1. Important information
This is Monthio's personal data policy. Monthio ("we") provides services to help you manage your personal finances (the "Services").
Monthio ApS is the data controller of the personal data processed in the Services. This means that we are responsible for how, and for what purposes, your personal data is processed.When you use the Services, we process your personal data in accordance with this Policy. You should be aware that our Services are offered as part of a partnership with creditors, who have their own personal data policies. Monthio's personal data policy only applies to the data for which Monthio is the data controller.
We also comply with applicable legislation, including. Data Protection Regulation and the Payments Act, and the Data Protection Authority's guidelines. This means, among other things, that your personal data is always treated confidentially and always in a secure manner. Monthio's legal name is Monthio ApS, located at Øster Alle 56 4.th, 2100 Copenhagen Ø.
Monthio is supervised by the Danish Financial Supervisory Authority and is licensed as an account information service.
With this policy, we want to provide you with information about how your personal data is collected and processed, so that you can feel confident about using our services.
If you have any questions, comments or wish to complain, please feel free to write to us at firstname.lastname@example.org or send us a letter to our address mentioned above.
You can also complain about our processing of your personal data to the Danish Data Protection Authority, www.datatilsynet.dk. Datatilsynet is the government authority that supervises compliance with the rules of the GDPR and the Data Protection Act.
2. Sources of personal data
We have different sources for your personal data:
Dissemination via Third Parties. You can give us permission to retrieve your bank account details from your bank.
3. Types of personal data
3.1 Bank Account Information
Bank Account Information is the transaction data and other information about your accounts that we retrieve from the accounts you have chosen to give us access to
.3.2 Technical Data
Technical information about how you access and use the Services.
4. Types of purpose
Our delivery of services. Data processing necessary for us to provide the Services, such as aggregating payments from your accounts into budget categories.
Other purposes if you have consented to this. Data processing we have specifically asked your permission to carry out, such as sending your financial statement to your creditor.
Data processing that commercially supports us to provide the Services and where it is not the case that your interests or fundamental rights are more important.
Legal obligations. Data processing necessary to comply with legal obligations incumbent on us.
5. Types of basis
Specific consent. When we have obtained legal basis for the data processing by obtaining your specific consent.
You can always withdraw your consent.Legal obligation. Where we have a legal basis for the data processing because the processing is necessary for compliance with legal obligations to which we are subject.
Our legitimate interests. Data processing that commercially supports the provision of the services and where it is not the case that your interests or fundamental rights are more important.
6. Overview of our processing of your personal data
To be able to deliver the budget services to you
To anonymise your data so that it can be used for statistical analysis
Our legitimate interests (after anonymisation, after which data can in no way be attributed to you, data may be used for statistical analysis. This allows us to make improvements to the Services)
(We can only use technical cookies)
Bank account details
7. Other recipients of personal data
Where necessary for the technical operation of the Services, we may disclose your personal data to companies assisting with this operation. These companies may only use the data where it is necessary for the operation and where we have entered into data processing agreements that, among other things, ensure confidentiality and data security.
If you give us your specific consent, we may also disclose your personal data to other partners, such as your creditor.
Finally, we may disclose your personal data if we are legally obliged to do so or if it is necessary for us to defend ourselves against or assert legal claims.
8. Retention period
For a single credit application: we will only keep your personal data for as long as is necessary to ensure correct transmission to, and processing by, your creditor (up to a maximum of 3 months).
9. Information about your rights
Under the General Data Protection Regulation, you have a number of rights in relation to our processing of data about you. If you wish to exercise your rights, please contact us. In general, these rights are as follows:
You have the right to know which personal data about yourself that we process and to request a copy of the data.
In a number of cases, you have the right to request that the personal data about yourself that we process be deleted, corrected or blocked.
You have the right to object to our processing of your personal data due to your particular circumstances.
You have the right to object to our processing of your personal data for the purpose of direct marketing, after which we will no longer process your personal data for that purpose.
You can read more about your rights in the Danish Data Protection Agency’s guide to data subjects' rights, which can be found at www.datatilsynet.dk.
We always treat your personal data confidentially and all employees are subject to confidentiality clauses in relation to personal data. Only selected employees have access to personal data, and only when necessary to correct errors or breakdowns.
11. Withdrawal of consent
You may withdraw any consent you have given us at any time.In accordance with the consent you give to Monthio, we will only process your data in relation to a specific application you are making. After that, we will automatically delete your data.
Until you have completed the Monthio data process, you can interrupt and activate the deletion of your data yourself. Use the GDPR function, which you will find in the bottom left corner during the process.
Withdrawal can also be done by cancelling the credit application or by contacting us as indicated in section 1.
12. Policy changes
We reserve the right to change this policy at any time and without prior notice. Changes are published in Monthio’s services and users are notified by e-mail. Changes will take effect upon publication.