Privacy Policy

Created on 14 February, 2025Legal • 451 views • 15 minutes read

Mercano Global SRL (“us”, “we” or “our”) operates the firy.io website and its additional domains and subdomains (the “Service”).

This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.

We use your data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this policy.

1 - Definitions

Service

Service is the firy.io website/platform and its additional domains and subdomains, operated by Mercano Global SRL. The Service is part of a network of websites operated by Mercano Global SRL, which might be interconnected via a Single Sign-On (SSO) system.

Personal Data

Personal Data means data about a living individual who can be identified from that data (or from that and other information either in our possession or likely to come into our possession).

Usage Data

Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).

Cookies

Cookies are small pieces of data stored on your device (computer or mobile device).

Data Controller

Data Controller means the natural or legal person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal information are, or are to be, processed.

For the purpose of this Privacy Policy, we are a Data Controller of your Personal Data.

Data Processors (or Service Providers)

Data Processor (or Service Provider) means any natural or legal person who processes the data on behalf of the Data Controller.

We may use the services of various Service Providers in order to process your data more effectively.

Data Subject (or User)

Data Subject is any living individual who is using our Service and is the subject of Personal Data.

Information Collection and Use

We collect several different types of information for various purposes to provide and improve our Service to you.

2 - Types of Data Collected

Personal Data

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). Personally identifiable information may include, but is not limited to:

  1. Email address
  2. First name and last name
  3. Phone number
  4. Address, Country, State, Province, City, ZIP/Postal code
  5. Cookies and Usage Data
  6. Personal Identification Documents: As part of the BioLink User Verification/Verified Badge process, we may ask you to upload personal identification documents, such as a government-issued ID, business ID, driver's license, or similar documents. These documents are required for the sole purpose of verifying your identity, and are processed in compliance with applicable data protection laws, including the GDPR.
  7. SSO Data: As our Service is part of a larger network, your account might be integrated into our Single Sign-On (SSO) system. This means that your account can be used to access other services within our network of websites, and data such as your username and login credentials may be shared across these platforms for seamless access. Also, you can log using sign-in services such as Facebook Connect/Google Sign-In or other OpenID providers. These services will authenticate your identity, provide you with the option to share certain personal information (such as your name and email address) with us, and pre-populate our sign up form.

Usage Data

We may also collect information how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, browser language, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

Tracking Cookies Data

We use cookies and similar tracking technologies to track the activity on our Service and hold certain information.

Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Service.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

Examples of Cookies we use:

  1. Session Cookies. We use Session Cookies to operate our Service.
  2. Preference Cookies. We use Preference Cookies to remember your preferences and various settings.
  3. Security Cookies. We use Security Cookies for security purposes.

3 - Use of Data

Mercano Global SRL uses the collected data for various purposes:

  1. To provide and maintain our Service
  2. To notify you about changes to our Service
  3. To allow you to participate in interactive features of our Service when you choose to do so, like Push Notifications, for example.
  4. To provide customer support
  5. To gather analysis or valuable information so that we can improve our Service
  6. To monitor the usage of our Service
  7. To detect, prevent and address technical issues
  8. To verify your identity in the process of obtaining the Verified Badge on BioLinks.
  9. To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information. You may opt out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send.
  10. For SSO Integration: Your personal data might be shared across our network of websites to enable Single Sign-On functionality, allowing you to access multiple services without the need for separate logins. This helps us enhance user experience by providing a unified login system, that works in tandem with the social login providers.

4 - Legal Basis for Processing Personal Data Under General Data Protection Regulation (GDPR)

If you are from the European Economic Area (EEA), Mercano Global SRL legal basis for collecting and using the personal information described in this Privacy Policy depends on the Personal Data we collect and the specific context in which we collect it.

Mercano Global SRL may process your Personal Data because:

  1. We need to perform a contract with you
  2. We need to verify your identity
  3. You have given us permission to do so
  4. The processing is in our legitimate interests and it’s not overridden by your rights
  5. For payment processing purposes
  6. To comply with the law

5 - Retention of Data

Mercano Global SRL will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

Mercano Global SRL will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.

6 - Transfer of Data

Your information, including Personal Data, may be transferred to — and maintained on — computers located outside the European Union and the European Economic Area, including, but not limited to, the United States of America as well as other locations and jurisdictions in which we conduct our business or our service providers are located. Such transfers are performed subject to standard data protection clauses adopted by the EU Commission in accordance with the GDPR, which are made available to the data subject upon request.

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

Mercano Global SRL will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

We may transfer and/or provide information about our users in connection with an acquisition, sale of company assets, or other situation where user information would be transferred as one of our business assets. You will be notified via email and/or a prominent notice on our website prior to this change becoming effective.

7 - Data Sharing and Joint Processing within the Service

Please note that if you hold a FIRY Account and/or use FIRY Services managed by other FIRY and/or Mercano Global SRL entities, personal data collected by us is combined with personal data collected in connection with such other Services. Sharing and combining the personal data is based on Mercano Global SRL legitimate interests in finding synergies generated from performing, planning, and developing business at the group level, and in promoting sales by cross and up-selling complementary products of group companies. The Mercano Global SRL group companies have combined their customer support services to provide more effective global customer support.

8 - Disclosure of Data

Disclosure for Law Enforcement

Under certain circumstances, Mercano Global SRL may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Legal Requirements

Mercano Global SRL may disclose your Personal Data in the good faith belief that such action is necessary to:

  1. To comply with a legal obligation
  2. To protect and defend the rights or property of Mercano Global SRL
  3. To prevent or investigate possible wrongdoing in connection with the Service
  4. To protect the personal safety of users of the Service or the public
  5. To protect against legal liability

9 - Security of Data

The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.

10 - "Do Not Track" Signals

We do not support Do Not Track ("DNT"). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked.

You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.

11 - Your Data Protection Rights Under General Data Protection Regulation (GDPR)

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Mercano Global SRL aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact us.

In certain circumstances, you have the following data protection rights:

  1. The right to access, update or to delete the information we have on you. Whenever made possible, you can access, update or request deletion of your Personal Data directly within your account settings section. If you are unable to perform these actions yourself, please contact us to assist you.
  2. The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.
  3. The right to object. You have the right to object to our processing of your Personal Data.
  4. The right of restriction. You have the right to request that we restrict the processing of your personal information.
  5. The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable and commonly used format.
  6. The right to withdraw consent. You also have the right to withdraw your consent at any time where Mercano Global SRL relied on your consent to process your personal information.

Please note that we may ask you to verify your identity before responding to such requests.

You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).

12 - Service Providers

We may employ third party companies and individuals to facilitate our Service (“Service Providers”), to provide the Service on our behalf, to perform Service-related services or to assist us in analyzing how our Service is used.

These third parties may have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

AI Services

We use third-party services, including OpenAI and ClipDrop, to provide advanced AI-powered features on our website, such as image generation, document processing, chatbots and more. These services may collect and process data related to your interactions with these features, including but not limited to input data (e.g., text, images), usage patterns, and feedback. The data processed by OpenAI and ClipDrop may be used to enhance the accuracy and performance of these AI services, and to improve the overall user experience.

Please note that the use of these AI services is subject to their respective privacy policies, which we encourage you to review. By interacting with AI-powered features, you consent to the processing of your data by OpenAI and ClipDrop in accordance with their terms and privacy policies.

Analytics

We may use third-party Service Providers to monitor and analyze the use of our Service.

Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js, and dc.js) from sharing information with Google Analytics about visits activity.

For more information on the privacy practices of Google, please visit the Google Privacy Terms web page: https://policies.google.com/privacy

Behavioral Remarketing

Mercano Global SRL may use remarketing services to advertise on third party websites to you after you visited our Service. We and our third-party vendors use cookies to inform, optimize and serve ads based on your past visits to our Service.

Google AdWords

Google AdWords remarketing service is provided by Google Inc.

You can opt-out of Google Analytics for Display Advertising and customize the Google Display Network ads by visiting the Google Ads Settings page: http://www.google.com/settings/ads

Google also recommends installing the Google Analytics Opt-out Browser Add-on – https://tools.google.com/dlpage/gaoptout – for your web browser. Google Analytics Opt-out Browser Add-on provides visitors with the ability to prevent their data from being collected and used by Google Analytics.

For more information on the privacy practices of Google, please visit the Google Privacy Terms web page: https://policies.google.com/privacy

Payments

We may provide paid products and/or services within the Service. In that case, we use third-party services for payment processing (e.g. payment processors).

We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

The payment processors we work with are: Stripe and/or PayPal.

Their Privacy Policy can be viewed at https://stripe.com/privacy - https://www.paypal.com/us/legalhub/paypal/privacy-full

Protection against Spam and Website Security

To protect against spam and ensure the security of our website, we use the invisible Turnstile widget provided by Cloudflare.

The Turnstile widget helps verify that actions on our website are performed by human users, not automated bots. To achieve this, the service automatically collects and processes the following information in the background:

  1. Your IP address
  2. Information about your browser and operating system
  3. Your behavior on our website

This data may be transmitted to Cloudflare, Inc. (101 Townsend St, San Francisco, CA 94107, USA). The processing of this data is based on Article 6(1)(f) of the General Data Protection Regulation (GDPR), which allows for the processing of personal data for legitimate interests, including the protection of the security and integrity of our website.

13 - Links to Other Sites

Our Service may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.

14 - Children's Privacy

Our Service does not address anyone under the age of 18 (“Children”).

We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.

15 - Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

We will let you know via email and/or a prominent notice on our Service, prior to the change becoming effective and update the “Last Updated” date at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

16 - Contact Us

If you have any questions about this Privacy Policy, please contact us.