Privacy Policy

1. Important Information and Our Identity

Objective of this Privacy Policy

Welcome to the privacy policy of MidWork. We value your privacy and are dedicated to safeguarding your personal information. This policy explains how we handle your personal data when you visit our website, use our app, or access our services. It also informs you about your privacy rights and the legal protections in place.

Please ensure you read this privacy policy alongside any other relevant privacy or fair processing policies provided on specific occasions to fully understand how and why we use your data.


Fyffee OÜ, acts as the data controller and is accountable for your personal data (collectively referred to as ”Midwork”, ”we”, ”us”, or ”our” in this privacy policy).

We have designated a data privacy manager to oversee queries related to this policy. For any questions regarding this policy or to exercise your legal rights, please contact the data privacy manager using the details provided below.

Contact Details

Legal Entity Name: Fyffee OÜ

Email: [email protected]

Address: Sepapaja tn 6, 11415 Tallinn, Estonia 🇪🇪

You reserve the right to lodge a complaint at any time with the European Data Protection Supervisor (EDPS), the EU regulatory authority for data protection issues ( However, we would appreciate addressing your concerns directly before approaching the EDPS.

Individuals and data protection supervisory authorities in the UK may contact our data protection representative, Antoine Magny in High Wycombe, via email at [email protected].

Changes to the Privacy Policy and Your Obligation to Inform Us of Changes

We regularly review our privacy policy and may update it without notice. If there are significant changes in how we use or share previously collected personal data via the website, app, or services, we will notify you through appropriate channels such as the website, app, email, or other communication methods.

Ensuring the accuracy and currency of the personal data we hold about you is crucial. Kindly inform us if your personal data changes during your interaction with us.

2. Data Collection

Personal data, or information that can identify an individual, is what we collect. It excludes anonymous data where identity has been removed.

We collect, utilize, store, and transfer various types of personal data, which we categorize as follows:

  • Identity Data: Includes first name, last name, email address, address, date of birth, and telephone number.
  • Profile Data: Involves username, password, interests, preferences, education and work history, and job search preferences.
  • Contact Data: Encompasses address, email address, and telephone number.
  • Technical Data: Encompasses IP address, login data, browser type, time zone, location, and device technology.
  • Engagement Data: Comprises details about your usage of our platform, viewed and applied jobs, feedback on job applications, and messages exchanged with recruiters.
  • Usage Data: Includes information about your usage of our website, app, products, and services.
  • Marketing and Communications Data: Covers preferences regarding marketing communications.
  • Special Categories of Data: Involves information like ethnicity, sexual orientation, and gender identity. Consent is required for processing this data as described in this policy.

Additionally, we may collect, use, and share Aggregated Data for various purposes. Aggregated Data doesn’t directly or indirectly reveal your identity.

3. Data Collection Methods

We employ diverse methods to collect data from and about you, including:

  • Direct Interactions: You provide us with various data by interacting with our website, app, or by corresponding with us through different channels.
  • Automated Technologies: We automatically collect Technical Data and Usage Data through cookies and similar technologies as you interact with our website and app.
  • Third Parties or Publicly Available Sources: We receive personal data from third parties and public sources.

4. Data Usage

We use your personal data only when legally permissible. Common scenarios include:

  • Performance of a contract with you.
  • Pursuance of our legitimate interests (or those of a third party) where they don’t override your rights.
  • Compliance with legal obligations.
  • Obtaining your consent, especially when processing Special Categories of Data or when law mandates consent for marketing emails.

We utilize your personal data for various purposes, including:

  • Registering you as a new customer and granting access to our services.
  • Managing our relationship with you, including updates or service-related information.
  • Operating, administering, and safeguarding our business, website, and app.
  • Delivering relevant content and measuring its effectiveness.
  • Utilizing data analytics to enhance our offerings and customer experiences.
  • Making suggestions and recommendations tailored to your interests.

5. Tailored Content and Marketing

We may use your data to tailor content and marketing communications. You can opt out of receiving such communications at any time.

Opting Out

You can request to stop receiving marketing or job notification messages by using the opt-out links provided in marketing messages.


You can configure your browser to manage cookies. Note that disabling cookies may affect certain website functionalities. Refer to our Cookie Policy for more details.

Change of Purpose

We will only use your personal data for the purposes we collected it, except when another compatible purpose arises. We will inform you if we need to use your data for an unrelated purpose.

6. Data Disclosure

We may share your personal data with various parties, including:

  • Third-party employers using our platform for candidate selection.
  • Service providers offering IT, software, and system administration services.
  • Professional advisers such as lawyers, bankers, auditors, and insurers.
  • Authorities or regulators when required by law.
  • Third parties involved in business transactions like acquisitions or mergers.

7. International Transfers

Some of our service providers and employers are based outside the EU, resulting in international data transfers. We ensure data protection through appropriate safeguards.

We will only transfer your personal data to countries recognised for offering an adequate level of protection for it.

8. Data Security

We implement security measures to prevent unauthorized access, use, or disclosure of your personal data. Access to your data is restricted to authorized personnel, subject to confidentiality obligations.

We have protocols to handle suspected personal data breaches and will notify you and relevant regulators as required by law.

9. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected. Retention periods are determined based on various factors, including legal, regulatory, and operational requirements.

In some instances, we anonymize your data for research or statistical purposes, allowing indefinite use without further notice.

10. Children’s Privacy

Our service is not intended for individuals under the age of 18 (“Minors”).

We do not intentionally gather personal information from anyone under the age of 18. If you are a parent or guardian and discover that your child has provided us with Personal Data, please get in touch with us. If we learn that we have unknowingly collected Personal Data from Minors without parental consent, we will take immediate action to delete that information from our servers.

11. Your data protection rights

Under data protection laws, you have certain rights regarding your personal data. These rights include:

  • Access to your personal data.
  • Correction of your personal data.
  • Erasure of your personal data.
  • Objecting to processing of your personal data.
  • Restricting processing of your personal data.
  • Data portability.
  • Withdrawing consent.

No fees are usually required to exercise these rights, unless requests are unfounded, repetitive, or excessive. We may need to verify your identity to ensure data security and compliance.

Response timeframe

We aim to respond to legitimate requests in one month. In some instances, especially if the request is intricate or multiple requests have been submitted, our response time may exceed one month. Should this occur, we will inform you promptly and provide regular updates.

Let's find your next thing

Try our platform for free

Join our waiting list