Privacy Policy

Last Updated: Dec 3, 2025

1. Introduction

This Privacy Policy explains how Mirror AI Labs, LLC (“MirrorFlow,” “we,” “us,” or “our”) collects, uses, and shares information when you use our website, web application, and related services (collectively, the “Service”).

We are committed to handling your information responsibly and transparently.

By using the Service, you agree to the collection and use of information as described in this Privacy Policy. If you do not agree, please do not use the Service.

2. Who We Are

Mirror AI Labs, LLC

30 N Gould St Ste R

Sheridan, WY 82801

United States

If you have privacy questions, you can contact us at:

support@mirrorflow.ai

3. Information We Collect

We collect three main categories of information:

3.1. Information You Provide Directly

Communications: Emails, support requests, survey responses, or other communications you send us.

  • Account Information: Name, email address, password or authentication credentials, organization name, role, and similar registration details.
  • Billing Information: Payment method details (handled by third-party payment processors such as Stripe), billing address, subscription plan, and transaction records.
  • Content and Prompts: Any text, URLs, notes, or other materials you provide to the Service (for example: search queries, prompts, tags, and narrative topics).

3.2. Information We Collect Automatically

When you use the Service, we may automatically collect:

  • Usage Data:
    • Features you use, pages viewed, timestamps, and actions taken.
    • Log data such as IP address, browser type, operating system, and device information.
  • Cookies and Similar Technologies:
    We use cookies and similar technologies to:
    • Keep you logged in.
    • Remember your preferences.
    • Analyze how the Service is used and improve performance.

You can usually control cookies through your browser settings. If you disable cookies, some features may not function properly.

3.3. Information from Third Parties

We may receive information from:

  • Payment Processors (e.g., Stripe): Confirmation of payments, last four digits of your card, expiration date, and billing status.
  • Analytics and Infrastructure Providers: Aggregated or pseudonymous usage metrics for improving stability and performance.

Publicly Available Sources: For example, when the Service looks up authors or influencers based on publicly available information, as part of the product’s core functionality.

4. How We Use Your Information

We use the information we collect for the following purposes:

  1. To Provide and Operate the Service
    • Authenticate you and manage your account.
    • Process your prompts, content, and configurations.
    • Generate AI-based summaries, rankings, and outputs.
  2. To Improve and Develop the Service
    • Understand usage patterns and performance.
    • Debug, monitor, and enhance reliability and security.
    • Develop new features, workflows, and models.
  3. To Communicate With You
    • Send service-related notices (e.g., billing, account updates, security alerts).
    • Respond to your inquiries and support requests.
    • With your consent where required, send product updates or marketing communications.
  4. To Maintain Security and Prevent Abuse
    • Detect and prevent fraud, abuse, or security incidents.
    • Enforce our Terms of Service and other policies.
  5. To Comply With Legal Obligations
    • Respond to lawful requests and legal process.
    • Maintain records required by applicable law.

We do not sell your personal information.

5. AI Models and Third-Party Processors

MirrorFlow uses cloud infrastructure and AI model providers to process your content and generate outputs. These may include:

  • Cloud hosting providers (e.g., Google Cloud Platform).
  • AI model providers (e.g., via platforms like Vertex AI).
  • Web scraping and data retrieval services.
  • Payment processors and analytics providers.

We take steps to:

  • Use reputable vendors with appropriate security measures.
  • Limit the data shared to what is necessary for the specific function.
  • Where possible and contractually feasible, configure providers not to use your data to train their general models.

However, exact data handling practices may differ by vendor and region. You should not submit highly sensitive personal data (e.g., health, financial account numbers, government IDs) to the Service unless explicitly necessary and with appropriate safeguards.

6. Legal Bases for Processing (EEA/UK Users)

If you are located in the European Economic Area (“EEA”) or the UK, we process your personal data under one or more of the following legal bases:

  • Contract: To provide the Service you requested and fulfill our contractual obligations.
  • Legitimate Interests: To operate, secure, and improve the Service, where these interests are not overridden by your rights.
  • Consent: For certain uses (e.g., optional cookies or marketing), where you have given consent.

Legal Obligation: To comply with applicable laws and regulations.

7. How We Share Information

We may share your information in the following situations:

  1. Service Providers and Vendors
    With third-party companies that help us operate the Service, such as:
    • Hosting, infrastructure, and database providers.
    • AI model and analytics services.
    • Payment processors and billing platforms.
  2. These providers are allowed to use your information only as necessary to provide their services to us.
  3. Business Transfers
    In connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business, we may share or transfer your information. We will make reasonable efforts to ensure the recipient honors this Privacy Policy or a similar standard.
  4. Legal Requirements and Protection
    We may disclose information if we believe it is necessary to:
    • Comply with applicable laws or legal process.
    • Respond to lawful requests by public authorities.
    • Protect the rights, property, or safety of MirrorFlow, our users, or others.
  5. With Your Consent
    We may share information with third parties when you direct us to do so or give explicit consent.

We do not sell personal information.

8. Data Retention

We retain personal information for as long as necessary to:

  • Provide the Service.
  • Comply with our legal obligations.
  • Resolve disputes and enforce our agreements.

We may retain certain aggregated or de-identified information that cannot reasonably be used to identify you.

If you close your account, we may retain limited data where required or permitted by law or for legitimate business purposes (e.g., billing records, security logs).

9. Data Security

We use reasonable technical and organizational safeguards to protect personal information, including:

  • Encrypted connections (HTTPS/TLS) for data in transit.
  • Access controls and authentication mechanisms.
  • Monitoring and logging for unusual activity.

However, no system can be completely secure. We cannot guarantee absolute security of your information.

You are responsible for:

  • Using a strong, unique password for your account.
  • Limiting access to your account and devices.
  • Not sharing your login credentials.

10. International Data Transfers

We are based in the United States and may process information in the U.S. and other countries.

If you access the Service from outside the United States:

  • Your information may be transferred to, stored, and processed in a country that may not provide the same level of data protection as your home jurisdiction.
  • Where required, we implement appropriate safeguards (such as standard contractual clauses) to protect personal data transferred internationally.

11. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information, including:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request correction of inaccurate or incomplete information.
  • Deletion: Request deletion of your personal information, subject to legal and contractual limits.
  • Restriction / Objection: Request that we restrict certain processing or object to processing based on legitimate interests.
  • Portability: Request that we provide your data in a structured, commonly used, machine-readable format where technically feasible.
  • Withdraw Consent: Where processing is based on consent, you may withdraw your consent at any time.

To exercise these rights, contact us at [Insert Privacy Email]. We may need to verify your identity before responding.

You can also:

  • Opt out of marketing emails by using the unsubscribe link in our messages.
  • Adjust cookie settings in your browser or device.

12. Children’s Privacy

The Service is not intended for children under 13, and we do not knowingly collect personal information from children under 13.

If you believe that a child under 13 has provided us with personal information, please contact us, and we will take appropriate steps to delete such information.

13. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices or content of those third parties.

We encourage you to review the privacy policies of any third-party sites or services you visit.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

When we make material changes, we will:

  • Update the “Last Updated” date at the top, and
  • Provide additional notice where required (e.g., in-app or email).

Your continued use of the Service after the effective date of any changes indicates your acceptance of the updated Privacy Policy.

15. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

Mirror AI Labs, LLC

30 N Gould St Ste R

Sheridan, WY 82801

United States

Email: support@mirrorflow.ai

© 2025 Mirrorflow. All rights reserved.
Terms of ServicePrivacy Policy