MiTrust protects user privacy by allowing them to control their data sharing, ensuring process transparency, and strictly adhering to data protection regulations.
Yes, MiTrust's service is free for users, although some Online Services may integrate MiTrust into their paid offerings.
With explicit user consent to collect a specified list of personal data from a defined source, MiTrust collects the said data. In a second consent, and after viewing them, the user can decide whether to share them with the Online Service or not. In all cases, only the data for which the user has given consent is retrieved and shared by MiTrust
Yes. During the transaction, users can decide to interrupt it at any time during the MiTrust journey. Subsequently, if the information has been shared with the Online Service, users can directly request the Online Service to exercise their right to erasure of their data.
MiTrust uses personal data only for purposes consented to by users, like checking a borrower's solvency or the verification of a user's identity.
MiTrust collects personal data directly from trusted sources, with the explicit mandate of the user, under his full control.
No, MiTrust does not store any personal data. As soon as the data sharing transaction has been completed through MiTrust, and even if the end user has collected his data from the source with Mitrust but decides not to share them with the Online Service, MiTrust deletes all user data.
As much as possible, MiTrust avoids collecting user credentials. In order to collect the personal user data from the chosen source, we favor connexions through Application Programming Interfaces (APIs) whereby the user inputs his credentials directly into the interface of the chosen data source. In case such method is not available and should MiTrust collect part or all of user credentials to access the data source on his behalf, such credentials are systematically encrypted upon entry, are NEVER shared with anybody in a readable form, and are erased as soon as the connection has been performed. These commitments are regularly audited by an external auditor certified by the French National Agency for Security of Information Systems, as well as the security squads of large financial institutions using MiTrust for their own services.
No, MiTrust does NOT share the collected user data with any other party than the one for which the user has given his consent during the MiTrust transaction.