Privacy Policy

Last Updated: 2 January, 2026

1. Introduction

MPS Metalmind AB ("Metalmind," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

We are a Swedish company and comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

MPS Metalmind AB
Torshamnsgatan 28A
164 40 Kista
Sweden
Email: hello@metalmind.ai

3. Information We Collect

3.1 Information You Provide

  • Account Information: When you create an account, we collect your email address and any profile information you choose to provide.
  • User Content: Documents and files you upload to our services.
  • Communications: Information you provide when you contact us, subscribe to our newsletter, or communicate with us.
  • Payment Information: When you make a purchase, payment information is processed by our payment service providers.

3.2 Information Collected Automatically

  • Usage Data: Information about how you interact with our website and services.
  • Device Information: Browser type, operating system, and device identifiers.
  • Log Data: IP address, access times, and pages viewed.
  • Cookies: We use cookies and similar technologies to enhance your experience. See our Cookie section below.

4. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve our services.
  • To process transactions and send related information.
  • To send you technical notices, updates, and support messages.
  • To respond to your comments, questions, and requests.
  • To communicate with you about products, services, and events (with your consent where required).
  • To monitor and analyze trends, usage, and activities.
  • To detect, investigate, and prevent fraudulent transactions and other illegal activities.
  • To comply with legal obligations.

5. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Contract: Processing necessary for the performance of a contract with you.
  • Legitimate Interests: Processing necessary for our legitimate business interests, such as improving our services and marketing.
  • Consent: Where you have given consent for specific processing activities.
  • Legal Obligation: Processing necessary to comply with legal requirements.

6. Data Sharing and Disclosure

We may share your information in the following circumstances:

  • Service Providers: With third-party vendors who perform services on our behalf, such as hosting, payment processing, and analytics.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets.
  • Legal Requirements: When required by law or to protect our rights and safety.
  • With Your Consent: When you have given us permission to share your information.

We do not sell your personal data to third parties.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements.

When determining retention periods, we consider the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorized use or disclosure, and applicable legal requirements.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest.
  • Secure data storage in Microsoft Azure data centers.
  • Access controls and authentication mechanisms.
  • Regular security assessments and monitoring.

9. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission.
  • Transfers to countries with adequate data protection laws.
  • Other lawful transfer mechanisms under GDPR.

10. Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Access: Request access to your personal data.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data ("right to be forgotten").
  • Restriction: Request restriction of processing in certain circumstances.
  • Portability: Request transfer of your data to another service provider.
  • Objection: Object to processing based on legitimate interests or for direct marketing.
  • Withdraw Consent: Withdraw consent at any time where processing is based on consent.

To exercise these rights, please contact us at hello@metalmind.ai. We will respond to your request within one month.

11. Cookies

We use cookies and similar tracking technologies to collect and track information about your browsing activity. Cookies are small data files stored on your device.

Types of Cookies We Use:

  • Essential Cookies: Necessary for the website to function properly.
  • Analytics Cookies: Help us understand how visitors interact with our website (e.g., Google Analytics).
  • Functional Cookies: Enable enhanced functionality and personalization.

You can control cookies through your browser settings. However, disabling certain cookies may affect website functionality.

12. Third-Party Services

Our services may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

Key third-party services we use include:

  • Microsoft Azure: For hosting and AI services.
  • Google Analytics: For website analytics.
  • Payment Processors: For handling transactions.

13. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child, we will take steps to delete that information.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.

We encourage you to review this Privacy Policy periodically for any changes.

15. Complaints

If you have concerns about how we handle your personal data, you have the right to lodge a complaint with a supervisory authority. In Sweden, this is:

Integritetsskyddsmyndigheten (IMY)
Box 8114
104 20 Stockholm
Sweden
Website: www.imy.se

16. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

MPS Metalmind AB
Torshamnsgatan 28A
164 40 Kista
Sweden
Email: hello@metalmind.ai