Privacy & GDPR Policy

Menoki.com is committed to protecting personal data and maintaining transparency in accordance with the General Data Protection Regulation (EU) 2016/679.

1. Introduction

Menoki.com and its affiliated entities ("Menoki", "we", "our", or "us") are committed to protecting the privacy and personal data of users, customers, partners, and visitors.

This Privacy & GDPR Policy explains how personal data is collected, used, processed, stored, and protected in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR).

By using our platform, applications, websites, services, campaigns, or integrations, users acknowledge and agree to the practices described in this policy.

2. Data Controller

The data controller for the processing of personal data is:

Company Menoki / Stickers License B.V.
Website Menoki.com
Privacy Contact Available through official company communication channels.

3. Categories of Personal Data

Depending on platform usage and campaign participation, Menoki may process the following categories of data.

Technical & Usage Data

  • Device type
  • Operating system
  • Browser information
  • IP address
  • Country or region
  • Language settings
  • QR scan activity
  • App installation activity
  • Platform interaction analytics
  • Sticker usage analytics
  • Campaign engagement analytics

Account & Contact Data

  • Email address
  • Username or account identifier
  • Social login information
  • Newsletter subscription preferences
  • Marketing opt-in preferences

User Generated Content

  • AI selfie uploads
  • Photos submitted voluntarily by users
  • User-generated campaign content
Sensitive personal data is not intentionally collected unless explicitly required for a specific service.

4. Purpose of Processing

Personal data may be processed for the following purposes:

  • Platform functionality and service delivery
  • Sticker delivery and activation
  • User authentication
  • Campaign administration
  • Analytics and performance optimization
  • Fraud detection and prevention
  • Customer support
  • Reporting for campaigns and sponsors
  • Legal and compliance obligations
  • Marketing communications where consent has been provided

6. Data Storage & International Transfers

Menoki hosts its infrastructure within the European Union. Our servers are located in Amsterdam, the Netherlands within an ISO27001-certified hosting environment.

  • Personal data remains stored within the European Union
  • GDPR protections apply to the processing of personal data
  • Appropriate technical and organizational safeguards are implemented

Where third parties outside the European Economic Area (EEA) are involved, Menoki ensures that appropriate safeguards such as Standard Contractual Clauses (SCCs) or equivalent legal mechanisms are implemented.

7. Data Retention

Personal data is retained only for as long as necessary to fulfill:

  • Operational purposes
  • Contractual obligations
  • Legal obligations
  • Security and fraud prevention requirements
  • Analytical purposes

When data is no longer required, it is securely deleted or anonymized.

8. Security Measures

Menoki implements appropriate technical and organizational security measures, including:

  • SSL / HTTPS encryption
  • Encrypted storage where applicable
  • Role-based access controls
  • Internal authorization procedures
  • Password protection and MFA
  • Monitoring and logging systems
  • Secure backup procedures
  • Access restrictions to production systems
  • Periodic security reviews
Despite these measures, no system can guarantee absolute security.

9. Third Parties & Subprocessors

Menoki may use trusted third-party providers to support services and platform operations.

  • Hosting Cloud
  • Analytics providers
  • Payment providers
  • CRM and communication platforms
  • Apple App Store
  • Google Play
  • Firebase
  • Kooboo CMS

Where required, Data Processing Agreements (DPAs) are in place with subprocessors.

10. User Rights Under GDPR

Under GDPR, users have the right to:

  • Access their personal data
  • Correct inaccurate data
  • Request deletion of personal data
  • Restrict processing
  • Object to processing
  • Withdraw consent
  • Request data portability
  • File a complaint with a supervisory authority

Requests may be submitted through the official contact channels of Menoki.

11. Cookies & Tracking Technologies

Menoki may use cookies, SDKs, analytics technologies, and similar tracking mechanisms to:

  • Improve platform performance
  • Analyze usage patterns
  • Personalize user experiences
  • Measure campaign effectiveness

Where legally required, consent mechanisms are implemented.

12. Children's Privacy

Menoki services are not intended for children under the age required by applicable local laws unless explicitly stated otherwise.

Where required, parental consent mechanisms may apply.

13. Changes to this Policy

Menoki reserves the right to update or modify this Privacy & GDPR Policy at any time.

Updated versions may be published through official channels or platform interfaces.

14. Contact

For questions regarding this Privacy & GDPR Policy or GDPR-related requests, users may contact Menoki through official company communication channels.

Menoki remains committed to protecting user privacy, maintaining transparency, and ensuring compliance with applicable data protection laws.