Privacy Policy

1. Information We Collect

We collect information in three main ways: information you provide directly, information we collect automatically, and information from third-party services.

1. 1.1 Information You Provide to Us

   • Account Registration: When you create an account, we collect your name, email address, and password.
   • Subscription & Payments: If you subscribe to our paid plan, we collect billing details via our payment processor (Stripe). We do not store your payment details.
   • File Uploads: When you upload files for minification or compression, we process them temporarily and delete them after processing.
   • Support Requests: If you contact us, we collect your email address, messages, and attachments.

2. 1.2 Information We Collect Automatically

   When you use our Service, we automatically collect IP addresses, browser types, operating system details, and device identifiers to maintain security and improve performance.

   We also use cookies, check our cookie policy.

3. 1.3 Information from Third Parties

   Payment-related details, such as successful transactions, are received from Stripe for verification purposes, but we do not store sensitive financial data.

2. How We Use Your Information

We use your data to:

• Provide and maintain the Service.
• Authenticate users and manage accounts.
• Process payments for premium plans.
• Monitor and prevent fraudulent activities.
• Analyze usage patterns to improve user experience.
• Respond to customer support requests.
• Comply with legal obligations.

We do not sell your data or use it for advertising purposes.

3. Data Retention & Deletion

We retain personal data only for as long as necessary to provide our Service and comply with legal obligations. Uploaded files are deleted immediately after processing, while processed files remain available for one hour to allow users to download them before being permanently deleted.

Account-related information is retained until you delete your account, at which point we remove your profile details, API keys, and associated data.

Payment records must be retained for legal and tax compliance for up to seven years, while security logs (such as IP addresses) are stored for 90 days before automatic deletion.

1. 3.1 Requesting Data Deletion

   • You can delete your account anytime from your profile settings.
   • Upon deletion, we remove your account details, API keys, and personal data as well as expiring any active subscription.
   • Transaction data may be retained for legal reasons.

4. Data Sharing & Disclosure

We do not sell or trade your personal data. Additionally, any files uploaded by users are never viewed, accessed, or shared—not by us, nor by any third party. All file processing is automated, and files are deleted immediately after processing or within the specified retention period.

However, in some cases, we may share certain information:

• With service providers such as Stripe for payment processing.
• With hosting providers to ensure reliable service performance.
• With legal authorities if required by law or to prevent fraud and abuse.

All third-party providers are GDPR and CCPA compliant and follow strict data protection guidelines.

5. Your Rights & Choices

1. 5.1 GDPR (For Users in the EU & EEA)

   Under the General Data Protection Regulation (GDPR), you have the right to:

   • Access your data and receive a copy.
   • Request corrections to inaccurate or incomplete data.
   • Request deletion of your personal information.
   • Restrict processing in certain circumstances.
   • Object to data processing, particularly for analytics.
   • Withdraw consent at any time for optional data processing.

2. 5.2 CCPA (For California Users)

   California residents have the right to:

   • Know what personal information we collect about them.
   • Request deletion of personal data.
   • Opt out of any sale of personal data (we do not sell data).
   • Not be discriminated against for exercising their privacy rights.

3. 5.3 Other Regional Privacy Rights

   Users in the UK, Brazil (LGPD), and other regions have similar rights to GDPR, including the ability to access, modify, or delete personal data.

To exercise any of these rights, contact us at support@minimo.one.

6. Security Measures

We take strong security precautions to protect your data:

• Encryption: All data is encrypted during transmission and at rest.
• Access Controls: Only authorized personnel can access sensitive data.
• Security Monitoring: We regularly monitor our systems for potential vulnerabilities.

While we strive to protect your information, no system is completely secure, so we encourage you to use a strong password and enable additional security measures where possible.

7. Third-Party Services

• Payments are securely processed through Stripe. Their Privacy Policy applies to all transactions.
• Our Service may contain links to third-party websites, but we are not responsible for their privacy practices.

8. Children's Privacy

Minimo is not intended for children under 13 (or 16 in some jurisdictions). We do not knowingly collect data from minors. If we learn that a child’s information has been collected, we will delete it immediately.

9. International Data Transfers

We store and process data on servers and distributed systems located within Europe and USA. Any data transfers outside the European Economic Area (EEA) are conducted in compliance with GDPR using safeguards such as standard contractual clauses or equivalent mechanisms.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If there are significant changes, we will notify you via email or post an announcement on our website. The “Last Updated” date at the top of this page reflects the most recent changes.

11. Contact Us

If you have any privacy-related questions or requests, contact us!