Mimopass Sabalic

Who is responsible for the security of collected personal data
What personal data do we process
How we collect personal data
Are you required to provide us with personal information
Purposes for which we process personal data
Who we may share your personal information with
Personal data of third parties that you provide to us
Personal data protection
Transfer of personal data
Changes to personal data
How long do we keep personal data
Privacy Policy Changes
How to contact us

The Mimopass Sabalic Company [Rosenburgstrasse 10, 8630 Rüti, Switzerland] (hereinafter referred to as the "Company") is determined and committed to protecting your privacy and personal data when processing them. This Privacy Policy explains how we collect and use your personal data for the purpose of fulfilling our legal obligations, establishing and exercising rights and obligations from the contractual relationship, and your rights and options in this regard. The Privacy Policy has been drawn up on the basis of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation - GDPR) and the Swiss Confederation Federal Act on Data Protection (DSG) of 25 September 2020 (SR 235.1) for Swiss users and their data subject to this Act.

Who is responsible for the security of collected personal data

The Company is responsible for the security of the collected personal data.

Your data will be processed by the Company as the data controller, and Dinka Sabalic, as the Data Protection Officer, pursuant to the "Decision on the Appointment of the Data Protection Officer" dated 04.11.2025. In order to protect personal data, enable their processing and exercise your rights as a data subject whose personal data is processed, personal data may be transferred to natural and legal persons with whom we cooperate based on our contractual or legal obligations (e.g. tax advisors, accounting services, law firms, competent public authorities).

What personal data do we process

The personal data we process may include:

- data for establishing and maintaining contact such as name and surname, residential address, place of residence, personal identification number, occupation-business function, postal address, business address, landline phone number, fax number, mobile phone number, electronic mail (e-mail), username and password;

- data relating to the issuance of invoices and payment processing and the implementation of legal obligations in relation to the prevention of money laundering and terrorist financing such as bank account numbers, payment card details and other related information;

- further business information that is strictly necessary for the purpose of establishing a contractual relationship, such as information about the means of transport/vehicle you are travelling on, the transport route (pick-up/delivery location), the time of transport (time range of pick-up and delivery), data on the size and weight of the package, the cost of transport, and further information that has been voluntarily provided to us such as instructions, specific requests and orders;

- information about all your activities on our online platform, including data about connecting with other registered and unregistered users of the platform. This can be information such as who you are connected to through our platform (favorite user), as well as with whom, how often and where you use our services. This includes information about registered users and who has added you as their favorite user.

- previously published information that we collect through publicly available registers, records and registers;

- details of mutual communication (written correspondence, etc.) as well as conducted conversations to the extent necessary for the realization of rights and obligations from the contractual relationship.

How we collect personal data

We collect and process your personal data depending on the circumstances, including:

- when and if the collection of personal data is necessary for the purpose of establishing a contractual relationship and exercising rights and obligations under it;

- when you contact us directly or via electronic communications and/or our employees with the aim of establishing a business relationship or expressing interest in establishing a business relationship;

- when our employees contact you or a legal entity in which you are a shareholder, business share holder, holder of a direct or indirect economic interest or you perform a relevant function, including an employment relationship, with the aim of establishing a business relationship or expressing interest in establishing a business relationship;

- for the purpose of distributing promotional material and advertising our products and services;

- in certain circumstances we collect and process your personal data through third parties. For example, we may collect personal data from a legal entity with which you are business related, other legal entities with which your legal entity is business related, other publicly available registers, records and registers.

Are you required to provide us with personal information

In principle, you provide us with all personal data voluntarily; as a rule, there are no negative or harmful consequences if you decide not to provide us with your personal data. However, there are circumstances when the Company cannot undertake business activities, including legal actions, without your personal data, for example when personal data is necessary to process your orders, instructions, requests and applications, for the purpose of establishing a binding legal relationship. In all these cases, the collection and processing of your personal data is a condition for the provision of our services unless there is another legal basis for their collection, such as a statutory or contractual basis.

Purposes for which we process personal data

We process personal data exclusively for the following purposes (“Permitted Purposes”):

- for the purpose of establishing and exercising rights and fulfilling obligations arising from employment;

- for the purpose of exercising the rights of employees prescribed by special laws;

- for the purpose of exercising the rights of the Company as an employer arising from and in connection with employment;

- for the purpose of protecting the health and safety of employees;

- for the purpose of creating and delivering promotional materials;

- for the purpose of establishing a contractual relationship and exercising rights and obligations arising from it (including but not limited to renegotiating and booking transport and delivering packages);

- for the purpose of managing and administering business processes related to the fulfillment of the contract and exercising rights and obligations arising from it, including payment processing, accounting purposes, auditing, debt collection and support services in connection with the above;

- for the purpose of harmonizing and fulfilling our legal obligations as well as obligations that may arise from European Union law and the laws of third countries to the extent applicable and to the extent and content in which the aforementioned rights do not contradict the law of the Swiss Confederation;

- for the purpose of analyzing and improving our services and communication with you;

- for the purpose of protecting security and managing access to our business premises, IT and communication system, online platforms and websites;

- for the purpose of identifying the person authorized to represent our contractual partners, sign orders and accept offers and conclude a contractual relationship with us;

- for the purpose of complying with court decisions and decisions of public law bodies and legal entities with public authority and exercising our rights and legally based interests;

- for the purpose of keeping records of statistics related to our business and providing information about possible changes in the application of the platform and/or services;

- for the purpose of marketing, promotion and advertising;

- for any purpose that is considered strictly necessary in connection with the achievement of any of the above-mentioned purposes.

For the purpose of communication regarding marketing services, provided that such an obligation is prescribed by law, we will only send you information in relation to which you have given your consent and only for as long as you do not withdraw your consent. We will not use your personal data to take any other actions or create profiles except in the cases specified here.

Depending on the Permitted Purpose for which we process your personal data, we may process your personal data on the following legal grounds:

- if you have given your consent to the processing of your personal data for one or more Permitted Purposes;

- the processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract;

- the processing is necessary for compliance with our legal obligations;

- the processing is necessary to protect your vital interests;

- processing is necessary for the purposes of our legitimate interests in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC and Swiss Confederation Federal Act on Data Protection (DSG) of 25 September 2020 (SR 235.1) for Swiss users and their data subject to this Act..

Who we may share your personal information with

We may share your personal information in the following circumstances:

If you are a user of our platform, we may share your personal information with registered and/or unregistered platform users and platform visitors via your public profile or during the process of requesting transportation and/or arranging transportation (creating a transportation request, offering transportation and booking transportation), all to the extent that this is necessary to provide the services. If you are a sender or carrier, we share your contact information with registered users with whom you have arranged transportation. We exchange the recipient's contact information with the selected carrier to enable smooth delivery of the package. The sender may share the carrier's contact information with the recipient of the package to ensure smooth delivery of the package.

If necessary, we share data with external collaborators such as law firms, accounting services, tax advisors, credit bureaus and financial institutions, business entities with which cooperation is necessary to exercise rights and obligations arising from a mutual contractual relationship (for example, printing houses), debt collection agencies, public law bodies and bodies with public authority, when necessary for the purpose of protecting contractual rights and/or claims, or when it is in the public interest or when it represents a legal obligation.

We may share your personal data on a confidential basis with third parties for the purpose of obtaining your opinion regarding the quality of our products and services in order to help us improve the quality of our products and services.

We may share your personal data with third parties to whom we have transferred or assigned rights from the contractual relationship with you.

We are also authorized to instruct third parties to process your personal data on our behalf and for our account and in accordance with our instructions as a data controller, in which case we assume responsibility for the confidentiality and security of your personal data. In such a case, the Company remains fully responsible to you for the security and confidentiality of your personal data and will use all necessary measures required by applicable regulations to ensure the integrity and security of your personal data.

The Company will not be responsible for the security and confidentiality of your personal data regarding the use of RapidAPI, whose services we use when you register on the platform or when you search for transport requests and enter a location (or locations) and complete and publish a transport request. This allows RapidAPI as a third party to analyze your use of our services, collect your personal data and store it with us. We have no control over third parties and their use of your collected personal data and assume no responsibility or liability for their collection and processing. To be informed about the processing of data by third parties, please read the relevant data protection statements carefully.

We may also use your personal data for statistical purposes to monitor visits to and use of our websites in order to develop our business and improve the quality of the websites.

Otherwise, we may disclose your personal data to a third party only if you give us your consent to do so, regardless of whether the consent is contained in a separate document or represents a separate clause of the contract, if it is a legal obligation or an obligation to act in accordance with the order of a court or other public law authority or body with public authority.

Personal data of third parties that you provide to us

If you provide us with personal data of other natural or legal persons, you must ensure and warrant that you are authorized to disclose the personal data to us, that we may process it, and that we may obtain, use and transfer it without obligation to take further action in accordance with the conditions set out in the Privacy Policy. In particular, you must ensure that the other natural or legal person is aware of the disclosure of their personal data to us, that they have given their consent to such disclosure, use and transfer of personal data, and that they are fully aware of the content of the Privacy Policy, including but not limited to our identity, contact details, purposes of personal data processing, rights in relation to access to personal data, modification of personal data, insight into collected personal data, deletion of personal data, transfer of personal data, right to lodge complaints in relation to the processing of personal data, as well as the consequences in case of violation of our obligations in relation to the above. We may read your messages that you exchange with other registered users only in case of suspicion of fraud, manipulation, threats and/or other criminal and civil consequences.

Personal data protection

We will protect your personal data by implementing appropriate technical and organizational security measures in accordance with internal regulations and procedures regarding the storage, access, disclosure and access to personal data. Personal data may be kept in paper form and stored in special electronic personal data protection systems.

Transfer of personal data

We usually transfer and store your personal data that we have collected within the European Union ("EU"). If the need arises for the Company to transfer personal data to a third country or an international organization, we will take all necessary measures to ensure that the level of protection of your personal data meets the requirements of the Regulation and other applicable regulations of the Swiss Confideration. We ensure this, among other things, by applying standard contractual clauses issued by the European Commission (Commission Decision of 15 June 2001 on standard contractual clauses for the transfer of personal data to third countries, in accordance with Directive 95/46/EC and Commission Decision of 27 December 2004 amending Decision 2001/497/EC as regards the introduction of an alternative set of standard contractual clauses for the transfer of personal data to third countries) and the Swiss Confederation Federal Act on Data Protection (DSG) of 25 September 2020 (SR 235.1) for Swiss users and their data subject to this Act. In the event of such a transfer, the recipient of personal data in a third country or international organization shall ensure the level of protection required by the Regulation. In the event of the transfer of personal data to third parties, the Company will ensure that the said persons provide the same level of protection as the Company provides.

Changes to personal data

If any of the personal information you have provided to us changes (e.g. your e-mail, residential address, etc.) or if you become aware that we have inaccurate personal information, please inform us by sending an e-mail to the following e-mail address: info@mimopass.com. The Company is not liable for any losses arising from inaccurate, untrue, incomplete or incomplete personal information provided to us.

How long do we keep personal data

Your personal data will be deleted when there is no longer a reasonable need to retain it for the Permitted Purposes or, to the extent applicable, when you withdraw your consent, provided that we are not required to retain your personal data based on legal obligations. In any case, we will retain your personal data for as long as there is a need to retain it for the purpose of exercising our rights and obligations under a contract or business relationship, including the need to enforce the collection of a claim.

Your rights

Subject to the conditions prescribed by the Regulation or regulations of the Swiss Confederation, you have the right to withdraw consent (if the processing of personal data is based on consent and there is no other legal basis for it), the right to access the collected personal data, the right to request a copy of the personal data we store, the right to request the amendment of the collected personal data, the right to delete personal data, the right to transfer the collected personal data, the right to object to the processing of personal data. If you decide to do any of the above, please contact us by sending an email to the following email address: info@mimopass.com. When sending, we may ask you to prove your identity by submitting a valid copy of a personal document from which your identity can be established in order to comply with applicable regulations and prevent unauthorized disclosure of personal data. We reserve the right to charge you additional fees if you abuse your right to access personal data, for example in the case of repeated requests or requesting additional copies of documents without reasonable grounds. We will consider all your requests and complaints that we receive and respond to them in a timely manner. If you are not satisfied with our response, you can submit your complaint to the data protection authority. Upon your request, we will provide you with the contact details of the data protection authority.

Privacy Policy Changes

This Privacy Policy was drafted on 04.11.2025. We reserve the right to amend it from time to time to reflect changed procedures and methods of processing personal data or changed legal circumstances. Amendments will enter into force on the date of publication.

How to contact us

We care about your opinion about our Privacy Policy. You can contact us by sending an e-mail to the e-mail address: info@mimopass.com or in writing by sending a letter to the following business address within the Company's headquarters: Mimopass Sabalic, Dinka Sabalic, Rosenburgstrasse 10, 8630 Rüti, Switzerland.

Mimopass Sabalic
represented by Dinka Sabalic