MindexMindex
Legal
Legal NoticePrivacy Notice (EU)Terms & ConditionsPrivacy Policy
Sign In

Privacy Policy

Privacy Policy (Account Creation)

How Mindex handles account registration, sign-in, and profile data.

Last updated: 28 Feb 2025 · Version 2025-03

1. Introduction
This Privacy Policy explains how pinedapps processes personal data when you create an account, sign in, and maintain your profile. It supplements our general privacy notice and focuses on registration, authentication, onboarding, and account security.

2. Data Controller & Contact
pinedapps (Owner: Diego Felipe Pineda Leiva)
c/o MDC Management#4996
Welserstraße 3
87463 Dietmannsried, Germany
Email: privacy@pinedapps.de
Data Protection Officer: dpo@pinedapps.de

3. Personal data we collect for accounts

  • Identification data: name, display name, locale, and optional organisation details.
  • Contact data: email address and optional support or billing contact details.
  • Authentication data: password hash, OAuth provider details, MFA artifacts, session and device identifiers.
  • Technical data: IP address, timestamps, referrer, browser, and operating system metadata.
  • Optional onboarding data: intended use case, workspace preferences, and consent choices.

4. Purpose & legal basis
We process this data to create accounts, provide secure sign-in, prevent abuse, deliver important product or legal notices, and comply with statutory obligations. Legal bases are Art. 6(1)(b), (c), and (f) GDPR. Optional marketing emails or beta invitations rely on consent under Art. 6(1)(a) GDPR.

5. Processors & international transfers
We use processors such as Firebase/Google Cloud for authentication and hosting, Stripe for billing, and support platforms such as Zendesk or Intercom. International transfers only occur with appropriate safeguards such as EU Standard Contractual Clauses and supplementary technical measures. We do not sell personal data.

6. Retention
Account data is stored while your account remains active. After account deletion, we typically anonymise usage logs within 30 days and remove profile data within 90 days unless legal retention duties require a longer period.

7. Your rights
Depending on your jurisdiction, you may have rights to access, rectify, erase, restrict, object, port your data, and withdraw consent. EU/EEA users may also lodge complaints with their supervisory authority. Please send requests to privacy@pinedapps.de.

8. Security
We protect account data with TLS encryption, secure authentication services, role-based access controls, security event logging, and continuous monitoring.

9. Updates
We notify users about material changes to this Privacy Policy at least 30 days before the new version takes effect by email or in-app notice.

Legal NoticePrivacy Notice (EU)Terms & ConditionsPrivacy Policy