MindSpringAI
Get Started
Privacy & Security

Privacy Policy

Your privacy is fundamental to our mission. Learn how we protect, use, and respect your personal information.

Last updated: Recently

1. Introduction and Scope

This Privacy Policy explains how MindSpringAI ("we," "us," or "our") collects, uses, processes, and protects your personal information when you use our AI-powered personal growth platform.

This policy applies to all users of our website, mobile applications, and related services. By using MindSpringAI, you consent to the data practices described in this policy.

Key Privacy Principles

  • • Transparency in all data practices
  • • Minimal data collection and purpose limitation
  • • Strong security and encryption standards
  • • User control and data portability
  • • No sale of personal information
  • • Regular privacy audits and assessments
  • • Compliance with global privacy regulations
  • • Prompt breach notification procedures

2. Information We Collect

We collect information to provide, improve, and personalize our AI-powered services. The information we collect falls into several categories:

Account Information
  • • Full name and email address
  • • Profile picture (optional)
  • • Account preferences and settings
  • • Subscription and billing information
  • • Communication preferences
Learning Data
  • • Learning goals and objectives
  • • Skill assessments and progress
  • • Course completions and achievements
  • • Study habits and patterns
  • • AI-generated recommendations
Usage Information
  • • Platform interaction patterns
  • • Feature usage and engagement
  • • Session duration and frequency
  • • Device and browser information
  • • Performance and error logs
Technical Data
  • • IP address and location (city-level)
  • • Cookies and tracking technologies
  • • Referral sources and UTM parameters
  • • Network and connection information
  • • Security and fraud prevention data

3. How We Use Your Information

We use your information for the following purposes:

Core Services
  • • Provide personalized AI learning recommendations
  • • Create and update learning roadmaps
  • • Track progress and habits
  • • Generate insights and analytics
Platform Improvement
  • • Analyze usage patterns and trends
  • • Improve AI algorithms and accuracy
  • • Develop new features and services
  • • Optimize platform performance
Communication
  • • Send progress updates and reminders
  • • Provide customer support
  • • Share platform updates and news
  • • Send marketing communications (with consent)
Security & Legal
  • • Ensure platform security and integrity
  • • Prevent fraud and abuse
  • • Comply with legal obligations
  • • Protect our rights and interests

4. Information Sharing and Disclosure

4.1 Limited Sharing Scenarios

We may share your information only in the following specific circumstances:

Service Providers

We work with trusted third-party service providers who help us operate our platform:

  • • Cloud hosting and infrastructure (AWS, Google Cloud)
  • • Payment processing (Stripe, PayPal)
  • • Email and communication services
  • • Analytics and monitoring tools
  • • Customer support platforms
Legal Requirements

We may disclose information when required by law or to protect our rights:

  • • Compliance with legal obligations
  • • Response to valid legal requests
  • • Protection of our rights and property
  • • Prevention of fraud or illegal activities
  • • Emergency situations involving safety

4.2 Data Processing Agreements

All service providers who process your data on our behalf are bound by strict data processing agreements that require them to:

  • • Process data only for specified purposes and under our instructions
  • • Implement appropriate security measures to protect your information
  • • Not use your data for their own purposes or share it with others
  • • Delete or return data when the service relationship ends
  • • Comply with applicable privacy laws and regulations

5. Data Security

We implement industry-standard security measures to protect your personal information:

Technical Safeguards

  • • AES-256 encryption for data at rest
  • • TLS 1.3 encryption for data in transit
  • • Regular security audits and penetration testing
  • • Secure cloud infrastructure with AWS/Google Cloud

Organizational Measures

  • • Role-based access controls
  • • Employee background checks and training
  • • Incident response and breach notification procedures
  • • Regular security awareness training

6. Your Privacy Rights

You have comprehensive rights regarding your personal information:

Access & Portability

  • • View all personal data we hold
  • • Download your data in JSON format
  • • Request data processing history

Control & Correction

  • • Update or correct your information
  • • Delete your account and data
  • • Restrict certain processing activities

Communication Preferences

  • • Opt-out of marketing emails
  • • Control notification settings
  • • Manage cookie preferences

Legal Rights

  • • Object to data processing
  • • File complaints with authorities
  • • Request human review of AI decisions

7. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience and analyze platform usage:

Essential Cookies

Required for basic platform functionality, security, and user authentication.

Analytics Cookies

Help us understand how users interact with our platform to improve performance.

Preference Cookies

Remember your settings and preferences for a personalized experience.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including Standard Contractual Clauses and adequacy decisions, to protect your data during international transfers.

9. Data Retention

We retain your personal information only as long as necessary for the purposes outlined in this policy:

  • Account Data: Until you delete your account, plus a reasonable period for recovery
  • Learning Progress: Until account deletion or extended period of inactivity
  • Communication Records: Reasonable period for support purposes
  • Legal/Security Data: As required by law or for legitimate interests

10. Children's Privacy

We are committed to protecting children's privacy and comply with applicable children's privacy laws, including COPPA in the United States and similar regulations worldwide.

Our Children's Privacy Commitments

  • • Age verification during account creation
  • • Immediate deletion of underage accounts
  • • No targeted advertising to minors
  • • Enhanced security for educational accounts
  • • Parental notification and consent processes
  • • Limited data collection for educational purposes
  • • Regular compliance audits and training
  • • Clear reporting mechanisms for violations

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of material changes by email and through our platform. The "Last updated" date at the top indicates when the policy was last revised.

12. Contact Information and Support

We're committed to addressing your privacy questions and concerns promptly and thoroughly. Multiple contact options are available:

Privacy Team

Email: privacy@mindspringai.net

Response Time: Promptly

Languages: English, Spanish, French, German

Specializes in: Privacy rights, data requests, policy questions

Data Protection Officer

Email: dpo@mindspringai.net

Response Time: Reasonable timeframe

Address: San Francisco, CA

Specializes in: GDPR compliance, regulatory matters

Security Team

Email: security@mindspringai.net

Response Time: Promptly

Emergency: Immediate response for breaches

Specializes in: Security incidents, vulnerability reports

General Support

Email: support@mindspringai.net

Live Chat: Available regularly

Phone: Available upon request

Specializes in: Account issues, technical support

12.1 Regulatory Contacts

If you're not satisfied with our response to your privacy concerns, you have the right to contact relevant supervisory authorities:

European Union

Contact your local Data Protection Authority or the European Data Protection Board

United States

Federal Trade Commission (FTC) or relevant state attorney general's office

Other Regions

Contact your local privacy or data protection regulator