Privacy Policy

Last updated: November 2025

We collect as little as possible, sell nothing, and respect your right to disappear. Here's the breakdown.

What We Collect

To generate your Bazi chart and readings, we ask for:

  • Birth date (year, month, day)
  • Birth time (hour, minute) — optional but recommended for accuracy
  • Birth location (city-level, not GPS-precise)
  • Your first name (for personalization)
  • Email address — only if you create an account

For analytics, we collect:

  • Page views and time on page (anonymized)
  • Device type, browser, country (for performance optimization)
  • Crash logs (no personal info attached)

What We DO NOT Collect

  • ❌ Government ID numbers
  • ❌ Phone numbers
  • ❌ Precise GPS location
  • ❌ Browsing history outside Mima
  • ❌ Photos or contacts
  • ❌ Information about other people without their consent
  • ❌ Anything we don't actually need

How We Use Your Data

Your information is used only to:

  • Generate your Bazi chart and AI-powered readings
  • Improve our AI models in aggregate (never tied to you personally)
  • Send account-related emails (only if you have an account)
  • Detect and prevent abuse of our service

We never sell your data. Ever.

How We Protect It

  • All data encrypted in transit via HTTPS
  • Birth information stored encrypted at rest (Supabase Postgres)
  • AI API calls use anonymized identifiers — your name and email are never sent to AI providers
  • Access to your data is restricted to the founders for support purposes only

Third Parties

To run Mima, we use these services:

ServiceWhat it doesData shared
SupabaseDatabase & authenticationEncrypted birth info, email
DeepSeek / OpenAIAI reading generationAnonymized birth chart only
VercelWeb hostingIP address (standard server logs)
CloudflareDNS & securityIP address (standard DNS)

Each has its own privacy policy. We selected them for their privacy standards.

Your Rights

You can always:

  • Export your data: email hello@ezmima.com with the subject "Export my data" and we'll send you everything we have within 30 days
  • Delete your account: email hello@ezmima.com with the subject "Delete my account" — we'll process within 30 days
  • Correct your data: email us with the subject "Correct my data"
  • Opt out of analytics: see the disclaimer banner

If you're in the EU (GDPR) or California (CCPA), you have additional rights under those laws. Same email works.

Children

Mima is intended for users 13 years or older.

We do not knowingly collect personal information from children under 13. We do not target advertising to children. We do not have features designed to be appealing primarily to children under 13.

If you are a parent or guardian and believe your child under 13 has provided us information, please contact us immediately at hello@ezmima.com. We will:

  • Verify the request
  • Delete all data associated with the account within 30 days
  • Provide confirmation when complete

We comply with the U.S. Children's Online Privacy Protection Act (COPPA).

Cookies

We use minimal cookies:

  • Session cookie for authentication (required)
  • Consent preference for the disclaimer banner (stored only in your browser via localStorage)

No third-party tracking cookies. No advertising pixels. No fingerprinting.

Data Retention

  • Active accounts: data kept as long as your account exists
  • Inactive accounts: deleted after 24 months of inactivity (we'll email you first)
  • Deletion requests: processed within 30 days
  • Backups: purged within 90 days after deletion

International Users

Mima's technical infrastructure (servers, database, AI services) is located in the United States. By using Mima, you consent to your data being processed there.

We comply with applicable data protection laws including:

  • GDPR (European Union)
  • CCPA / CPRA (California)
  • PIPL (China — limited compliance for cross-border transfers; we do not actively serve Mainland China users)

If you have specific questions about how your data is handled in your jurisdiction, please email privacy@ezmima.com.

Changes

If we change this policy in any material way, we'll notify you via:

  • Email (if you have an account)
  • An in-app banner (you'll see it next time you visit)

We won't bury changes in fine print.

Contact

  • Privacy questions: privacy@ezmima.com
  • Data requests: privacy@ezmima.com
  • Everything else: hello@ezmima.com

Your code. Your data. Your choice.