Privacy Policy

We are on a mission to make the web a better place. The following Privacy Policy and Terms of Service, apply to all users.

Last Updated: [April 2, 2025]

Privacy Policy

Last Updated: [April 2, 2025]

1. Introduction

Welcome to Eze-Home MinimeLabs. We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit and interact with our website (www.minimelabs.com), specifically concerning data gathered through our website analytics and user journey tracking systems, in compliance with the General Data Protection Regulation (GDPR) and other relevant data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

MinimeLabs
Cyprus,UK
Email: Privacy Contact Email Address, enquiries@minimelabs.com

3. What Personal Data We Collect and How

When you navigate our website, our server automatically collects certain information about your visit using custom middleware. This is done to understand how users interact with our site and to improve its functionality and user experience. The specific data points collected include:

  • IP Address: Your Internet Protocol (IP) address is logged for each request you make to our server.
  • User Journey Information:
    • Visited Page Paths: The specific URLs (paths) of the pages you visit on our website (e.g., `/about-us`, `/products/item1`). We exclude certain system paths (like static files or admin areas) from this logging.
    • Visit Timestamps: The date and time you arrive on each page (`start_time`) and the approximate time you leave the page (`end_time`, inferred from your next page request or session end).
    • Approximate Time Spent: We calculate the approximate duration (in seconds) you spend on each page based on the timestamps between your page requests. This is a server-side calculation and doesn't track active engagement within the page itself.
  • Session and Tracking Identifiers:
    • Session Key: A temporary identifier assigned by our server to recognise your browser during a single visit (session). This helps link page views together for anonymous users within one session.
    • User Tracker ID: A unique identifier generated during your visit, derived partly from your IP address and session information. This ID helps us group page views belonging to the same user journey within a session or across closely related sessions initiated from the same IP address shortly after one another. It is primarily stored within your session data.

This data is collected automatically as you browse the website through server-side logging initiated by our middleware.

4. Purpose of Data Processing

We process this data for the following purposes:

  • To analyse website traffic and understand how users navigate our site.
  • To identify popular pages and content.
  • To understand the typical user journey and identify potential points of friction or confusion.
  • To improve website performance, design, and content based on usage patterns.
  • To troubleshoot technical issues and ensure website security (e.g., identifying unusual traffic patterns).
  • To generate aggregated, anonymous statistical reports about website usage.

5. Legal Basis for Processing (GDPR)

We rely on Legitimate Interests (Article 6(1)(f) GDPR) as the legal basis for processing the personal data described above. Our legitimate interest is in maintaining and improving our website, understanding user behaviour to enhance the user experience, and ensuring the security and proper functioning of our services.

We have conducted a balancing test and believe that our legitimate interests are not overridden by your interests or fundamental rights and freedoms, especially given that:

  • The data collected is limited to technical and navigational information related to website use.
  • The purpose is primarily analytical and aimed at service improvement.
  • We implement measures to protect the data (see Section 8).
  • You have the right to object to this processing (see Section 9).

6. Data Storage and Retention

The collected user journey data, including IP addresses and associated tracking information, is stored securely in our database.

We retain this specific user journey log data for a period of [Specify Retention Period, e.g., 6 months, 12 months, or "as long as necessary to fulfil the analytical purposes outlined above, after which it is pseudonymized or deleted"]. Aggregated, anonymous statistical data derived from this information may be kept for longer periods.

7. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data collected through this tracking mechanism.

We will not share this specific data with third parties, except in the following limited circumstances:

  • Legal Requirements: If required by law, regulation, subpoena, court order, or other governmental request.
  • Service Providers (if applicable): [If you use hosting providers or analytics platforms where this data might technically reside, mention them generically, e.g., "We may use third-party service providers for hosting and infrastructure who may have technical access to the data but are contractually bound to confidentiality and security." Be specific if they actively process it.]
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred, subject to the receiving party adhering to privacy commitments.

We ensure that any third party processing data on our behalf provides adequate data protection safeguards.

8. Data Security

We implement appropriate technical and organizational security measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include [Briefly mention general measures like access controls, encryption where appropriate, secure servers - consult legal counsel for appropriate wording]. However, please note that no method of transmission over the Internet or electronic storage is 100% secure.

9. Your Data Protection Rights (GDPR)

Under GDPR, you have the following rights regarding your personal data:

  • Right of Access: You can request copies of your personal data that we hold.
  • Right to Rectification: You can request correction of inaccurate personal data.
  • Right to Erasure ('Right to be Forgotten'): You can request deletion of your personal data under certain conditions (e.g., if it's no longer necessary for the purpose it was collected).
  • Right to Restrict Processing: You can request that we limit the processing of your personal data under certain circumstances.
  • Right to Object: You have the right to object to our processing of your personal data based on legitimate interests. If you object, we will stop processing unless we can demonstrate compelling legitimate grounds which override your interests, rights, and freedoms, or for the establishment, exercise, or defence of legal claims.
  • Right to Data Portability: You can request that we transfer the data we have collected to another organization, or directly to you, under certain conditions (applies mainly to data processed based on consent or contract).
  • Rights Related to Automated Decision-Making: We do not use the collected journey data for automated decision-making or profiling that produces legal effects concerning you or similarly significantly affects you.

To exercise any of these rights, please contact us using the details provided in Section 2.

10. Cookies and Sessions

Our website uses session cookies, which are essential for basic site functionality and for linking your page views together during a single Browse session via the Session Key and User Tracker ID mentioned in Section 3. These session cookies are temporary and are typically deleted when you close your browser. This policy specifically addresses the server-side data collection; for more details on all cookies used, please see our separate [Link to Cookie Policy, if you have one].

11. International Data Transfers [Adapt as needed]

[Option 1: If data stays within EU/EEA] Your personal data collected through this mechanism is stored and processed primarily within the European Economic Area (EEA).

[Option 2: If data might be transferred outside EU/EEA, e.g., due to hosting] Your personal data may be transferred to and processed in countries outside of the European Economic Area (EEA), specifically [List Countries, e.g., the United States] where our hosting providers may be located. We ensure such transfers are protected by appropriate safeguards, such as [e.g., Standard Contractual Clauses approved by the European Commission, or adequacy decisions]. You can request more information about these safeguards by contacting us.

12. Right to Lodge a Complaint

If you have concerns about our use of your personal data, you have the right to lodge a complaint with your local data protection supervisory authority. Contact details for EU authorities can be found here.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Last Updated" date. We encourage you to review this policy periodically.

14. Contact Us

If you have any questions about this Privacy Policy or our data protection practices, please contact us at:

Email: enquiries@minimelabs.com