In preparation for upcoming changes to data privacy regulations, we have updated our Privacy Policy.

Privacy Policy

Effective Date: January 22, 2020

This Privacy Policy discloses the privacy practices of MaxMind, Inc. (sometimes referred to in this Privacy Policy as "MaxMind", "we", or "us"), in connection with the MaxMind.com website (the "Website") and any features and online services provided by MaxMind that post or include a link to this Privacy Policy (collectively, the "Services"). We have provided this statement of our Privacy Policy to answer your questions about the types of information that we gather, the ways in which we use and share this information, and your rights and choices regarding such information.

Please read this Privacy Policy carefully. By visiting and using the Services, you agree that your use of the Services is governed by this Privacy Policy. In addition to our Privacy Policy, your use of the Services is governed by our Terms of Use, which govern in the event of any conflict with this Privacy Policy.

1. SCOPE OF PRIVACY POLICY

This Privacy Policy applies to the MaxMind.com website and any features and online or offline services provided by MaxMind that post or make available a link to this Privacy Policy. It does not apply to MaxMind's services that MaxMind's customers may use on their own websites, to other companies' or organizations' sites to which we link, or to companies that MaxMind does not own or control, even if such companies are contractors or business partners of MaxMind.

This Privacy Policy also does not cover how MaxMind customers may treat your information as the use of your information by such parties is governed by the privacy policies of such parties and is not subject to MaxMind's control.

If you are a California resident, Nevada resident, or data subject located in Europe, please see the "Additional Disclosures for California Residents," "Additional Disclosures for Nevada Residents," and "Additional Disclosures for Data Subjects in Europe" sections below. If you have any questions or wish to exercise your rights and choices, please contact us as set out in Section 11.

2. INFORMATION MAXMIND COLLECTS

Information You Provide

We collect information that you voluntarily provide to us while using the Services, such as when you register an account, make a purchase of one of our products or services, respond to our customer surveys, submit a data correction request, communicate with our customer service team, or apply for a job.

The information we collect includes information relating to identified or identifiable natural persons. The categories of information we collect, including in the last 12 months, include the following: contact data, including your first and last name, telephone number, email address, and postal address; billing information; credentials, including your passwords; content data, including the content of the messages you send to us; IP addresses or IP ranges you submit; and resume data, including data necessary to consider you for a job opening (such as your employment history, writing samples, and references). We also use payment processes to collect and process payment data, including your payment instrument and security code associated with your payment instrument, on our behalf.

You may choose to voluntarily submit other information to us through the Services that we do not request, and, in such instances, you are solely responsible for such information.

Information Collected Automatically

We automatically collect information about your device and how your device interacts with our Services and other services. The categories of information we automatically collect, including in the last 12 months, and the methods by which we may collect such information include the following:

Cookies, Web Beacons, and Embedded Scripts

The Services use "cookies" and similar technologies, including HTML5 local storage. A cookie is a file stored on your device that may be used to identify an individual as a unique user by storing certain personal preferences and user data. MaxMind uses cookies and other technologies to identify your device, identify authorized users of the MaxMind Account Portal, track affiliate referrals, complete online purchases through MaxMind's shopping carts, and similar Services monitoring activities.

MaxMind may also use web beacons, small graphic images or other web programming code (also known as "1x1 GIFs" or "clear GIFs"), which may be included in our web pages and e-mail messages. Web beacons may be invisible to you, but any electronic image or other web programming code inserted into a web page or e-mail can act as a web beacon. Web beacons or similar technologies may be used for a number of purposes, including, without limitation, to count visitors to the Services, to monitor how users navigate the Services, to count how many e-mails that were sent were actually opened or to count how many particular articles or links were actually viewed.

MaxMind may also use embedded scripts in connection with the provision of its Services. "Embedded scripts" are programming code designed to collect information about your interactions with a website, such as the links you click on, and may assist our customers in providing us with information used to provide the Services. The code is temporarily downloaded onto your device from our web server, our customer's web server, or a service provider or other party, is active only while you are connected to the website containing the embedded script, and is deactivated or deleted thereafter.

Log File Information

Your web browser automatically sends information to every website you visit, including ours. For example, our server logs may receive and record information such as the pages you access on the Services, referring URLs, your browser type, your operating system, the date and time of your visit, and the duration of your visit to each page.

User Agent Strings

Log file information may also include a user agent string, a series of characters automatically sent with your Internet requests that provide information necessary for smooth Internet communications, such as the operating system and browser you used. A user agent string might be used to identify the device originating a message.

Location Data

MaxMind may also request access to or otherwise receive information about your device location when you access the Services. Your location data may be based on your IP address and other location-aware technologies. We use location data in connection with providing the Services and to help improve the Services.

Unique Identification Number

MaxMind may assign your computer or mobile device a unique identification number ("Unique ID") based on log file information when you access the Services. MaxMind may set a cookie on your device containing, amongst other things, the device's Unique ID. MaxMind uses information generated from the Unique ID for purposes of improving our Services, primarily our ability to detect fraud. MaxMind does not share the Unique ID or any associated data with unaffiliated parties in the traditional sense of sharing. However, some of the services offered by MaxMind, including some that are available through the Services, may require the placement of a snippet of JavaScript on the customer's own website (either by the customer itself or by MaxMind), and that JavaScript collects the information used by MaxMind to create the Unique ID. If the customer uses the MaxMind minFraud service, it may receive back the Unique ID MaxMind associated with the IP address being used in the request made to the minFraud service.

Information MaxMind Receives from Other Sources

MaxMind receives information about you from other sources. We may combine the information we receive from third parties with information we collect through the Services. If we do so, MaxMind will treat the combined information in accordance with the practices described in this Privacy Policy, plus any additional restrictions imposed by the source of the data. The categories of other sources from which we receive and have received information over the prior 12 months include: our business partners and resellers; our customers; and publicly available sources such as open government databases or other data in the public domain. For example, our customers provide us with certain e-commerce transaction information, including IP address, cardholder name, billing and shipping address, email, and phone number.

3. HOW MAXMIND USES INFORMATION

We collect and use information for our legitimate interests and for business and commercial purposes in accordance with the practices described in this Privacy Policy. Our business purposes for collecting and using information, including in the prior 12 months, include as follows:

Providing Our Services

As stated above, MaxMind uses information such as your first and last name, telephone number, email address, postal address, billing information, or other contact information we obtain from you, our customers, or our business partners, for the purposes of providing, enhancing, or improving our IP geolocation, fraud detection, demographic targeting, databases, and other services and products.

Communications with You

MaxMind maintains one or more contact lists (with email addresses and other information) to allow MaxMind to communicate with individuals who do business with MaxMind or who have expressed an interest in the Services. We may contact you to confirm your purchases or respond to requests that you make, notify you of changes to your account or the Services, for marketing purposes, or to otherwise inform you of information related to our business or your account with us.

Website Administration and Customization

MaxMind uses the information we collect about you for a variety of website administration and customization purposes. For example, we use your information to process your registration request, provide you with services and communications that you have requested, send you email updates and other communications, customize features and advertising that appear on and off the Services, deliver the Services content to you, measure Services traffic, measure user interests and traffic patterns, and improve the Services.

Usage of IP Addresses

The MaxMind services, including the minFraud service, use IP addresses to help organizations detect and prevent fraudulent activity. Among other things, MaxMind obtains IP addresses and order information (including customer name and billing address) through its minFraud service. MaxMind uses the billing location from this data along with other data to create databases that pair IP addresses with the locations in which they are likely being used, down to a postal code level of resolution.

Correction Requests

If you receive IP geolocation data from us that you believe is incorrect, you can submit a data correction request to us through our website at https://support.maxmind.com/geoip-data-correction-request/, by email at corrections@maxmind.com, or through a secure URL that is set up by your company and that shares IP geolocation data. We use the information you submit to review and respond to your correction request, and update our databases as appropriate. Any data updated within our databases may be used and shared in accordance with the practices described in this Privacy Policy.

Database Demos

If you use any of our database demos available at https://www.maxmind.com/en/geoip-demo, https://www.maxmind.com/en/locate-my-ip-address, and other parts of our website, we may use the information you submit to provide you with results and update our databases as appropriate. Any data updated within our databases may be used and shared in accordance with the practices described in this Privacy Policy.

Consent

We also use information with your consent, including for the following purposes: to allow you to participate in our surveys; to serve advertising tailored to your interests on our Services and other services; and to fulfill any other purpose disclosed to you and with your consent.

Some of our lawful bases for processing your information stem from our customers on whose behalf we provide services.

MaxMind uses information that does not identify you for any purpose except as prohibited by applicable law. For information on your rights and choices regarding how we use your information, please see Section 6 below.

4. HOW MAXMIND SHARES INFORMATION

We share information we collect in accordance with the practices described in this Privacy Policy. The categories of sources to whom we share information, including in the last 12 months, include the following:

Sharing with Our Service Providers

We provide your information to our service providers, contractors, business partners, and advertisers, for the purpose of delivering services to you as well as for purposes related to Services administration and operation, including conducting analytics and helping us with sales tax compliance. When sharing information for the purpose of providing you with the services you request, we will share your information only as necessary for the service provider working on MaxMind's behalf to complete its work for us. For example, if you use a credit or debit card to complete a transaction on the Services, we will share your credit or debit card number with a payment processing and/or a fulfillment company in order to complete your transaction.

Sharing of Databases

One aspect of MaxMind's products and services is the provision of databases to our customers and other third parties, including our business partners and resellers. These databases include information such as IP addresses and corresponding data pertaining to such IP addresses, such as geolocation data, fraud analysis data, and related information. Such databases are compiled using numerous data sources, including information we receive from our customers when individuals make purchases or conduct other transactions with our customers. In addition, we respond to API queries from our customers, and such responses may include information about the level of risk we associate with information about your device or email address, or your Unique ID.

Customers

We share your information with our customers in connection with us processing your information on their behalf. For example, we share your information with our customers to provide them with our products and services, respond to your questions and comments, fulfill your requests, and otherwise comply with applicable law.

Vendors and Other Parties

We may share your information with vendors and other parties for purposes of providing you with tailored advertisements, measuring and improving our Service and advertising effectiveness, and enabling other enhancements. Vendors may act as our service providers, or in certain contexts, independently decide how to process your information.

MaxMind integrates with the service Have I Been Pwned to verify whether your account password has previously appeared in a third party data breach, which may allow MaxMind to evaluate the strength of the password, provide a warning, and/or block the password outright. We are not responsible for the effectiveness or accuracy of their information. For more information on Have I Been Pwned, please visit the website at https://haveibeenpwned.com.

Security and Compliance with the Law

We reserve the right to disclose your information to appropriate third parties if we are required to do so by law or we believe that such action is necessary in order (a) to comply with a legal process such as a search warrant, subpoena, or court order; (b) to protect the company's rights and property; (c) to investigate reports of users sending material using a false email address or users sending harassing, threatening, or abusive messages; (d) to protect against misuse or unauthorized use of the Website or Services; or (e) to respond to emergencies, such as when we believe someone's physical safety is at risk. MaxMind may be required to disclose information in a life-threatening emergency or in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.

Transfer of Business

Over time, MaxMind may buy or sell various assets. In the event that we sell some or all of our assets, or our company is acquired by another company, or during the negotiation of such sale or acquisition, our databases and any information we collect may be among the transferred or negotiated assets.

Consent

We may share your information for any other purpose disclosed to you and with your consent.

Without limiting the foregoing, in our sole discretion, MaxMind shares information that does not identify you with third parties, including our customers, for any purpose except as prohibited by applicable law. For information on your rights and choices regarding how we share your information, please see Section 6 below.

5. ANALYTICS AND ONLINE TRACKING

MaxMind works with certain other parties (including analytics companies) to provide us with information regarding traffic on and use of the Services. Some of these parties collect information when you visit the Services or other online websites and services. These other parties set and access their own tracking technologies (including cookies, embedded scripts, and web beacons) and may otherwise collect or have access to your IP address or other unique identifier, log information, and related information about you. These tracking technologies, including the Google Analytics User ID feature, may be used to assist in providing analytics, marketing, and for other purposes. We also use Google services to provide you with in-site search functionality. Both we and Google may collect, receive, and use your information as a consequence of your use of the Google services. Google’s data practices are set out in its privacy policy available at https://policies.google.com/privacy. MaxMind does not control the information collection, use, or sharing practices of such parties, and we encourage you to consult their online policies. Some other parties may collect information about your online activities over time and across different websites when you use the Services.

6. YOUR RIGHTS AND CHOICES

Opt-Out of Email Communications

If you are a registered member of the Services, you can make changes to your account information by logging into the Website and modifying your preferences. If you do not wish to receive email notifications from us, you may opt-out by contacting us at info@maxmind.com with your request. In addition, certain email communications we send to you, such as newsletters and promotional announcements, contain a clearly worded "Opt-Out" or "Unsubscribe" link allowing you to withdraw your permission for future mailings. Please note that we reserve the right to send you certain communications relating to your account or use of the Services (for example, administrative and service announcements) and these transactional account messages may be unaffected even if you opt-out from marketing communications.

Opt-Out from Database Sharing

As discussed above in Section 4 of this Privacy Policy, MaxMind may share information we have about you in our databases with our customers and third parties as part of their use of the GeoIP Services. If you are a resident of California, a resident of Nevada, or a data subjects located in Europe, you may have certain rights with respect to such information as set out in the "Additional Disclosures for California Residents," "Additional Disclosures for Nevada Residents," and "Additional Disclosures for Data Subjects in Europe" sections below. Please note that under certain circumstances as required by applicable law, you may have different rights for marketing and advertising uses of your information than for purposes related to security, fraud detection and other similar purposes.

Blocking or Deleting Cookies

You can manually delete cookies, which are normally located in your temporary Internet folder or cookie folder. You can also reset the preferences in your web browser to notify you when you have received a cookie or, alternatively, to refuse to accept cookies. Deleting or blocking cookies will prohibit your ability to make online purchases on the Services and to use and access portions of the Services that require logging in with a username and password, and may affect other functionality.

Analytics and Advertising

You may exercise choice regarding the use of cookies from Google Analytics by going to https://tools.google.com/dlpage/gaoptout and downloading the Google Analytics Opt-out Browser Add-on.

Some of the advertisers and service providers that perform advertising-related services for us and our partners may participate in the Digital Advertising Alliance ("DAA") Self-Regulatory Program for Online Behavioral Advertising. To learn more about the DAA and how you can exercise certain choices regarding interest-based advertising, visit https://www.aboutads.info/choices. Some of these companies may also be members of the Network Advertising Initiative ("NAI"). To learn more about the NAI and your opt-out options for their members, see https://www.networkadvertising.org/choices/. Please be aware that, even if you are able to opt out of certain kinds of interest-based advertising, you may continue to receive other types of ads. Opting out only means that those selected members should no longer deliver certain interest-based advertising to you, but does not mean you will no longer receive any targeted content and/or ads (e.g., from other ad networks). MaxMind is not responsible for effectiveness of, or compliance with, any third-parties' opt-out options or programs or the accuracy of their statements regarding their programs.

Your browser settings may allow you to automatically transmit a "Do Not Track" signal to websites and online services you visit; however, there is no consensus among industry participants as to what "Do Not Track" means in this context. Like many websites and online services, unless and until the law is interpreted to require us to do so, the Website does not alter its practices when it receives a "Do Not Track" signal from a visitor's browser. To find out more about "Do Not Track," you may wish to visit https://www.allaboutdnt.com.

7. INTERNATIONAL TRANSFER

We are based in the U.S. and the information we collect is governed by U.S. law. If you are accessing the Services from outside of the U.S., please be aware that information collected through the Services may be transferred to, processed, stored, and used in the U.S. and other jurisdictions. Data protection laws in the U.S. and other jurisdictions may be different from those of your country of residence. Your use of the Services or provision of any information therefore constitutes your consent to the transfer to and from, processing, usage, sharing, and storage of your information in the U.S. and other jurisdictions as set forth in this Privacy Policy. If your data is collected in Europe, we will transfer your personal data subject to appropriate or suitable safeguards, such as Standard Contractual Clauses or the Privacy Shield Framework. For information about our self-certification to Privacy Shield, please see the "Additional Disclosures for Data Subjects in Europe" section below.

8. SECURITY

MaxMind implements reasonable administrative, physical, and technical security measures to help protect your data from loss, theft, misuse and unauthorized access, disclosure, alteration and destruction. However, no physical or electronic security system is impenetrable. MaxMind cannot guarantee the security of the Service's servers or databases, nor can we guarantee that information you supply will not be intercepted while being transmitted to us over the Internet.

9. POLICY REGARDING CHILDREN

The Services are not intended for use by children under the age of thirteen years old. MaxMind does not knowingly collect information from children under the age of thirteen. If you are a parent or guardian, and believe we have collected information about your child in violation of this policy, please contact us at the address set forth in Section 11 below. We do not knowingly "sell" as defined by the CCPA the personal information of minors under 16 years old who are California residents without their affirmative authorization.

10. CHANGES TO THIS PRIVACY POLICY

We will occasionally update this Privacy Policy in response to changing business circumstances and legal developments. If there are material changes to this Privacy Policy or in how we use your information, we will prominently post such changes prior to implementing the change. We encourage you to periodically review this Privacy Policy to be informed of how we are collecting and using your information.

11. CONTACT FOR ADDITIONAL INFORMATION, OPTING OUT, DATA ACCESS AND CORRECTION, AND DISPUTES

If you have any questions or complaints about this Privacy Policy, or you wish to exercise your opt-out rights hereunder or access or correct data applicable to you, please contact us:

By email: privacy@maxmind.com

By mail:

Tawa Gonzalez (Privacy Agent)
Legal Department
MaxMind, Inc.
14 Spring Street, Suite 3
Waltham, MA 02451
U.S.A.

For EU-specific requests, including our compliance with Privacy Shield, please contact our Data Protection Officer at:

By email: dpo@maxmind.com

By mail:

Data Protection Officer
MaxMind, Inc.
14 Spring Street, Suite 3
Waltham, MA 02451
U.S.A.

12. ADDITIONAL DISCLOSURES FOR CALIFORNIA RESIDENTS

These additional disclosures apply only to California residents. The California Consumer Privacy Act of 2018 ("CCPA") provides additional rights to know, delete and opt out, and requires businesses collecting or disclosing personal information to provide notices and means to exercise rights.

California Notice of Collection

In the past 12 months, we have collected the following categories of personal information enumerated in the CCPA:

  • Identifiers, including name, address, email address, account name, IP address – and an ID number assigned to your account.
  • Customer records, phone number, billing address, and credit or debit card information.
  • Commercial information, including purchases and engagement with the Services.
  • Internet activity, including history of visiting and interacting with our Services, browser type, browser language and other information collected automatically.
  • Geolocation data.
  • Employment and education data, including information you provide when you apply for a job with us.
  • Inferences drawn.

For more information on information we collect, including the sources we receive information from, review the "Information MaxMind Collects" section above. We collect and use these categories of personal information for the business purposes described in the "How MaxMind Uses Information" section above, including to provide and manage our Services.

MaxMind discloses the following categories of personal information for commercial purposes: identifiers, demographic information, commercial information, internet activity, geolocation data and inferences. We use and partner with different types of entities to assist with our daily operations and manage our Services. Please review the "How MaxMind Shares Information" section above for more detail about the parties we have shared information with.

To the extent "sale" under the CCPA is interpreted to include the disclosure of MaxMind’s databases as set out in the "How MaxMind Shares Information" section or use of advertising technology activities as set out in the "Analytics and Advertising" section, MaxMind will comply with applicable law as to such activity. Please note that where we use and disclose personal information for purposes related to security, fraud detection, and other similar purposes, some of your rights may be limited to the extent that they adversely affect the rights and freedoms of other consumers.

Right to Know and Delete

If you are a California resident, you have the rights to delete the personal information we have collected from you and know certain information about our data practices in the preceding 12 months. In particular, you have the right to request the following from us:

  • The categories of personal information we have collected about you;
  • The categories of sources from which the personal information was collected;
  • The categories of personal information about you we disclosed for a business purpose or sold;
  • The categories of third parties to whom the personal information was disclosed for a business purpose or sold;
  • The business or commercial purpose for collecting or selling the personal information; and
  • The specific pieces of personal information we have collected about you.

To exercise any of these rights, please submit a request through our online form available at Right to Know: https://support.maxmind.com/privacy-center/ccpa-right-to-know/ and Right to Delete: https://support.maxmind.com/privacy-center/ccpa-right-to-delete/, call our toll free number at 1-844-802-0220, or email us at california-privacy@maxmind.com. In the request, please specify which right you are seeking to exercise and the scope of the request. We will confirm receipt of your request within 10 days. We may require specific information from you to help us verify your identity and process your request. If we are unable to verify your identity, we may deny your requests to know or delete.

If personal information about you has been processed by us as a service provider on behalf of a customer and you wish to exercise any rights you have with such personal information, please inquire with our customer directly. If you wish to make your request directly to us, please provide the name of our customer on whose behalf we processed your personal information. We will refer your request to that customer, and will support them to the extent required by applicable law in responding to your request.

Right to Opt-Out of Sale

To the extent MaxMind sells your personal information as the term "sell" is defined under the California Consumer Privacy Act, you have the right to opt-out of the sale of your personal information by us to third parties at any time. You may submit a request to opt-out by clicking Do Not Sell My Personal Information: https://support.maxmind.com/privacy-center/ccpa-do-not-sell/ccpa-do-not-sell-opt-out/. You may also submit a request to opt-out by emailing us at california-privacy@maxmind.com.

Authorized Agent

You can designate an authorized agent to submit requests on your behalf. However, we will require written proof of the agent’s permission to do so and verify your identity directly.

Right to Non-Discrimination

You have the right not to receive discriminatory treatment by us for the exercise of any of your rights.

Shine the Light

California's "Shine the Light" law permits customers who are California residents to request certain details about how a business shares their personal information as defined by "Shine the Light" with third parties (and in some cases affiliates) for those third parties' or affiliates' own direct marketing purposes. California customers may request information about our compliance with this law by contacting us by e-mail at california-privacy@maxmind.com or by mail at the address set forth in Section 11 above. Any such inquiry must include "California Privacy Rights Request" in the first line of the description and include your name, street address, city, state, and ZIP code. Please note that we are only required to respond to one request per customer each year, and we are not required to respond to requests made by means other than through this email or mail address.

13. ADDITIONAL DISCLOSURES FOR NEVADA RESIDENTS

Nevada law requires certain businesses to establish a designated request address where Nevada consumers may submit requests directing the business not to sell certain kinds of personal information that the business has collected or will collect about the consumer. A sale under Nevada law is the exchange of personal information for monetary consideration by the business to a third party for the third party to license or sell the personal information to other third parties. If you are a Nevada consumer from whom MaxMind has collected personal information and you wish to submit a request relating to our compliance with Nevada law, please contact us as at nevada-privacy@maxmind.com.

14. ADDITIONAL DISCLOSURES FOR DATA SUBJECTS IN EUROPE

Roles

EU data protection law makes a distinction between organizations that process personal data for their own purposes (known as "controllers") and organizations that process personal data on behalf of other organizations (known as "processors").

MaxMind, located at the address set forth in Section 11 above, generally operates as a processor on behalf of its customers that use the MaxMind's services. The MaxMind customer, the controller, determines the purposes and means of the processing of personal data. Specifically, MaxMind's customer decides what personal data to share with MaxMind in order for MaxMind to provide the customer with robust risk score information, certain licensed data, the ability to flag potentially fraudulent activity, and other services as purchased by the customer. Please visit the applicable customer's privacy policy for information about their privacy practices.

MaxMind also operates as a controller with respect to certain of its services and/or databases. For example, MaxMind operates as a controller in connection with personal data collected from visitors through its website, including through data correction requests. Also, when MaxMind combines personal data from different customers, like many kinds of analytics services, it may do this both as a processor at its customers' instruction and as a controller itself for the purpose of providing services to all of its customers. For example, MaxMind may process and aggregate or otherwise de-identify some of the personal data that a customer shares with MaxMind in order to make that personal data part of another database for one or more other services provided to MaxMind customers.

Data Subject Rights

If you are a data subject in Europe, you have the right to access, rectify, or erase any personal data we have collected about you through the Services. You also have the right to data portability and the right to restrict or object to our processing of personal data we have collected about you through the Services. In addition, you have the right to ask us not to process your personal data (or provide it to third parties to process) for marketing purposes or purposes materially different than for which it was originally collected or subsequently authorized by you. You may withdraw your consent at any time for any data processing we do based on consent you have provided to us.

To exercise any of these rights, contact us using the information at Section 11 above and specify which right you intend to exercise. We will respond to your request within 30 days. We may require additional information from you to allow us to confirm your identity. Please note that we store information as necessary to fulfill the purposes for which it was collected, and may continue to retain and use the information even after a data subject request for purposes of our legitimate interests, including as necessary to comply with our legal obligations, resolve disputes, prevent fraud, and enforce our agreements.

If your information has been processed by us on behalf of one of our customers and you wish to exercise any rights you have with such information, please inquire with our customer directly. If you wish to make your request directly to MaxMind, please provide the name of the MaxMind customer on whose behalf MaxMind processes your information. We will refer your request to that customer, and will support them to the extent required by applicable law in responding to your request.

If you have any issues with our compliance, you have the right to lodge a complaint with a European supervisory authority.

Privacy Shield

MaxMind complies with the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal data from the European Union, the United Kingdom and Switzerland to the United States, respectively. MaxMind has certified that it adheres to the Privacy Shield Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability.

MaxMind is subject to the investigatory and enforcement jurisdiction of the United States Federal Trade Commission in complying with its commitments under the Privacy Shield Principles. We hereby affirm our commitment to subject to the Privacy Shield Principles all personal data transferred from the European Union, the United Kingdom and Switzerland in reliance on Privacy Shield. This means that MaxMind shall be liable to you for any third party agent to which we transfer your personal data and that processes such personal data in a manner that violates the Privacy Shield Principles, unless we can demonstrate that we are not responsible for the resulting damages. MaxMind takes reasonable steps to ensure that personal data is relevant to its intended use and is accurate, complete, and current and retained only as long as needed for an intended or compatible purpose.

Any inquiries or complaints relating to MaxMind's compliance with Privacy Shield, including any requests for access or correction of personal data, may be addressed to our Data Protection Officer set forth in Section 11 of this Privacy Policy. MaxMind will investigate and attempt to resolve any inquiries brought to its attention. MaxMind commits to refer unresolved privacy complaints under the EU-US and Swiss-US Privacy Shield Principles to BBB EU PRIVACY SHIELD, a non-profit alternative dispute resolution provider located in the United States and operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint. Under limited circumstances, in the event your complaint is not resolved through these channels a binding arbitration option may be available for a Privacy Shield Panel.

If there is any conflict between the policies in this Privacy Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification page, please visit https://www.privacyshield.gov/.