Privacy Notice

Last modified 4 February 2025

This privacy notice informs you how we collect, use, share, retain and dispose personal data received through the www.gajumarumining.com (“website”), its branded social media pages (such as our LinkedIn, Facebook, Instagram, and Discord) (“social media”), and our other websites or apps. In addition to this Privacy Notice, we may inform you about the processing of your data separately, for example in specific consent forms, terms and conditions, additional privacy notices, forms, and other notices.
Our website and social media are hereinafter jointly referred to as “online platform”. We may occasionally update this Website Privacy Notice. We encourage you to periodically review this Website Privacy Notice to be informed of how we process your information.

We are the QPQ IaaS AG (“we”, or “us”), a Swiss company registered at Dammstrasse 16, CH-6300 Zug. We are the data controller responsible for the processing of personal data through our online platform.

We may collect and receive personal data through our online platform. Personal data means any information relating to an identified or identifiable natural person.
We collect personal data that you choose to voluntarily provide to us for your use of our online platform.

We may collect and receive the following personal data from you: 

• Name and contact details (such as name, address, email, username, phone numbers);
• Account details (such as username and password);
• Personal data included in your traffic data (e.g., IP address, preferences, behavioural data on our website);
• Personal data included in your comments;
• Personal data of individuals included in your uploaded content (such as name and email address).

We may collect other types of personal data if required under applicable law or if necessary, for the purposes listed below.

Providing our online platform and delivering the services you have requested:
We may process your personal data to perform our contract with you for the use of our online platform and to fulfil our obligations under the applicable Legal Notice (as it can be found on this website); if we have not entered into a contract with you, we base the processing of your personal data on our legitimate interest to operate and administer our online platform and to provide you with content you access and request.

Managing account registrations:
If you have registered for an account with us, we process your personal data by managing your user account for the purpose of performing our contract with you according to the applicable Legal Notice.

Handling contact and user support requests:
If you fill out a contact form or request user support, or if you contact us by other means including via a phone call, you allow us and we may process your personal data to perform our contract with you and to the extent, it is necessary for our legitimate interest in fulfilling your requests and communicating with you.

Developing and improving our online platform:
We may process your personal data to analyse trends and to track your usage of and interactions with our online platform to the extent it is necessary for our legitimate interest in developing and improving our online platform and providing our users with more relevant content and service offerings, or where we seek your valid consent.

Identifying customer opportunities:
We may process your personal data to assess new potential customer opportunities to the extent you have provided your prior consent.

Displaying personalized content and ads:
We may process your personal data to conduct marketing research, advertise to you, provide personalized information about us on and off our online platform and to provide other personalized content based upon your activities and interests to the extent you have provided your prior consent.

Managing our relationship with you:
We may process your personal data to send you marketing information, product recommendations and other non-transactional communications about us and our partners, including information about our products, promotions, or events to the extent you have provided your prior consent.

Managing your event registrations and attendance:
We may process your personal data to plan and host events or webinars for which you have registered or that you attend, including sending related communications to you, to perform our contract with you.

Reviewing compliance with the applicable Legal Notice; ensuring the security of our business, preventing or detecting fraud or abuses of our online platform: 
We may process your personal data by tracking the use of our online platform, verifying accounts and activity, investigating suspicious activity, and enforcing our Legal Notice to the extent it is necessary for our legitimate interest in promoting the safety and security of the online platform and in protecting our rights and the rights of others.

Complying with legal obligations:
We may process your personal data when cooperating with public and government authorities, courts or regulators in accordance with our legal obligations under applicable laws to the extent this requires the processing or disclosure of personal data to protect our rights or is necessary for our legitimate interest in protecting against misuse or abuse of our online platform, protecting personal property or safety, pursuing remedies available to us and limiting our damages, complying with judicial proceedings, court orders or legal processes, respond to lawful requests, or for auditing purposes.

We may store the personal data we collect and receive, and share it on a need-to-know basis with the following parties:

1. Other affiliates of the QPQ IaaS AG, or their agents;
2. Third-party providers that perform services for us (“Subprocessors”);
3. Our partners, only applicable if you request specific information on certain services
where a respective partner is involved;
4. Event sponsors (only if you attend an event or webinar organized by us.)
5. Other users of the online platform if you choose to share your messages;
6. Competent public authorities or other third parties (if required by law or reasonably necessary to protect the rights, property and safety of ourselves or others).

We may also transfer your personal data in the event that we sell or transfer all or a portion of our business or assets on a need-to-know basis. Should such a sale or transfer occur, we will use reasonable efforts to direct the transferee to use personal data you have provided to us in a manner that is consistent with applicable law and this privacy notice. We do not sell, rent, or trade your personal data.

We may transfer the personal data we collected within QPQ IaaS AG to third parties in countries outside of Switzerland and the European Economic Area (EEA) or outside of the country where the data was initially collected. The laws in those countries may not offer an adequate level of data protection. Personal data may be transferred to Singapore, the Philippines, India, Japan, Hong Kong, and the United States among others. When we transfer your personal data outside of Switzerland or the EEA or outside the country it was initially collected, we will protect your personal data as described in this privacy notice and in accordance with applicable laws, such as by entering into the European Commission’s Standard Contractual Clauses for the transfer of personal data to a processor located outside of Switzerland or the EEA or equivalent local transfer mechanisms.

Our online platform may contain links to other sites. We are not responsible for the content or privacy practices of such other sites. Pay attention when you leave our website and read the privacy notices of any other site that collects personal data. Your data protection and privacy rights under these third-party platforms will be governed by their respective privacy practices.

We collect certain personal data by using cookies and similar technologies when you visit the website. Cookies are bits of text that are placed on your computer’s hard drive, browser, or mobile device when you visit the website. Cookies hold information that may be accessible by the party that places the cookie, which is either the website itself (first-party cookie) or a third party.
We use both session-based and persistent cookies on our website. Session-based cookies exist only during a single session and disappear from your device when you close your browser or turn off the device. Persistent cookies remain on your device after you close your browser or turn your device off. To change your cookie settings and preferences for our website, click the “Cookie Settings” link below. You can also control the use of cookies on your device but choosing to disable cookies on your device may limit your ability to use some features on our website.

COOKIE SETTINGS ***

We categorize our website cookies and similar technologies as follows:

1. Strictly Necessary Cookies (Category 1)
These cookies are absolutely necessary for you to browse the website and use its features, such as accessing secure areas of the website.

2. Performance Cookies (Category 2)
These cookies gather website statistical data to analyse how our users use the website, such as which pages are visited, how long pages were visited, and the
paths taken by visitors to our website as they move from page to page.

3. Functional Cookies (Category 3)
These cookies facilitate the operation and improve the functions of the website. For example, we store your language settings in functional cookies.

4. Targeting Cookies (Category 4)
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

We may use third-party technology to track and analyse usage information to provide enhanced interactions and more relevant communications and to track the performance of our advertisements and digital channels. 

We maintain appropriate organizational, physical, and technical security measures designed to protect your personal data against accidental, unlawful, or unauthorized destruction, loss, alteration, access, disclosure, or use. In order to protect your data, we have – among others – implemented physical access control measures suitable for preventing unauthorized persons from gaining access to data processing systems with which personal data are processed or used. We implemented technical and organisational measures designed to prevent data processing systems from being used by unauthorized persons and measures to
ensure that those authorized to use a data processing system can only access the data subject to their access authorization and that personal data cannot be read, copied, modified, or removed without authorization during processing, use and after storage. When feasible we pseudonymize personal data, which means the processing of personal data in such a way that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to appropriate technical and organisational measures. To secure transfer control
we took different measures to ensure that personal data cannot be read, copied, altered or removed by unauthorized persons during electronic transmission or while being transported or stored on data media, and that it is possible to verify and establish to which entities personal data are intended to be transmitted by data transmission equipment, e. g. use of VPN, logging of accesses and retrievals and provision of encrypted connections. Additionally, we ensure that personal data is protected against accidental destruction or loss (e. g. fire protection, data backups, secure storage of data media, virus protection, raid systems, disk mirroring, etc.) and that our systems are capable of rapidly restoring the availability of and access to personal data in the event of a physical or technical incident.
However, due to the inherent open nature of the Internet, we cannot guarantee that communications between you and us or the personal information stored are secure. We will notify you of any data breach that is likely to have unfavourable consequences for your privacy in accordance with applicable law.

We retain personal data for as long as necessary to fulfil the purposes for which we collect or receive the personal data, except if required otherwise by applicable law, rules, and regulations. Typically, we will retain most of the personal data for the duration of your use of the online platform, or until you have removed your account unless a longer applicable statutory retention period applies. Records retention details are established in QPQ IaaS AG internal policies.
After expiry of the applicable retention periods, all personal data will be destroyed, anonymized, or deleted using secure technology. This technology depends on the application and storage media used. Expired records are identified based on their creation or last modification date, the current date, and the retention period. If there is any data that we are unable, for technical reasons, to delete entirely from our systems, we will implement appropriate measures to prevent any further use of such data.

You have the following rights in relation to your personal data: 

• The right to obtain, at reasonable intervals and free of charge, information on whether your personal data are being processed and to receive the personal data;
• that is being processed in an intelligible form;
• The right to have your personal data rectified, blocked, or deleted if your personal data are incorrect, incomplete, inaccurate, irrelevant, outdated or processed
  unlawfully;
• The right to withdraw your consent at any time;
• The right to transfer your personal data to another controller, to the extent possible;
• The right to object on legitimate grounds to the processing of your personal data.
• The right to data portability;
• The right to file a complaint and
• The right to damages or indemnification.

To exercise these rights, please contact us using our contact details set out below. We may request you to provide a copy of your ID card or otherwise evidence of your identity. We will respond to your request within the applicable statutory term.

If you have any comments or inquiries about the information in this privacy notice, if you would like us to update your personal data, or if you want to exercise your rights, please contact our Data Protection Officer by email at ps@gajumarumining.com.

We understand the importance of protecting children’s privacy, especially in an online
environment. Our website is not intentionally designed for or directed at children 16 years of
age or younger. It is our practice never knowingly to collect or maintain information about
anyone under the age of 16.