imng.meBack to Home

Privacy Policy

Last updated: January 23, 2025

Note: imng.me is currently in early access (MVP). Some privacy, security, and feature controls are still under development.

At imng.me, we believe your personal thoughts and memories deserve the highest level of privacy and protection. This Privacy Policy explains how we collect, use, protect, and share your personal information when you use our journey documentation platform.

We are committed to transparency and your rights under the General Data Protection Regulation (GDPR) and other applicable privacy laws.

Table of Contents

  1. 1. Data Controller
  2. 2. Information We Collect
  3. 3. How We Use Your Data
  4. 4. Legal Basis for Processing
  5. 5. Data Sharing and Third Parties
  6. 6. Data Retention
  7. 7. Your Rights
  8. 8. Data Security
  9. 9. International Data Transfers
  10. 10. Cookies and Tracking
  11. 11. Contact Information

1. Data Controller

imng.me is the data controller responsible for your personal information. You can contact us at:

Email: privacy@imng.me
Data Protection Officer: dpo@imng.me
Jurisdiction: Washington State, United States of America

2. Information We Collect

Account Information

  • Email address (for account creation and authentication)
  • Username (for your public profile and journey URLs)
  • Profile information you choose to provide

Content Information

  • Entry content and reflections
  • Journey titles, descriptions, and privacy settings
  • Images you upload to your entries
  • AI-generated images created from your content
  • Entry dates and metadata

Technical Information

  • IP address and location data
  • Browser type and version
  • Device information
  • Usage patterns and feature interactions
  • Error logs and performance data

3. How We Use Your Data

We use your personal information for the following purposes:

Service Delivery

  • Providing and maintaining your journey documentation platform
  • Authenticating your identity and securing your account
  • Storing and organizing your journey content
  • Generating AI-enhanced images for your entries
  • Enabling privacy controls and sharing features

Communication

  • Sending essential service notifications
  • Providing customer support
  • Notifying you of policy changes

Platform Improvement

  • Analyzing usage patterns to improve features
  • Monitoring system performance and security
  • Developing new features and capabilities

5. Data Sharing and Third Parties

Service Providers

We work with trusted third-party service providers who help us deliver our services:

  • Supabase: Database hosting, authentication, and file storage
  • Stability AI: AI image generation services
  • Render: Application hosting and deployment

Public Information

When you choose to make a journey public, the following information becomes accessible to others:

  • Your username and public profile information
  • Published entries in public journeys
  • Images associated with published entries

Legal Requirements

We may disclose your information if required by law, court order, or to protect our rights and safety.

6. Data Retention

  • Active Accounts: We retain your data while your account is active and for legitimate business purposes
  • Deleted Content: Soft-deleted content is retained for 30 days for recovery purposes
  • Account Deletion: Upon account deletion, we permanently remove your data within 90 days
  • Legal Requirements: Some data may be retained longer to comply with legal obligations

7. Your Rights

Under GDPR and other privacy laws, you have the following rights:

Right to Access (Article 15)

Request a copy of all personal data we hold about you

Right to Rectification (Article 16)

Correct any inaccurate or incomplete personal data

Right to Erasure (Article 17)

Request deletion of your personal data and account

Right to Data Portability (Article 20)

Export your data in a structured, machine-readable format

Right to Object (Article 21)

Object to processing based on legitimate interests

Note: Data export and account deletion functionality will be available through your account settings. For assistance with any privacy rights, contact us at privacy@imng.me.

8. Data Security

We implement industry-standard security measures to protect your personal information:

  • Encryption of data in transit and at rest
  • Regular security audits and penetration testing
  • Access controls and authentication systems
  • Secure hosting infrastructure with Supabase
  • Employee training on data protection practices

9. International Data Transfers

Your data may be transferred to and processed in countries outside your residence, including the United States. We ensure appropriate safeguards are in place, including:

  • Adequacy decisions by the European Commission
  • Standard Contractual Clauses with service providers
  • Appropriate technical and organizational measures

10. Cookies and Tracking

We use cookies and similar technologies for:

  • Essential Cookies: Authentication and session management
  • Analytics Cookies: Understanding platform usage (with your consent)
  • Performance Cookies: Monitoring system performance and errors

You can control cookie preferences through your browser settings.

11. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Email: privacy@imng.me

Data Protection Officer: dpo@imng.me

Jurisdiction: Washington State, United States of America

You also have the right to lodge a complaint with your local data protection authority if you believe your privacy rights have been violated.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email and by posting the updated policy on our website. Your continued use of our services after such changes constitutes acceptance of the updated policy.

This Privacy Policy should be read in conjunction with our Terms of Service.