Our Commitment
mia is fully committed to complying with the General Data Protection Regulation (GDPR) and ensuring the highest standards of data protection for all our users within the European Union and globally.
Data Protection Principles
We adhere to all GDPR principles:
- Lawfulness, fairness, and transparency in data processing
- Purpose limitation: collected for specified, explicit, and legitimate purposes
- Data minimization: adequate, relevant, and limited to what is necessary
- Accuracy: kept up to date with prompt corrections
- Storage limitation: kept only as long as necessary
- Integrity and confidentiality: secured against unauthorized processing
- Accountability: demonstrable compliance with all principles
Your Rights
Under GDPR, you have the following rights:
- Right to Access: Request copies of your personal data
- Right to Rectification: Request correction of inaccurate data
- Right to Erasure: Request deletion of your personal data
- Right to Restrict Processing: Request limitation of data processing
- Right to Data Portability: Receive your data in a machine-readable format
- Right to Object: Object to processing of your personal data
- Rights related to automated decision-making: Not be subject to purely automated decisions
Data Security Measures
We implement appropriate technical and organizational measures including:
- End-to-end encryption for data transmission and at rest
- Regular security audits and penetration testing
- Access controls and Microsoft Entra ID authentication
- Data anonymization and pseudonymization where applicable
- Regular staff training on data protection
- Incident response procedures with 72-hour breach notification
- European data residency through Microsoft Azure and OVHcloud
Contact Our Data Protection Officer
For any questions or to exercise your rights, contact our DPO:
- Email: hello@gomia.ai
- Address: Zuidplein 36, 1077 XV Amsterdam, Netherlands
- Company Registration: AureliaX Consulting B.V., KVK: 97362263