Back

Privacy Policy

Last updated: 4/12/2026

Data Controller

MyMiniScore

privacy@myminiscore.com

Introduction

This Privacy Policy explains how MyMiniScore ("we", "our", or "us") collects, uses, processes, and protects your personal data when you use our miniature painting analysis service. We are committed to protecting your privacy and ensuring transparency in our data processing practices.

Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

  • Your consent for photo analysis and optional marketing communications (Art. 6(1)(a) GDPR)
  • Performance of our service contract with you (Art. 6(1)(b) GDPR)
  • Our legitimate interests in improving our services and ensuring security (Art. 6(1)(f) GDPR)
  • Compliance with legal obligations (Art. 6(1)(c) GDPR)

What Personal Data We Collect

We collect and process the following categories of personal data:

  • Uploaded miniature photos and associated metadata
  • AI analysis results and scores
  • Account information (when you create an account)
  • Technical data including IP address, browser information, device identifiers
  • Website usage analytics and interaction data
  • Communication records when you contact us

How We Use Your Personal Data

We use your personal data for the following purposes:

  • Providing our AI-powered miniature analysis service
  • Improving our AI models and analysis accuracy
  • Enabling result sharing through public links (with your consent)
  • Providing customer support and responding to inquiries
  • Ensuring service security and preventing abuse
  • Complying with legal obligations and protecting our rights

Data Sharing and Disclosure

We may share your personal data with the following parties:

  • Trusted service providers (Supabase for data storage, Vercel for hosting)
  • Law enforcement or regulatory authorities when required by law
  • In case of merger, acquisition, or business transfer

We do not sell your personal data to third parties.

Data Storage and Security

Your data is securely stored on servers provided by Supabase, located in the United States.

We implement industry-standard security measures including encryption, access controls, and regular security assessments.

We retain your data for as long as necessary to provide our services or as required by law.

International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure adequate protection through appropriate safeguards such as Standard Contractual Clauses.

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

  • Essential cookies for website functionality
  • Analytics cookies (Microsoft Clarity) for understanding user behavior
  • Preference cookies to remember your settings

You can manage cookie preferences through your browser settings or our cookie banner.

Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right to access your personal data
  • Right to rectify inaccurate personal data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent

To exercise these rights, contact us at privacy@myminiscore.com

Protection of Minors

Our service is not intended for children under 16. We do not knowingly collect personal data from children under 16 without parental consent.

Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of significant changes through our website or by email.

Contact Information

For privacy-related questions or to exercise your rights, please contact us:

Email: privacy@myminiscore.com

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority. In Poland, this is the Personal Data Protection Office (UODO).

Newsletter Subscription

We offer an optional newsletter to keep you informed about service updates, painting tips, and community news.

  • Subscribing to our newsletter is completely voluntary and requires your explicit consent
  • We collect your name, email address, and language preference to deliver the newsletter
  • We send the newsletter at most once per week
  • You can unsubscribe at any time by clicking the "Unsubscribe" link in any email
  • We never share your email address with third parties for marketing purposes
  • We use Resend for email delivery and Kit (formerly ConvertKit) for subscriber management. Both processors handle data in compliance with GDPR
  • We use double opt-in - after signing up you will receive a confirmation email with a link to verify your subscription
  • Your data is stored for the duration of your subscription. After unsubscribing, we delete it within 30 days

Your International Rights

Depending on your location, you may have additional rights:

European Union (GDPR)

EU residents have full GDPR rights including access, rectification, erasure, restriction, portability, and objection.

California (CCPA/CPRA)

California residents have the right to know, delete, opt-out of sales, and non-discrimination.

Brazil (LGPD)

Brazilian residents have rights to confirmation, access, correction, anonymization, and portability.

Canada (PIPEDA)

Canadian residents have the right to access personal information, challenge its accuracy, and withdraw consent.

South Africa (POPIA)

South African residents have the right to access, correct, and delete personal information.

Japan (APPI)

Japanese residents have the right to disclosure, correction, suspension of use, and deletion of personal data.

Australia (Privacy Act)

Australian residents have the right to access and correct their personal information.

United Kingdom (UK GDPR)

UK residents have rights similar to GDPR including access, rectification, erasure, and portability.

To exercise these rights, contact us at privacy@myminiscore.com with your location.