Privacy Policy

Last updated: 08.11.2025

1. Introduction
Welcome to LeadsByMia ("we", "us", "our"). We take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard personal data when you interact with our services, website (www.leadsbymia.com), or otherwise provide us with information. We comply with the General Data Protection Regulation (GDPR) and applicable Danish data protection laws (the Danish Data Protection Act).

By using our website or services, you consent to the practices described here.

2. Data Controller & Contact
LeadsByMia is the data controller for personal data processed in connection with your interactions with us.
If you have any questions about this Privacy Policy, data collection, or your rights, you may contact us at:

Email: [email protected]

If required, we may appoint an external Data Protection Officer (DPO) or consultant.

3. What personal data we collect
We may collect different categories of personal data depending on how you interact with us:

Contact information: name, job title, company, email address, telephone number, address

Business information: company name, industry, company size, revenue bracket

Usage and technical data: IP address, browser type, device type, operating system, pages visited, referral URL, time stamps, cookies and similar technologies

Communications data: records of correspondence (email, support, calls)

Leads / prospect data: when acting as service provider, we may receive or collect data about prospects (e.g. name, contact details, company, decision-maker role)

Marketing preferences: your opt-in / opt‐out preferences

We do not collect special categories of data (e.g. racial/ethnic data, health, religion) unless you explicitly consent and it is lawful.

4. Legal basis for processing
Depending on the context, we rely on one or more legal bases under GDPR (Article 6):

Consent: where you have given clear consent for us to process your data for specified purposes (e.g. subscribing to newsletter)

Performance of a contract: where data processing is necessary to provide our services, fulfill agreements, or carry out pre-contractual steps

Legitimate interests: where we have a legitimate interest in processing data (e.g. direct B2B marketing, lead generation, improving services), provided such interest does not override your rights and freedoms. We document a legitimate interest assessment as required by Danish guidelines (e.g. for direct marketing).

Legal obligation: when required by law

Other applicable GDPR bases

5. Purpose of processing & use of data
We may use your personal data for one or more of the following purposes:

To provide, maintain, and improve our services

To generate leads, qualify prospects, and schedule appointments

To communicate with you (e.g. via email, phone) about your requests, orders, or support

To send marketing and promotional materials (only where permitted)

To analyze usage and performance of our website and services

To comply with legal obligations (e.g. tax, accounting, record-keeping)

To prevent fraud or misuse

6. Sharing / disclosure of data
We may share or disclose personal data with:

Service providers / subcontractors: e.g. hosting, CRM, email platforms, analytics providers — only under contract assuring GDPR compliance

Clients: in lead generation projects, we may provide qualified leads to our clients; we ensure that only data agreed upon is shared

Legal / regulatory authorities: when required by law or to respond to lawful requests

Business transfers: in context of sale, merger, or reorganization

We do not sell your personal data to third parties.

7. Cross-border transfers
If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards (e.g. standard contractual clauses, adequacy decisions) to protect the data consistent with GDPR requirements.

8. Retention periods
We retain personal data only as long as needed for the purposes for which it was collected, or as required by law. When no longer needed, we securely delete or anonymize it.

9. Your rights
Under GDPR, you have certain rights regarding your personal data:

Right to access: you can request a copy of the personal data we hold about you

Right to rectification: you may request correction of inaccurate or incomplete data

Right to erasure (“right to be forgotten”): under certain conditions, you may ask us to delete your data

Right to restriction of processing

Right to object: e.g. to direct marketing or processing based on legitimate interests

Right to data portability: in cases where processing is based on consent or contract

Right to withdraw consent: if processing is based on consent, you may withdraw it at any time

Right to lodge a complaint with supervisory authority: in Denmark, this is the Danish Data Protection Authority (Datatilsynet)

To exercise your rights, contact us at the details above. We will respond without undue delay, typically within one month (extensions possible in complex cases).

10. Cookies & tracking
We use cookies and similar tracking technologies (e.g. Google Analytics, Facebook Pixel, etc.) to monitor website usage, performance, and user behavior. Users may manage cookie preferences (e.g. via banner / cookie consent tool). We process only necessary data and anonymize or aggregate where possible.

11. Security measures
We implement appropriate technical and organizational measures to protect personal data against unauthorized or unlawful access, accidental loss, alteration, disclosure, or destruction. Measures may include encryption, pseudonymization, access controls, regular security assessments, secure backups, etc.

12. Data breach notification
In case of a data breach that is likely to pose a risk to individuals’ rights and freedoms, we will notify the relevant supervisory authority (Datatilsynet) within 72 hours after becoming aware, and, where required, notify affected data subjects.

13. Changes to this Privacy Policy
We may update this policy from time to time. We will notify users (e.g. via website banner or email) when material changes are made, along with the “Last updated” date.

14. Third-party links
Our website may contain links to third-party websites. This Privacy Policy does not apply to those sites. We encourage you to review their privacy policies separately.