This document contains a section dedicated to Users in the United States and their privacy rights.
This document contains a section dedicated to Users in Switzerland and their privacy rights.
This document contains a section dedicated to Brazilian Users and their privacy rights.
This document can be printed for reference by using the print command in the settings of any browser.
Math and Magic LTD registered under number HE 462759, located at Spyrou Kyprianou, 78, Limassol, Cyprus, 3076
Owner contact email: [email protected]
Data Protection Officer (DPO) contact email: [email protected]
Among the types of Personal Data that Bridge collects, by itself or through third parties, there are: Trackers.
Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or by specific explanation texts displayed prior to the Data collection.
Personal Data may be freely provided by the User, or, in case of Usage Data, collected automatically when using Bridge.
Unless specified otherwise, all Data requested by the Bridge is mandatory and failure to provide this Data may make it impossible for Bridge to provide its services. In cases where Bridge specifically states that some Data is not mandatory, Users are free not to communicate this Data without consequences to the availability or the functioning of the Service.
Users who are uncertain about which Personal Data is mandatory are welcome to contact the Owner.
Any use of Cookies – or of other tracking tools — by Bridge or by the owners of third-party services used by Bridge serves the purpose of providing the Service required by the User, in addition to any other purposes described in the present document and in the Cookie Policy.
Users are responsible for any third-party Personal Data obtained, published or shared through Bridge.
The Owner takes appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data. Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Owner, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of Bridge (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. An updated list of these parties may be requested from the Owner at any time.
The Data is processed at the Owner's operating offices and in any other places where the parties involved in the processing are located. Depending on the User's location, data transfers may involve transferring the User's Data to a country other than their own. To find out more about the place of processing of such transferred Data, Users can check the section containing details about the processing of Personal Data. Where international transfers occur, Bridge ensures appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or Privacy Shield certifications where applicable.
Unless specified otherwise in this document, Personal Data shall be processed and stored for as long as required by the purpose they have been collected for and may be retained for longer due to applicable legal obligation or based on the Users’ consent.
The Data concerning the User is collected to allow the Owner to provide its Service, comply with its legal obligations, respond to enforcement requests, protect its rights and interests (or those of its Users or third parties), detect any malicious or fraudulent activity.
For specific information about the Personal Data used for each purpose, the User may refer to the section “Detailed information on the processing of Personal Data”.
Personal Data is collected for the following purposes and using the following services:
Example service used:
Bridge uses Trackers. To learn more, Users may consult the Cookie Policy.
The Owner may process Personal Data relating to Users if one of the following applies:
In any case, the Owner will gladly help to clarify the specific legal basis that applies to the processing, and in particular whether the provision of Personal Data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.
Unless specified otherwise in this document, Personal Data shall be processed and stored for as long as required by the purpose they have been collected for and may be retained for longer due to applicable legal obligation or based on the Users’ consent.
Therefore:
Personal Data collected for purposes related to the performance of a contract between the Owner and the User shall be retained until such contract has been fully performed.
Personal Data collected for the purposes of the Owner’s legitimate interests shall be retained as long as needed to fulfill such purposes. Users may find specific information regarding the legitimate interests pursued by the Owner within the relevant sections of this document or by contacting the Owner.
The Owner may be allowed to retain Personal Data for a longer period whenever the User has given consent to such processing, as long as such consent is not withdrawn. Furthermore, the Owner may be obliged to retain Personal Data for a longer period whenever required to fulfill a legal obligation or upon order of an authority.
Once the retention period expires, Personal Data shall be deleted. Therefore, the right of access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period.
Users may exercise certain rights regarding their Data processed by the Owner. In particular, Users have the right to do the following, to the extent permitted by law:
Users are also entitled to learn about the legal basis for Data transfers abroad, including to any international organization governed by public international law or set up by two or more countries, such as the UN, and about the security measures taken by the Owner to safeguard their Data.
Where Personal Data is processed for a public interest, in the exercise of an official authority vested in the Owner or for the purposes of the legitimate interests pursued by the Owner, Users may object to such processing by providing a ground related to their situation to justify the objection.
Users must know that, however, should their Personal Data be processed for direct marketing purposes, they can object to that processing at any time, free of charge and without providing any justification. Where the User objects to processing for direct marketing purposes, the Personal Data will no longer be processed for such purposes. To learn whether the Owner is processing Personal Data for direct marketing purposes, Users may refer to the relevant sections of this document.
Any requests to exercise User rights can be directed to the Owner through the contact details provided in this document. Such requests are free of charge and will be answered by the Owner as early as possible and always within one month, providing Users with the information required by law. Any rectification or erasure of Personal Data or restriction of processing will be communicated by the Owner to each recipient, if any, to whom the Personal Data has been disclosed unless this proves impossible or involves disproportionate effort. At the Users’ request, the Owner will inform them about those recipients.
The Data Controller responsible for processing your personal data collected via the Contact Sales form is Math and Magic LTD. For any questions regarding your personal data or this privacy notice, you may contact us at [email protected]
We collect and process your personal data submitted through the Contact Sales form based on your explicit consent, as required under Article 6(1)(a) and Article 7 of the General Data Protection Regulation (GDPR).
You give your consent by ticking the consent checkbox before submitting your information. You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
The personal data we collect directly from you via the Contact Sales form may include, but is not limited to:
Your personal data is processed solely for the following purposes:
We retain your personal data only for as long as necessary to fulfill the above purposes or to comply with applicable laws and regulations. Specifically:
Your personal data collected via the Contact Sales form will not be sold or shared with third parties for their own marketing purposes.
We may share your personal data with trusted third-party service providers (such as IT, hosting, cloud services) strictly for purposes related to providing the Service. All third-party providers are bound by contractual confidentiality and data protection obligations compliant with GDPR. If any international data transfers outside the European Economic Area (EEA) occur, we ensure they are subject to appropriate safeguards such as Standard Contractual Clauses or an adequacy decision by the European Commission.
As a data subject under GDPR, you have the following rights regarding your personal data processed via the Contact Sales form such as:
To exercise any of your rights, you may contact us at [email protected]. Please provide sufficient information to verify your identity. We will respond to your request promptly and within the timeframes prescribed by GDPR (generally within one month).
We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, accidental loss, destruction, or damage. These measures are regularly reviewed and updated in line with technological developments.
When you submit the Contact Sales form, you will be required to give explicit consent to this Privacy Policy by ticking a clearly visible checkbox. The timestamp and IP address of your consent will be securely logged and stored as proof of your consent.
We do not use automated decision-making or profiling based on your personal data collected via the Contact Sales form.
This section applies to Users in Switzerland and, for such Users, supersedes any other potentially conflicting or divergent provisions contained in this Privacy Policy.
Further details regarding the categories of Personal Data processed, the purposes of processing, the categories of recipients of Personal Data, if any, the retention periods, and any other relevant information can be found in the section titled “Detailed information on the processing of Personal Data” within this document.
Users may exercise certain rights regarding their Personal Data, subject to the limitations provided by law, including the following:
If Personal Data is transferred outside Switzerland, such transfers will occur only:
Any requests to exercise User rights may be submitted to the Owner using the contact details provided in this Privacy Policy. Requests are free of charge and will be answered promptly and in accordance with applicable legal timeframes, providing Users with all information required under the FADP.
This section supplements the rest of the Privacy Policy and is provided by the entity operating Bridge and, where applicable, its parent companies, subsidiaries, and affiliates (collectively referred to as “we,” “us,” or “our”).
This section applies to all Users in Brazil and supersedes any conflicting provisions in this Privacy Policy, in accordance with Brazil’s Lei Geral de Proteção de Dados (LGPD).
This section uses the term “personal information” as defined by the LGPD.
We process your personal information only if we have a valid legal basis under the LGPD. These include:
To learn more about these legal grounds, you may contact us using the information in this Privacy Policy.
For details, refer to the section titled “Detailed information on the processing of Personal Data.”
See the sections “Detailed information on the processing of Personal Data” and “The purposes of processing” for more information on why your personal information is processed.
You have the right to:
You will not be discriminated against for exercising any of your rights.
You may submit your request free of charge, directly or through a legal representative, using the contact information provided in this Privacy Policy.
We will respond as promptly as possible. If we cannot comply, we will inform you of the factual or legal reasons.
If you request access to your personal information, please indicate:
For full disclosures, we will respond within 15 days, including the source, processing criteria, and purposes, while protecting our legitimate interests and trade secrets.
For rectification, deletion, anonymization, or blocking requests, we will also inform third parties with whom your data has been shared, except where this is impossible or requires disproportionate effort.
We may transfer your personal data outside Brazil in compliance with the LGPD, in the following cases:
This section supplements the Privacy Policy and applies to residents of California, Virginia, Colorado, Connecticut, Utah, Texas, Oregon, and Montana.
For such Users, this section prevails over any conflicting terms in the main Privacy Policy.
This section uses the term “Personal Information” as defined under applicable U.S. state privacy laws.
We collect and disclose the following categories of Personal Information (PI) within the past 12 months:
Please refer to the “Definitions and legal references” section for explanations of these terms.
We collect Personal Information:
You may submit your requests using the contact information in this Privacy Policy. We must verify your identity before processing your request. You do not need an account to do so.
If you are an adult, you may submit requests on behalf of your child.
You may also use the “privacy choices” link on Bridge, or a user-enabled global privacy control like the Global Privacy Control (GPC). We will honor such requests without friction.
We will respond without undue delay and within applicable timeframes. If we deny your request, we will explain the reasons. We do not charge fees, unless your request is manifestly unfounded or excessive.
Personal Data may be used in legal proceedings or pre-litigation stages related to misuse of Bridge or its Services. We may also be required to disclose Data to public authorities upon lawful request.
Bridge may provide you with additional, service-specific privacy information upon request or when relevant.
Bridge and third-party services may collect system logs or other Usage Data (e.g., IP addresses) for operational and maintenance purposes.
You may request further information about data collection or processing by contacting us at any time.
The Owner reserves the right to modify this Privacy Policy at any time, notifying Users on this page and, where feasible, through the Service or direct communication. It is strongly recommended to check this page regularly.
If changes affect processing based on your consent, we will seek renewed consent where legally required.
Personal Data (or Data) / Personal Information (or Information) Any information that is directly, indirectly, or in connection with other information — including a personal identification number — allows for the identification or identifiability of a natural person.
Sensitive Personal Information Sensitive Personal Information means any Personal Information that is not publicly available and reveals information considered sensitive according to the applicable privacy law.
Usage Data Information collected automatically through Bridge (or third-party services employed in Bridge), which can include: the IP addresses or domain names of the computers utilized by the Users who use Bridge, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User's IT environment.
User The individual using Bridge who, unless otherwise specified, coincides with the Data Subject.
Data Subject The natural person to whom the Personal Data refers.
Data Processor (or Processor) The natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller, as described in this privacy policy.
Data Controller (or Owner) The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data, including the security measures concerning the operation and use of Bridge. The Data Controller, unless otherwise specified, is the Owner of Bridge.
Bridge (or this Application) The means by which the Personal Data of the User is collected and processed.
Service The service provided by Bridge as described in the relative terms (if available) and on this site/application.
Sale Sale means any exchange of Personal Information by the Owner to a third party, for monetary or other valuable consideration, as defined by the applicable privacy US state law. Please note that the exchange of Personal Information with a service provider pursuant to a written contract that meets the requirements set by the applicable law does not constitute a Sale of your Personal Information.
Sharing Sharing means any sharing, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means, a consumer's Personal Information by the business to a third party for cross-context behavioral advertising, whether for monetary or other valuable consideration, including transactions between a business and a third party for cross-context behavioral advertising for the benefit of a business in which no money is exchanged, as defined by the California privacy laws. Please note that the exchange of Personal Information with a service provider pursuant to a written contract that meets the requirements set by the California privacy laws, does not constitute sharing of your Personal Information.
Targeted advertising Targeted advertising means displaying advertisements to a consumer where the advertisement is selected based on Personal Information obtained from that consumer’s activities over time and across nonaffiliated websites or online applications to predict such consumer’s preferences or interests, as defined by the applicable privacy US state law.
European Union (or EU) Unless otherwise specified, all references made within this document to the European Union include all current member states to the European Union and the European Economic Area.
Cookie Cookies are Trackers consisting of small sets of data stored in the User's browser.
Tracker Tracker indicates any technology - e.g. Cookies, unique identifiers, web beacons, embedded scripts, e-tags and fingerprinting - that enables the tracking of Users, for example by accessing or storing information on the User’s device.
This privacy statement has been prepared based on provisions of multiple legislations.
This privacy policy relates solely to Bridge, if not stated otherwise within this document.