top of page

Privacy Policy

my·mo ecosystem

(Last updated: 08.04.2026, Valid from: 28.04.2026)
 

Your trust is our top priority. We treat your personal data confidentially at all times and in accordance with applicable data protection laws. 42hacks mobility cooperative (hereinafter also “we,” “us,” or “42hacks”), operator of the my·mo ecosystem, collects and processes personal data about you and, where applicable, about other individuals (“third parties”).

This privacy policy describes what we do with your data when you use the my·mo ecosystem and informs you about your rights. If you provide us with data or share data about other individuals, we assume that you are authorized to do so and that the information is accurate. Please ensure that these individuals have been informed about this privacy policy.

1. Who processes my personal data?

Unless otherwise stated, the controller is:

42hacks mobility cooperative
9043 Trogen, Switzerland
Contact: hallo@my-mo.com

We may also share your personal data with third parties (data processors or independent controllers) where necessary for the purposes described in this policy.

2. What personal data do we process and for what purpose?

2.1 Communication
If you contact us (in writing, by phone, or digitally), we process your name, contact details, and the content and timing of the communication in order to respond to your inquiry or handle your request.

2.2 Use of the my·mo ecosystem​

When you use the my·mo move app (for employees) or my·mo manage (for HR/admins), we process, among other things:

  • Name, email, phone number, license plate, employee ID, place of residence, date of birth, SwissPass number

  • Device and usage data (e.g., IP address, access times, log data)

  • Mobility preferences (e.g., package selection, use of public transport offers, parking behavior)

  • Entry and exit times at company parking facilities (via license plate recognition)

This data is necessary to provide the agreed mobility concept and enable access to services such as parking, public transport offers, or bike services.

We also use the data to:

  • Improve IT security and app stability

  • Create anonymized, aggregated analyses for employers

  • Display voluntary, non-binding mobility nudges

  • Optimize products and traffic flows

No automated decisions with legal effects are made. Parking violations are reviewed manually via the my·mo monitor app or via OCR license plate recognition through cameras on your employer’s parking premises. You always decide your own behavior.

We use cookies in the app and on the website to ensure functionality and improve user experience. These generally do not contain personal data.

2.3. Administration

We process personal data for accounting, archiving, service improvement, and optimization of internal processes.

2.4 Legal obligations and legal protection

We may process personal data to comply with legal obligations, prevent misuse, or safeguard our rights before authorities or courts.

3. On what legal basis do we process your data?

Depending on the purpose, processing of your personal data is based on:

  • Performance of a contract (e.g., access to mobility services, parking management)

  • Legal obligations

  • Legitimate interests (e.g., system and data security, analytics, user guidance)

  • Consent, where explicitly obtained (e.g., newsletters)

4. How long do we store your personal data?

We store your data only as long as necessary for the intended purposes or as required by law.

Specifically:

  • Parking camera event logs are synchronized daily with a secure Swiss cloud and deleted after 8 weeks

  • After verification via my·mo monitor, recorded license plates are stored for 3 months

  • In case of inactivity or when leaving the company, the following data is deleted after 12 months: name, email, phone number, license plate, employee ID, date of birth, SwissPass number. Place of residence is anonymized to a 1 km² grid

  • Certain data is retained for up to 10 years due to legal requirements

5. How do we protect your personal data?

We implement appropriate technical and organizational measures to protect your data against unauthorized access, loss, or misuse:

  • Encryption of all data during transmission and storage

  • Role-based access control for employees and admins

  • Secure authentication via Firebase

  • Enforcement of strong password policies

  • Change logging (audit logs) using MongoDB Change Streams

Multi-factor authentication (MFA) is planned.

6. Do we share your personal data with third parties?

Only authorized individuals have access to your data on a need-to-know basis. We work with carefully selected data processors under data processing agreements, including:

  • Amazon Web Services (AWS Europe) – hosting

  • Firebase Authentication (Google Ireland Ltd.) – login & authentication

  • Microsoft Identity Provider – authentication

  • SendGrid (Twilio Netherlands B.V.) – email delivery

  • Mobility partners (Tarifverbund Ostwind, SBB AG, Reka Cooperative, VMobil) – mobility services

All data is stored within the EU. Standard Contractual Clauses (SCCs) are used where required. Your data is not processed outside Switzerland, the EU, the EEA, or the United Kingdom.

To comply with legal requirements, we maintain a record of processing activities (RoPA) and have a documented plan for reporting and handling data protection incidents.

7. What rights do you have regarding your personal data?

Under data protection law, you have the following rights:

  • Right to information: to know what data we process about you

  • Right of access: to view your stored personal data

  • Right to rectification: to correct inaccurate or incomplete data

  • Right to erasure: to request deletion of your data under certain conditions

  • Right to restriction: to restrict the processing of your data

  • Right to data portability: to receive your data in a machine-readable format

  • Right to complain: to a data protection authority or via info@42hacks.com

  • Right to withdraw consent: at any time with future effect

  • Right to object: to processing based on legitimate interests

You can request deletion of your my·mo account and your data at any time via: hallo@my-mo.com

8. Changes to this privacy policy

This privacy policy may be updated if our data processing practices change. The current version is always available in the my·mo ecosystem.

Footer-Logo.png

my·mo | 42hacks mobility
Genossenschaft Berg 29
9043 Trogen AR | Schweiz

© 2024 my·mo 

Registered office of the company Trogen

UID-Number CHE-278.614.643

bottom of page