Merchant login

Privacy Policy

Privacy policy
Terms & conditions
Card enrolment terms

Welcome to mimojo’s privacy policy.

Who we are

we are mojo solutions fz llc, including our subsidiaries and affiliates, (“mimojo”, “we,” “us,” “our”) and we operate a digital cashback platform in the united arab emirates (“uae”).

We recognise the importance of protecting the privacy of all users (“you” or “user”) who access and/or use, whether as a guest or a subscribed member, our mobile applications (“app”), websites, or portions of our websites, including any content, functionality and services offered on or through our app, websites, any webpages (all of which are collectively called our “site”).

About this privacy policy

For the purposes of applicable data protection law, we are a data controller in respect of your personal data. we are responsible for ensuring that we use your personal data in compliance with data protection law.
This privacy policy is directed to individuals whose personal data we collect and process in relation to mimojo (such as contacting us, registering an account and browsing our site, availing offers and cashback from our site or through communication you may receive from us).
This privacy policy will inform you as to how we look after your personal data when you visit our site and tell you about your privacy rights and how the law protects you.
Please take the time to read and understand this privacy policy together with any other privacy notice we may provide on specific occasions to you so that you are fully aware of how and why we are using your data.
Please keep us informed if your personal data changes during your relationship with us.

Contact us

For any questions relating to this Privacy Policy or the manner in which we collect and use your personal data, please contact us:

Attention: David Ashford
Contact: Chief Product Officer
Email address: david@mimojo.io
Address: Mojo Solutions FZ LLC, PO Box 500016, Dubai Internet City
Phone: +971 54 791 7699

The data we collect about you

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together follows:
  • Identity Data (note that registration of an account is mandatory in order for you to be entitled to any cashback) – includes first name, last name, username or similar identifier, date of birth, identification details or other national identifier.
  • Contact Data – includes telephone number and email address.
  • Financial Data (note that registering a payment card to your account is mandatory for you to be entitled to any cashback) – includes payment card details.
  • Transaction Data – includes details about payments made by you to merchants featured on our Site from time to time, details of the goods and services you have purchased, any refunds processed for such goods and/or services and any failed and unauthorised payment transactions with such merchants.
  • Technical Data – includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this Site.
  • Account Data – includes your replies to account related questions, any login information (such as a username), purchases made by you, cashback linked to your account, your interests, preferences, feedback and any survey responses.
  • Usage Data – includes information about how you use our Site, which may reveal your preferences, interests or manner of use of the App and the times of use and any photos uploaded onto the Site by you.
  • Marketing and Communications Data – includes your preferences in receiving marketing from us and our third parties and your communication preferences.
You must provide this information to use mimojo, the App and our Site. Sometimes you can opt out of providing certain information to us through the ‘My Account’ section of the App or by using the details set out in the “Contact us” section above.
We may also collect, use and share statistical or demographic data (“Aggregated Data”) for any purpose. Aggregated Data may be derived from your personal data but is not strictly considered personal data. However, if we use Aggregated Data with your personal data such that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this Privacy Policy.
Except in limited circumstances which will be made clear to you, we do not collect any Sensitive Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sexual status, political opinions, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
If you fail to provide any data when requested and we need to collect that data then you may not be able to participate in mimojo and receive any cashback rewards from us.

How do we collect your data

We may collect data about you using different methods but typically this includes:
  • Through our interactions. For example, you will need to provide your Identity, Contact, Transaction and Financial Data when signing up for a mimojo membership account.
  • As you interact with our Site. For example, we may automatically collect certain Technical Data about your equipment, browsing actions and patterns and, as you navigate around our Site.
  • Ad-hoc basis. We may collect Usage Data, Profile Data and Marketing and Communications Data from time to time.

Your data provided to us by third parties

To be eligible for cashback and to participate in mimojo, we will receive your Financial, Transaction, Identity and Contact Data from third parties, including:
  • Merchants featured on our Site from time to time
  • Payment operators; and
  • Card payment network providers.
To help improve the service we provide and the functionality of our Site we may also receive personal data about you from various third parties as set out below:
  • Technical Data from analytics providers such as Google;
  • Profile Data from third party agencies, such as credit reference agencies (Experian etc), fraud prevention agencies, law enforcement agencies, public databases and registers and records; and
  • Contact and Technical Data where you join our Site as a result of our marketing activities involving third parties.

What do we use your data for

Your personal data may be processed by us in the following ways and for the following purposes:
  • To verify your identity, create and manage your mimojo account;
  • To enable us to provide the mimojo cashback service to you. This includes, but is not limited to, processing and facilitating any cashback due to you, monitoring payments from your registered card, paying out your accrued cashback, processing of missing cashback payments (if applicable);
  • Answering and processing any claims or enquiries you may raise with us. For example, claims for missing cashback and contesting cashback awards;
  • Managing our relationship with you. For example, to notify you about changes to our terms or Privacy Policy;
  • Promoting features on our Site;
  • Marketing our services to existing and former customers to promote our business to existing and former customers;
  • Obtaining business insight into how members use the Site (for example, by delivering relevant Site content and advertisements to you and by measuring or understanding the effectiveness of the advertising we serve to you using data analytics making suggestions to you about goods or services that may be of interest to you);
  • To protect the security of systems and data used to provide the Site; and
  • Perform our obligations under contracts entered into with, or for the benefit of, you.

How are we permitted to use your data

Under data protection law, we can only use your information if we have a proper reason. For example:
  • We have obtained your consent;
  • It is necessary for a contract we have with you, or because you have asked us to take specific steps for entering into, amending or terminating a contract;
  • To protect your interests;
  • We have legal and regulatory obligations that we have to discharge;
  • We may need to in order to establish, exercise or defend our legal rights or for the purpose of legal proceedings; and
  • The personal data has been made public by you.

Disclosure of your data to third parties

We may disclose your personal data to other members of our group but we will take steps to ensure that the personal data is accessed only by our employees that have a need to do so for the purposes described in this Privacy Policy.
In order to facilitate the mimojo cashback service and ensure you receive any cashback you are entitled to, we need to share your Financial, Transactional, Identity and Contact Data with certain third parties that we are partnering with to provide mimojo, including:
  • Merchants featured on our Site from time to time;
  • Payment operators; and
  • Card payment network providers.
We only allow the companies referred to above to handle your information if we are satisfied they will take appropriate measures to protect your information.
We may also share your personal data with the following categories of third parties:
  • To third party agents or contractors for the purposes of providing services to us (for example, the providers of our electronic data storage services and IT and communications service providers) and professional advisors such as law firms, accountants and auditors. These third parties will be subject to confidentiality requirements and they will only use your personal data as described in this Privacy Policy;
  • With any stock exchange and public bodies responsible the governance and administration of publicly listed companies;
  • If we sell any of our business or assets or are acquired by a third party, in which case we may disclose your personal data to the prospective buyer for due diligence purposes; or
  • To the extent required by law, regulation or any court order, for example if we are under a duty to disclose your personal data in order to comply with any legal obligation or request from a regulatory authority, and to establish, exercise or defend our legal and contractual rights.

Marketing

We may use your Identity, Contact, Technical, Usage and Profile Data to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which products, services and offers may be relevant for you (we call this marketing).
We strive to provide you with choices regarding certain personal data uses, particularly around marketing and advertising. Within your account you can view and make certain decisions about your personal data use in relation to marketing emails.
You have the right to opt out of receiving marketing communications at any time by updating your marketing preferences through our App or by using the details set out in the “Contact us” section above.

Third party sites

Our Site may link you to other apps, websites or services owned and operated by certain third parties. These other apps, websites or services may also gather information about you in accordance with their own separate privacy policies. For privacy information relating to these other apps, websites or services, please consult their privacy policies as appropriate.

Keeping your data secure

We have appropriate security measures in place to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal data to those who have a genuine business need to know it. Those processing your personal data will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

Transferring your data abroad

To the extent permitted by applicable data protection law, the personal data that we collect from you may be transferred to, and stored at, a destination outside of the jurisdiction in which it was originally collected (“Relevant Location”). It may also be stored and processed by other companies and/or third parties in other countries, which may include destinations outside of the Relevant Location.
Where your personal data is transferred outside of the Relevant Location, we will ensure that it is protected in a manner that is consistent with how your personal data will be protected by us in the Relevant Location. This can be done in a number of ways, for instance:
  • The country that we send the data to might be approved by the data protection authority in the Relevant Location as offering an adequate level of protection for your personal data; or
  • The recipient might have signed up to a contract based on “model contractual clauses” approved by the data protection authority in the Relevant Location, obliging them to protect your personal data.
In other circumstances the law may permit us to otherwise transfer your personal data outside the Relevant Location. In all cases, however, we will ensure that any transfer of your personal data is compliant with data protection law.
You can obtain more details about the protection given to your personal data when it is transferred outside the Relevant Location by using the details set out in the “Contact us” section above.

How long do we keep your data for

How long we hold your personal data for will vary. The retention period will be determined by various criteria including:
  • The purpose for which we are using it – we will need to keep the data for as long as is necessary for that purpose; and
  • Legal obligations – laws or regulation may set a minimum period for which we have to keep your personal data.
Following the end of the of the relevant retention period, we will delete or anonymise your information.

What are your rights

You have a number of legal rights in relation to the personal data that we hold about you. These rights may (depending on where you are located) include:
  • The right to obtain information regarding the processing of your personal data and access to the personal data which we hold about you;
  • The right to withdraw your consent to our processing of your personal data at any time. Please note, however, that we may still be entitled to process your personal data if we have another legitimate reason (other than consent) for doing so;
  • In some circumstances, the right to receive some personal data in a structured and machine-readable format and/or request that we transmit those data to a third party where this is technically feasible. Please note that this right only applies to personal data which you have provided to us;
  • The right to request that we rectify your personal data if it is inaccurate or incomplete;
  • The right to request that we erase your personal data in certain circumstances. Please note that there may be circumstances where you ask us to erase your personal data, but we are legally entitled to retain it;
  • The right to object to and stop, and the right to request that we restrict, our processing of your personal data in certain circumstances. Again, there may be circumstances where you object to and stop, or ask us to restrict, our processing of your personal data but we are legally entitled to continue processing your personal data and / or to refuse that request;
  • The right to object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you; and
  • The right to lodge a complaint with the data protection regulator (details of which are provided below) if you think that any of your rights have been infringed by us.
You can exercise your rights by using the details set out in the “Contact us” section above.

Making a complaint

If you are not satisfied with the manner in which we have dealt with your complaint, you may contact the relevant data protection authority in your jurisdiction, which includes in the United Arab Emirates, the UAE Data Office.