Privacy Policy

1. Introduction

This Privacy Policy describes how Minimal ("we," "us," or "our") collects, uses, shares, and protects your personal information when you use our website builder and AI assistant services. We are committed to protecting your privacy and ensuring transparency about our data practices.

By using our services, you agree to the collection and use of information in accordance with this policy. If you do not agree with any part of this policy, please do not use our services.

2. Information We Collect

We collect various types of information to provide and improve our services:

2.1 Personal Information

Information you provide directly to us, including:

• Account Information: Name, email address, password, and profile details when you create an account
• Business Information: Company name, business type, industry sector, and organization details
• Payment Information: Billing address, payment method details (processed securely through third-party payment processors)
• Communication Data: Messages, feedback, support requests, and any other information you provide when contacting us

2.2 Automatic Information

Information collected automatically when you use our services:

• Usage Data: Pages visited, features used, time spent on platform, interaction patterns, and navigation paths
• Device Information: IP address, browser type and version, operating system, device identifiers, and screen resolution
• Log Data: Access times, error logs, performance data, and system activity information
• Analytics Data: User behavior patterns, feature adoption rates, conversion metrics, and service performance indicators
• Referral Data: When end users click on branding elements within the chat widget, we may collect referral information including the source website URL

2.3 Website Content

Content you create and store using our platform, including website designs, text, images, multimedia files, and configuration settings.

2.4 AI Interaction Data

When you or your end users interact with our AI-powered features, we collect:

• Prompts and Inputs: Questions, commands, and content submitted to our AI systems
• AI Responses: The outputs and responses generated by our AI systems
• Conversation History: The context and flow of interactions with the AI assistant
• Feedback Data: Ratings, corrections, and feedback you provide about AI responses
• Usage Patterns: How you interact with AI features, including frequency, timing, and feature usage
• Error Logs: Information about AI errors, failures, or unexpected behaviors

Important: During our beta period, AI interaction data may be reviewed by our team to improve AI accuracy and service quality. We recommend not submitting sensitive personal information, confidential business data, or regulated data (such as health or financial information) to the AI system during beta.

3. How We Use Your Information

We use the collected information for the following purposes:

• Service Delivery: To provide, operate, maintain, and deliver the features and functionality of our services
• Account Management: To create and manage your account, authenticate users, and provide customer support
• Service Improvement: To analyze usage patterns, develop new features, and enhance user experience
• Communication: To send service updates, technical notices, security alerts, and respond to inquiries
• Personalization: To customize content, recommendations, and features based on your preferences and usage
• Security: To detect, prevent, and address technical issues, fraud, and unauthorized activities
• Legal Compliance: To comply with applicable laws, regulations, and legal processes
• Business Operations: To process payments, manage subscriptions, and maintain business records

3.1 AI Training and Improvement

We may use AI interaction data to train, improve, and develop our artificial intelligence and machine learning systems. Specifically:

• Model Training: AI prompts and responses may be used to train and fine-tune our AI models to improve accuracy, relevance, and appropriateness of responses
• Quality Assurance: Our team may review AI interactions to identify errors, improve responses, and ensure quality during the beta period
• Feature Development: Usage patterns and feedback help us develop new AI capabilities and features
• Safety and Compliance: AI data may be analyzed to improve content safety filters and ensure compliance with our acceptable use policies
• Aggregated Analytics: We create anonymized and aggregated datasets from AI interactions for research and service improvement

Opt-Out: If you do not want your AI interaction data used for training purposes, please contact us at privacy@minimal.lat. Note that opting out may limit certain personalization features.

3.2 Third-Party AI Providers

Our services may utilize third-party AI providers and APIs to deliver AI functionality. When using these services:

• Your prompts and inputs may be processed by third-party AI systems
• Third-party providers may have their own data processing and retention practices
• We select providers that meet our privacy and security standards
• Data shared with third-party AI providers is subject to their respective privacy policies

3.3 Branding Links and End User Interactions

Our chat widgets include clickable branding (the Minimal logo and "Powered by Minimal" text) that links to minimal.lat. When end users click these links:

• They are directed to our website where our standard Privacy Policy applies
• We may collect referral data indicating which website the user came from
• Standard analytics cookies may be set based on their cookie preferences on our site
• No personal information is shared between the customer's website and Minimal solely through the branding click

This branding helps users understand who provides the AI chat service and how to learn more about it.

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

• Service Providers: With third-party vendors who perform services on our behalf (hosting, payment processing, analytics, customer support)
• Business Transfers: In connection with mergers, acquisitions, or sale of assets, subject to confidentiality obligations
• Legal Requirements: When required by law, court order, or to protect our rights, property, or safety
• With Your Consent: When you explicitly authorize us to share information with third parties
• Aggregated Data: Anonymized and aggregated data that cannot identify individual users may be shared for research or marketing purposes
• Branding Attribution: When end users interact with branded elements in the chat widget, they may be directed to our website where standard data collection practices apply as described in this policy

5. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

• Active Accounts: Account data and content are retained while your account remains active
• Closed Accounts: Account data is deleted within 90 days of account closure, except where legally required to retain
• Payment Records: Financial transaction records are retained for 7 years to comply with tax and accounting regulations
• Usage Logs: Server logs and analytics data are retained for 24 months for security and service improvement purposes
• Marketing Communications: Contact information for marketing is retained until you opt out or request deletion
• Legal Holds: Data may be retained longer when subject to legal obligations, disputes, or investigations

6. Data Security

We implement security measures to protect your information:

• Encryption: Data is encrypted in transit using TLS and at rest using AWS encryption services (AES-256)
• Infrastructure: Hosted on Amazon Web Services (AWS), which maintains SOC 2, ISO 27001, and other certifications
• Monitoring: Service monitoring via AWS CloudWatch

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security but continuously work to enhance our protective measures.

6.1 Beta Security Considerations

During our beta period, please be aware of the following:

• Security certifications are in progress as we continue to mature our platform
• Security features are continuously being enhanced
• We recommend exercising standard caution with highly sensitive or regulated data
• We are continuously improving security measures based on testing and feedback

If you discover any security vulnerabilities, please report them to security@minimal.lat.

7. Your Rights and Choices

You have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete personal information
• Deletion: Request deletion of your personal information, subject to legal retention requirements
• Portability: Request a machine-readable copy of your data to transfer to another service
• Objection: Object to processing of your information for direct marketing or other purposes
• Restriction: Request restriction of processing under certain circumstances

To exercise these rights, contact us at privacy@minimal.lat. We will respond to requests within 30 days. You also have the right to lodge a complaint with a data protection authority.

8. Cookies and Similar Technologies

We use cookies to enhance your experience and understand how our services are used.

8.1 Types of Cookies

• Essential Cookies: Required for basic site functionality. These are always active and do not require consent.
• Analytics Cookies: Help us understand how visitors use our site (e.g., Google Analytics). These are only set if you accept cookies.

8.2 Your Cookie Choices

When you visit our site, you will see a cookie banner with two options:

• Accept: Enables all cookies, including analytics, to help us improve our services
• Decline: Only essential cookies are used. No analytics or tracking cookies will be set.

You can also control cookies through your browser settings. Note that blocking essential cookies may affect site functionality.

9. International Data Transfers

We operate globally and may transfer your information to countries outside your residence. When we transfer data internationally:

• We ensure adequate safeguards are in place through standard contractual clauses or other approved mechanisms
• We comply with applicable data protection laws and regulations
• We maintain the same level of protection regardless of where data is processed
• Data may be processed in the United States, European Union, or other jurisdictions where our service providers operate

By using our services, you consent to the transfer of your information to countries that may have different data protection laws than your country of residence.

10. Children's Privacy Protection

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

If we discover that we have collected personal information from a child under 16 without parental consent, we will take steps to delete that information promptly. We are committed to complying with the Children's Online Privacy Protection Act (COPPA) and similar regulations worldwide.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes through:

• Email notification to your registered email address
• Prominent notice on our website
• In-app notifications when you log in

Your continued use of our services after changes become effective constitutes acceptance of the updated policy. We encourage you to review this policy periodically. The "Last updated" date at the top indicates when the policy was last revised.

12. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: