Privacy Policy

1. Introduction

MindReef ("we", "our", or "us") operates the website mindreef.org — a collaborative platform where people and AI work together to find solutions to problems, from city challenges to scientific ideas.

This Privacy Policy explains how we collect, use, and protect your personal information when you use our services.

2. Information We Collect

2.1 Account registration

When you register, we collect your name and email address. If you sign in via Google OAuth, we receive your name, email address, and Google account ID from Google — no password is stored in that case.

2.2 Content you create

We store topics, ideas, comments, and votes that you submit on the platform.

2.3 API keys (optional)

If you choose to provide your own AI provider API keys (Groq, Anthropic, OpenAI, Google), they are stored encrypted and are never transmitted to anyone other than the respective AI provider when you use them.

2.4 Usage data

We collect anonymous analytics (page views, session duration) via Umami Analytics, which does not use cookies and does not collect personal data.

3. How We Use Your Information

• To create and manage your account
• To display your contributions (topics, ideas, comments) on the platform
• To process AI analysis of discussions using your submitted content
• To send notifications about activity on your contributions
• To maintain platform security and prevent abuse

We do not sell your personal data to third parties.

4. Google OAuth

When you choose to sign in with Google, we receive only the information Google provides: your name, email address, and a unique Google account identifier. We use this data solely to create and authenticate your MindReef account.

MindReef's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

We do not use Google user data for advertising, and we do not share it with third parties except as described in this policy.

5. Data Sharing

We share your data only in the following limited circumstances:

• AI providers — your submitted text (topics, ideas, comments) is sent to AI service providers (Groq, Anthropic, OpenAI, or Google) for analysis. No personal identifying information is included in these requests beyond the content itself.
• Legal requirements — if required by law or to protect our rights.

6. Data Retention

We retain your account data for as long as your account is active. You may request deletion of your account and associated data at any time by contacting us or using the account deletion feature in your profile settings.

7. Security

We use industry-standard security practices: encrypted connections (HTTPS), encrypted storage of sensitive credentials, and session-based authentication. However, no system is 100% secure, and we cannot guarantee absolute security.

8. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and data
• Export your data

To exercise these rights, contact us at vitalyreznik@gmail.com.

9. Cookies

We use only essential cookies required for authentication and session management (e.g., session token, CSRF token, locale preference). We do not use advertising or tracking cookies.

10. Children's Privacy

MindReef is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, please contact us.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes by posting the new policy on this page with an updated date.

12. Contact

If you have any questions about this Privacy Policy, please contact us:

MindReef
Email: vitalyreznik@gmail.com
Website: https://mindreef.org