Privacy Policy
Last updated: 9 July 2026
Data Controller
The data controller is the operator of the MyMiniScore service (myminiscore.com).
Data enquiries: privacy@myminiscore.com
Introduction
This Privacy Policy explains how MyMiniScore ("we", "our", or "us") collects, uses, processes, and protects your personal data when you use our miniature painting analysis service. We are committed to protecting your privacy and ensuring transparency in our data processing practices.
Legal Basis for Processing
We process your personal data based on the following legal grounds under GDPR:
- Your consent for photo analysis and optional marketing communications (Art. 6(1)(a) GDPR)
- Performance of our service contract with you (Art. 6(1)(b) GDPR)
- Our legitimate interests in improving our services and ensuring security (Art. 6(1)(f) GDPR)
- Compliance with legal obligations (Art. 6(1)(c) GDPR)
What Personal Data We Collect
We collect and process the following categories of personal data:
- Uploaded miniature photos and associated metadata
- AI analysis results and scores
- Account information (when you create an account)
- Technical data including IP address, browser information, device identifiers
- Website usage analytics and interaction data
- Communication records when you contact us
How We Use Your Personal Data
We use your personal data for the following purposes:
- Providing our AI-powered miniature analysis service
- Improving our AI models and analysis accuracy
- Enabling result sharing through public links (with your consent)
- Providing customer support and responding to inquiries
- Ensuring service security and preventing abuse
- Complying with legal obligations and protecting our rights
Data Sharing and Disclosure
We may share your personal data with the following parties:
- Trusted service providers (Supabase for data storage, Vercel for hosting)
- Law enforcement or regulatory authorities when required by law
- In case of merger, acquisition, or business transfer
We do not sell your personal data to third parties.
Data Storage and Security
Your data is securely stored on servers provided by Supabase, located in the United States.
We implement industry-standard security measures including encryption, access controls, and regular security assessments.
We keep account data for as long as your account exists. After you delete your account, we remove your data and uploaded photos within 30 days, unless longer retention is required by law (e.g. accounting). Analytics data and technical logs are kept for up to 14 months, and newsletter data until you withdraw consent.
International Data Transfers
Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure adequate protection through appropriate safeguards such as Standard Contractual Clauses.
Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience:
- Essential cookies for website functionality
- Analytics cookies (Microsoft Clarity) for understanding user behavior
- Preference cookies to remember your settings
You can manage cookie preferences through your browser settings or our cookie banner.
Your Rights Under GDPR
As a data subject, you have the following rights:
- Right to access your personal data
- Right to rectify inaccurate personal data
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to object to processing
- Right to withdraw consent
To exercise these rights, contact us at privacy@myminiscore.com
Protection of Minors
Our service is not intended for children under 16. We do not knowingly collect personal data from children under 16 without parental consent.
Changes to This Privacy Policy
We may update this Privacy Policy periodically. We will notify you of significant changes through our website or by email.
Contact Information
For privacy-related questions or to exercise your rights, please contact us:
Email: privacy@myminiscore.com
Supervisory Authority
You have the right to lodge a complaint with a supervisory authority. In Poland, this is the Personal Data Protection Office (UODO).
Newsletter Subscription
We offer an optional newsletter to keep you informed about service updates, painting tips, and community news.
- Subscribing to our newsletter is completely voluntary and requires your explicit consent
- We collect your name, email address, and language preference to deliver the newsletter
- We send the newsletter at most once per week
- You can unsubscribe at any time by clicking the "Unsubscribe" link in any email
- We never share your email address with third parties for marketing purposes
- We use Resend for email delivery and Kit (formerly ConvertKit) for subscriber management. Both processors handle data in compliance with GDPR
- We use double opt-in - after signing up you will receive a confirmation email with a link to verify your subscription
- Your data is stored for the duration of your subscription. After unsubscribing, we delete it within 30 days
Your International Rights
Depending on your location, you may have additional rights:
European Union (GDPR)
EU residents have full GDPR rights including access, rectification, erasure, restriction, portability, and objection.
California (CCPA/CPRA)
California residents have the right to know, delete, opt-out of sales, and non-discrimination.
Brazil (LGPD)
Brazilian residents have rights to confirmation, access, correction, anonymization, and portability.
Canada (PIPEDA)
Canadian residents have the right to access personal information, challenge its accuracy, and withdraw consent.
South Africa (POPIA)
South African residents have the right to access, correct, and delete personal information.
Japan (APPI)
Japanese residents have the right to disclosure, correction, suspension of use, and deletion of personal data.
Australia (Privacy Act)
Australian residents have the right to access and correct their personal information.
United Kingdom (UK GDPR)
UK residents have rights similar to GDPR including access, rectification, erasure, and portability.
To exercise these rights, contact us at privacy@myminiscore.com with your location.