Privacy Policy

Last updated: May 2026

This Privacy Policy applies to users in the United States, European Union, United Kingdom, and other regions where MindMirror is available.

1. Who We Are

MindMirror is a private decision intelligence and reflection system designed to help users observe patterns in their thinking, decisions, reflections, and personal entries. This Privacy Policy explains how MindMirror collects, uses, stores, protects, discloses, and processes personal information when you visit our website, create an account, or use the MindMirror service.

For privacy-related questions or requests, contact us at: support@mindmirror.care .

2. Important Nature of the Service

MindMirror may process deeply personal reflection data, including journal-style entries, decision notes, emotional context, voice-related content, and AI-generated observations. MindMirror is not a medical, therapeutic, legal, financial, or emergency service. AI-generated outputs are informational and reflective only and should not be treated as professional advice, diagnosis, treatment, or instruction.

3. Personal Information We Collect

We collect personal information you provide directly when you use MindMirror. This may include:

  • Account information, such as username, email address, password credentials, and account settings.
  • Reflection content, such as journal entries, decision notes, summaries, bookmarks, emotional context, and saved insights.
  • Voice-related information, such as audio recordings, transcripts, or voice reflection history, where voice features are enabled.
  • Feedback and support information, such as messages, bug reports, contact requests, or privacy requests.
  • Subscription-related information, such as plan status, billing status, payment provider identifiers, and transaction metadata.

We may also collect technical and usage information needed to operate and secure the service, including IP address, browser type, device information, operating system, timestamps, login activity, session data, security logs, error logs, feature usage, and approximate location derived from technical data.

4. Sensitive Personal Information

Your entries may contain information that you choose to write about your emotions, relationships, beliefs, health, work, grief, family, goals, or other sensitive life areas. MindMirror does not require you to enter sensitive information, but the nature of the service means you may choose to provide it. We process this information only to provide the service, protect the service, comply with legal obligations, and support user-controlled features.

We do not use sensitive personal information to infer characteristics for targeted advertising, and we do not sell your journal entries, reflections, voice transcripts, decision notes, or private account content.

5. How We Use Personal Information

We use personal information to provide, maintain, secure, and improve MindMirror. This includes:

  • Creating and managing user accounts.
  • Authenticating users and protecting accounts from unauthorized access.
  • Saving and displaying reflections, decisions, notes, bookmarks, and history.
  • Generating private AI-powered observations, summaries, and pattern insights.
  • Operating dashboards, subscription access, limits, and account settings.
  • Providing support, responding to requests, and communicating service-related information.
  • Monitoring security, preventing fraud, debugging errors, and maintaining service reliability.
  • Complying with legal, accounting, tax, security, and regulatory obligations.

6. Legal Bases for EU, EEA, and UK Users

If you are located in the European Economic Area, United Kingdom, or another region with similar privacy laws, we rely on one or more legal bases to process your personal data:

  • Contract: to create your account, provide the service, save your content, manage subscriptions, and deliver requested features.
  • Consent: where you choose to use optional features or where consent is required by law.
  • Legitimate interests: to secure the service, prevent misuse, maintain reliability, troubleshoot issues, and understand basic product performance.
  • Legal obligations: to comply with tax, accounting, fraud prevention, security, regulatory, or legal requirements.

7. AI Processing

MindMirror may use AI systems to generate private observations, summaries, pattern reflections, emotional context, and decision-related insights from information you provide. These outputs are designed to help you observe patterns in your own entries. They are not professional advice and are not guaranteed to be accurate, complete, or appropriate for every situation.

We do not use your private reflections, journal entries, voice transcripts, or decision notes to train our own public AI models. Where third-party AI providers are used, we aim to use business/API services that process data to provide requested functionality under provider data-processing, privacy, and security terms. Provider practices may vary and may be updated over time.

8. Voice and Audio Features

If you use voice features, MindMirror may process audio recordings, transcripts, summaries, or related metadata to provide transcription, reflection history, AI observations, playback, or other voice-related functionality. Voice features are optional and depend on the features available in your account.

You should avoid recording information about other people unless you have the right or permission to do so.

9. Payments and Subscriptions

If MindMirror offers paid subscriptions, payment processing may be handled by a third-party payment provider such as Stripe. MindMirror does not need to store your full payment card number. Payment providers may process payment information, billing details, transaction records, fraud-prevention signals, tax information, and other data required to process payments, prevent fraud, comply with financial laws, and provide payment-related services.

10. Cookies and Similar Technologies

MindMirror may use cookies or similar technologies that are necessary for login, authentication, session management, security, fraud prevention, and core service functionality. If optional analytics, marketing, advertising, or tracking tools are introduced, we will provide appropriate notice and, where required, request consent or provide opt-out choices.

11. How We Disclose Personal Information

We do not sell your private account content. We may disclose limited personal information only where necessary for the following purposes:

  • Service providers: hosting, database, email, security, support, logging, AI processing, payment processing, and infrastructure providers.
  • Legal and safety reasons: to comply with law, legal process, regulatory requests, security obligations, or to protect the rights, safety, and integrity of MindMirror, users, or others.
  • Business transfers: if MindMirror is involved in a merger, acquisition, financing, reorganization, or sale of assets, subject to appropriate confidentiality and privacy protections.
  • With your direction or consent: when you ask us to share information or enable a feature that requires sharing.

12. No Sale or Sharing of Private Content

MindMirror does not sell your journal entries, reflections, voice transcripts, decision notes, or private account content. We also do not share this private content for cross-context behavioral advertising.

We do not currently sell or share personal information as those terms are commonly used under U.S. state privacy laws. If this changes, we will update this Privacy Policy and provide any legally required opt-out mechanism.

13. Data Security

We use technical and organizational measures designed to protect personal information, including secure authentication, access controls, encrypted connections, server-side protections, operational safeguards, audit and error logging, and other measures appropriate to the nature of the service. No digital service can guarantee absolute security, but we work to protect your data against unauthorized access, loss, misuse, alteration, or disclosure.

14. Data Retention

We retain personal information only for as long as reasonably necessary to provide MindMirror, maintain your account, comply with legal obligations, resolve disputes, enforce agreements, prevent fraud, secure the service, and maintain backups or audit records where required.

Your entries and account-related content are generally retained while your account is active, unless you delete them or request deletion where legally available. Some records, such as billing, security, fraud prevention, legal, backup, or system logs, may be retained for a limited period where necessary.

15. Your Privacy Choices

Depending on the features available in your account, you may be able to access, update, delete, export, or manage certain information directly inside MindMirror. You may also contact us to make a privacy request. We may need to verify your identity before completing certain requests.

16. U.S. State Privacy Rights

If you are a resident of a U.S. state with an applicable consumer privacy law, you may have certain rights regarding your personal information, subject to legal limitations. These rights may include:

  • The right to know or access personal information we collect, use, disclose, or process.
  • The right to request correction of inaccurate personal information.
  • The right to request deletion of personal information.
  • The right to receive a portable copy of certain personal information.
  • The right to opt out of sale, sharing, targeted advertising, or certain profiling, where applicable.
  • The right not to be discriminated against for exercising applicable privacy rights.
  • The right to appeal a denied privacy request where applicable state law provides that right.

To exercise these rights, contact us at support@mindmirror.care .

17. California Privacy Notice

This section applies to California residents where the California Consumer Privacy Act, as amended by the California Privacy Rights Act, applies to MindMirror.

Categories of Personal Information

We may collect the following categories of personal information: identifiers; account information; internet or network activity; commercial information related to subscriptions; approximate geolocation derived from technical data; audio information where voice features are used; sensitive personal information you choose to include in reflections; and inferences or AI-generated observations created from your use of MindMirror.

Purposes of Collection

We collect and process these categories to provide the service, operate accounts, secure the platform, process subscriptions, generate user-requested insights, provide support, prevent fraud, debug errors, comply with legal obligations, and improve service reliability.

Sale or Sharing

We do not sell or share your private account content. We do not currently sell or share personal information for cross-context behavioral advertising. If this changes, we will provide legally required notice and opt-out rights.

Sensitive Personal Information

We do not use or disclose sensitive personal information for purposes other than providing MindMirror, securing the service, complying with law, or other purposes permitted by applicable privacy law.

California Rights

California residents may have the right to know, access, correct, delete, obtain a copy of personal information, opt out of sale or sharing, limit certain uses of sensitive personal information where applicable, and not receive discriminatory treatment for exercising privacy rights.

18. GDPR, EEA, and UK Privacy Rights

If you are located in the European Economic Area, United Kingdom, or another region with similar rights, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate or incomplete data.
  • Delete your personal data where legally available.
  • Restrict or object to certain processing.
  • Receive a copy of your data in a portable format.
  • Withdraw consent where processing is based on consent.
  • Lodge a complaint with a data protection authority.

You can exercise these rights through account settings where available or by contacting us at support@mindmirror.care .

19. International Data Transfers

MindMirror may use service providers located outside your country or region, including providers in the United States and Europe. Where personal data is transferred internationally, we aim to use appropriate safeguards where required by law, such as adequacy decisions, standard contractual clauses, data-processing agreements, or equivalent transfer mechanisms.

20. Children and Minors

MindMirror is not intended for children. Users should not create an account or provide personal information if they are below the age required to use online services in their country or region. In the United States, MindMirror is not directed to children under 13. If we become aware that a child has provided personal information without appropriate permission, we may delete the account or data.

21. Third-Party Links and Services

MindMirror may contain links to third-party websites, services, payment pages, or authentication providers. Their privacy practices are governed by their own policies. We encourage you to review those policies before providing information to third parties.

22. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in the service, legal requirements, security practices, third-party providers, or business operations. The “Last updated” date above shows when this Privacy Policy was most recently revised.

23. Contact Us

If you have questions about this Privacy Policy or how MindMirror handles personal information, contact us:

Email: support@mindmirror.care

← Back to Home