercising your rights as outlined above, please contact us using the details in Part 9.
    3. Further information about your rights can be obtained from the Information Commissioner’s Office or your local Citizens Advice Bureau.
    4. If you have any cause for complaint about our use of your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office.
  4. What Data Do We Collect?
    1. We collect personal data (your name and email address) from you when you register your account with Maji.
    2. If you are an employee, your employer also gives us personal data in order to enable us to send you an email via your work email address, and to create a personalised pension video for you. This data includes your name, work email address, NI number, salary and pension contribution rate.
    3. We also collect personal data (your name and email address) if you complete our contact form.
  5. How Do We Use Your Data?
    1. Under the GDPR, we must always have a lawful basis for using personal data. This may be because the data is necessary for the performance of the service(s) we provide, because you have consented to our use of your personal data, or because it is in our legitimate business interests to use it. We may process your data for any or all of these reasons. Your personal data may be used for one or more of the following purposes:
      1. Providing and managing your account.
      2. Supplying our services to you and/or to your employer or organisation.
      3. Communicating with you.
    2. If we have been given your personal data by your employer, we will delete any personal data we hold on you within 2 weeks of our first contact with you if you do not go onto register your own personal account.
    3. You have the right to withdraw your consent to us using your personal data at any time, and to request that we delete it.
    4. We will not share any of your personal data with any third parties for any purposes.
  6. How and Where Do We Store Your Data?
    1. We will keep your personal data for as long as you have a registered personal account with Maji. You can terminate this account whenever you want to.
    2. Your data will be stored:
      1. on our secure servers located in the European Economic Area (“EEA”) for purposes of delivering Maji’s services;
      2. on Sendgrid for purposes of sending emails.
  7. Data Security, Retention and Disposal
    1. Data security
      1. We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk.
    2. Data retention
      1. Your personal data will be securely held by Maji until such time as you choose to delete your account.
      2. You can unsubscribe from Maji emails at any time by clicking on the ‘unsubscribe’ button at the bottom of our emails.
    3. Data Disposal
      1. When you delete your account, your personal data will be erased, deleted, destroyed, or otherwise disposed of.
  8. How Can You Access Your Data?
    1. If you want to know what personal data we have about you, you can ask us for details of that personal data and for a copy of it (where any such data is held). This is known as a ‘subject access request’.
    2. All subject requests should be made in writing and sent to the email or postal addresses shown in Part 9.
    3. There is not normally any charge for a subject request.  If your request is ‘manifestly unfounded or excessive’ (for example, if you make repetitive requests) a reasonable fee may be charged to cover administrative costs in responding, or we can lawfully refuse to deal with the request.
    4. We will respond to your subject access request within less than a month and, in any case, not more than one month from receiving it (calculated from the day of the week after the request is received). Normally, we aim to provide a complete response, including a copy of our personal data within that time.  In some cases, however, particularly if your request is more complex, more time may be required up to a maximum of three months from the date we receive your request. You will be informed of progress.
  9. Contacting Us
    1. If you have any questions about Our Platform or this Privacy Policy, please contact us by email at connect@maji.io or by post at Maji, c/o Allia Business Centre, 8 – 20 London Lane, London, E8 3PR. Please ensure your query is clear, particularly if it is a request for information about the data we hold about you.
  10. Changes to Our Privacy Policy
    1. Any changes will be immediately posted on Our Site and you will be deemed to have accepted the terms of the Privacy Policy on your first use of Our Site following the alterations. We recommend that you check this page regularly to keep up-to-date.
  11. Cookies
    1. The Internet pages of the Мaji use cookies. Cookies are text files that are stored in a computer system via an Internet browser.Many Internet sites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a character string through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This allows visited Internet sites and servers to differentiate the individual browser of the dats subject from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified using the unique cookie ID.Through the use of cookies, the Мaji can provide the users of this website with more user-friendly services that would not be possible without the cookie setting.

      By means of a cookie, the information and offers on our website can be optimized with the user in mind. Cookies allow us, as previously mentioned, to recognize our website users. The purpose of this recognition is to make it easier for users to utilize our website. The website user that uses cookies, e.g. does not have to enter access data each time the website is accessed, because this is taken over by the website, and the cookie is thus stored on the user’s computer system. Another example is the cookie of a shopping cart in an online shop. The online store remembers the articles that a customer has placed in the virtual shopping cart via a cookie.

      The data subject may, at any time, prevent the setting of cookies through our website by means of a corresponding setting of the Internet browser used, and may thus permanently deny the setting of cookies. Furthermore, already set cookies may be deleted at any time via an Internet browser or other software programs. This is possible in all popular Internet browsers. If the data subject deactivates the setting of cookies in the Internet browser used, not all functions of our website may be entirely usable.
Cookie settings