Mimestream, LLC (“Company”, “we”, “us”, or “our”) is the developer of the Mimestream applications (“Mimestream”, “Apps”, or “App”), our website at https://mimestream.com (“Website”), and our accounts/licensing service at https://accounts.mimestream.com (“Accounts Service”) – collectively known as our “Services”. This privacy policy (“Privacy Policy”) applies to all personal data we collect through our Services. By using our Services, you agree to the terms outlined in this privacy policy.

1. Handling of your email account data

We take the security and privacy of email account data very seriously and have designed our Apps around the privacy and security of your email account data.

Our Apps are designed to run on your device and communicate directly with your email account’s server to synchronize your email data and make modifications at your direction (e.g. sending a message or marking a message as read).

The Apps require access to your email account(s) in order to perform their stated function. When you add an email account to the App, your authentication credentials are stored in your device’s Keychain and cached email content is stored in a local database on your device.

Our Apps do not transmit your email account credentials or your email account data to any hosted services we run.

The App’s use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.

2. Personal information we collect

We collect personal information that you provide to us in order to provide you with relevant functionality or services. The following are examples of the data collected:

Payment and Licensing

When you purchase a license, we utilize a third-party subprocessor (Paddle) to securely process payment information. Although our services never see your full payment details (like your full credit card number), we do receive personal information like your name, email, last 4 of your card number, country, and amount paid in tax and net. This information is stored in order to provide you with the ability to manage your license on our Accounts Service.

In order to automatically activate your license, the app will send a list of the hashed email addresses and hashed domains of every account (and alias) you use in the app to our Accounts Service. If you have entered an email address manually, or if the service finds an eligible license for your hashed address, then the raw email address is sent. When activating with a confirmation code, information about your device is also sent, such as your OS Version, App Version, Device Name, and a hashed unique device identifier. This information is used to show you a list of your active devices and allow you to manage them.

Mailing List

When you subscribe to our mailing list, we collect your name and email address. We do not sell or disclose any portion of our email list to any third parties, with the exception of third-party subprocessers (e.g. AWS) used to manage the list and send emails.

Support, Social Media, and Research Interactions

When handling support requests, we collect your name, email address and any information you provide voluntarily (such as a description of your problem, a copy of a message exhibiting a problem, crash logs, or other diagnostic information). This information is shared with third-party subprocessors (e.g. Google, Front) in order for us to manage and reply to your support inquiries.

When you interact with our social media accounts on sites like Twitter, Mastodon, or LinkedIn, we may collect personal data that you elect to make available through your settings on the social media site, such as the content of a message you post and your profile name.

Occasionally, we may send out surveys to conduct market research. These surveys are handled by a third-party subprocessor (SurveyKing), and are entirely optional. The information you choose to provide may vary depending on the survey.

3. How we use personal data

We use the collected personal data outlined in Section 2 primarily to perform the functions indicated in that section.

We may share personal information with select third-party subprocessors when necessary for them to provide contracted services.

We may additionally use the personal data collected for the following legitimate business interests:

• To administer and protect our business and the Services, prevent fraud, criminal activity, and misuses of our Services.
• To comply with legal obligations and legal process.
• To contact you with important notices, such as communications about critical software updates or changes to our policies. Because this information is important to your interaction with our Services, you may not opt out of receiving these communications.
• To analyze your interactions with our Services to maintain and improve the quality and functionality of our Services, develop our business, and inform our marketing strategy.

4. Data Retention

We retain the information you have provided to us for as long as reasonably necessary for the purposes outlined in this privacy policy, or as required by law, whichever is the longer.

If you have elected to join our mailing list or receive marketing communications from us, we retain your contact information and marketing preferences indefinitely until you opt out of these communications.

If you purchase a license directly from us, we retain data related to your purchase indefinitely in order to authenticate your purchase when you install the App.

If you contact us for support, we retain information about your request indefinitely, to have context for future interactions and to better understand support drivers for our Services.

You may contact us at any time to request removal of your personal data; see the “Your Privacy Rights” section below.

5. Minors

Our Services are not directed to children under the age of 18. By using our Services, you represent that you are at least 18, or that you are the parent or guardian of a minor over the age of 13 and consent to such minor dependent’s use of the Services.

If we become aware that personal information from minors has been collected without parental consent, we will take reasonable measures to promptly delete such data from our records.

If you have reason to believe that a child under the age of 18 has provided personal data to us, please contact us and we will attempt to promptly remove such information.

6. Changes to the Privacy Policy

We may change this Privacy Policy in the future, to improve clarity or to reflect changes in our product or business. When we do, we will post an updated version on this page, including the date that the policy was last updated. By continuing to use our Services, or providing us with personal data, you consent to the revised Privacy Policy.

7. Your Privacy Rights

You are welcome to contact us by email to request that we remove your personal data from our systems, or simply to inquire what personal data we may have stored. We will take reasonable steps to ensure that your request is handled in a timely fashion and in accordance with applicable data protection laws.

If you would like to opt out of marketing and promotional communications, you can do so at any time by clicking on the Unsubscribe link in the emails that we send you. However, we may still communicate with you to send you service-related messages that are relevant to the administration of your account with us.

If you are a customer, and would like to fully delete your account with us (and lose immediate access to your paid license), you may log in to your account at https://accounts.mimestream.com, and choose the “Delete Account” option. This will remove the personal data that we have about you from our Accounts Service. In order to request removal of your personal information by our payment-processing subprocessor (Paddle), you will have to contact them separately.

8. Contacting Us

If you have questions or concerns, you may contact us by email at privacy@mimestream.com.