Miwa.lol Privacy Policy

We are committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, and safeguard your data when you use our services at Miwa.lol.

Effective Date: July 2, 2025

1. Introduction

This Privacy Policy outlines the collection, use, and protection of personal information collected when you use the services provided by Miwa.lol ("we," "our," or "us") through our platform at https://miwa.lol. By using our services, you agree to the practices described in this policy.

2. Data We Collect

We collect the following types of personal data:

2.1 Account Information

When you create an account on our platform, we collect your email address, username, and password. This information is used to provide you with access to your account and our services.

2.2 User Content

We collect the content you create or upload to our platform, such as assets uploaded, or content created on the platform.

3. Legal Basis for Processing

If you are located in the European Economic Area (EEA), we process your personal data based on one of the following legal grounds:

3.1 Contractual Necessity

We process data necessary to provide you with the services you requested, such as account creation and access.

We may process your data based on your consent, for example, when you explicitly agree to our terms.

3.3 Legitimate Interests

We process data based on legitimate interests, such as maintaining platform security, fraud prevention, and service improvements.

3.4 Legal Obligations

We process your data when required to comply with legal obligations.

4. Cookies

We use a cookie to store your session information when you log in to our platform. This cookie is essential for the operation of the website and is deleted when you log out or when your session expires. We do not use cookies for tracking or advertising purposes.

4.1 Analytics

We use a self-hosted version of Plausible Analytics (Community Edition) to gather privacy-friendly usage statistics. This setup does not use cookies, does not collect personally identifiable information, and does not transfer data to third parties. All data remains on our infrastructure, fully under our control, and compliant with the General Data Protection Regulation (GDPR).

We do not share your personal data with 3rd-parties except in the following circumstances:

5.1 Service Providers

We use the following trusted third-party service providers to operate and improve our services. These providers may process personal data strictly on our behalf and in accordance with this Privacy Policy and applicable laws:

Cloudflare (USA) - CDN, DNS, WAF, DDoS protection, email obfuscation. View privacy policy
Google Cloud (DE, europe-west3-c region) - VPS hosting and data storage. View privacy policy
Plausible Analytics (Self-hosted, EU) - Privacy-first analytics. See Analytics section for more details. View privacy policy
Stripe (USA/EU) - Payment processor. View privacy policy
If you're located in the Europe, your payment information is processed by Stripe Payments Europe, Ltd. However, for the rest of the world, your payment information is processed by Stripe Payments, Inc.
Sentry (USA) - Application error monitoring. View privacy policy
Cloudflare R2 (USA, Western North America region) - Object storage service for storing and serving user-generated content such as avatars, backgrounds, audios, custom badges, and others. View privacy policy
AWS SES (Simple Email Service) (USA, us-east-1 region) - Email sending service for transactional emails, such as email verification, password reset, login notifications, and others. View privacy policy

All providers are bound by data processing agreements (DPAs) and comply with data protection regulations, including the GDPR where applicable.

5.2 Legal Requirements

We may disclose your information if required by law or to protect our rights or the safety of others.

6. Your Rights

You have several rights concerning your personal data, including:

6.1 Access

You can request access to the data we hold about you.

6.2 Correction

You may update or correct your personal information.

6.3 Deletion

You have the right to request that we delete your account and data, subject to certain legal obligations.

7. Data Security

We take data security seriously and use industry-standard measures to protect your information.This includes encryption, secure servers, and access controls. However, while we strive to protect your data, no system is completely immune to security risks. We recommend that you also take precautions, such as using strong passwords and enabling two-factor authentication where possible.

8. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes for which it was collected, or as required by law. When your data is no longer needed, we will securely delete or anonymize it.

9. Third-Party Links

Our website may include links to external websites or services. Please note that we are not responsible for how these third parties handle your data. We encourage you to review their privacy policies before sharing any personal information with them.

10. Changes to this Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. Any updates will be posted on this page, and the effective date will be revised accordingly. Continued use of our services after changes are made constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions or concerns regarding this Privacy Policy or your personal data, please contact us at [email protected].