Privacy Policy

Last updated 2026-05-08

This Privacy Policy explains what information MultiMind ("we", "us") collects when you use our service at multimind.co and what we do with it. MultiMind is based in Singapore and processing of personal data is subject to the Singapore Personal Data Protection Act 2012 (PDPA).

1. Information we collect

Account information. When you sign up, we collect your email address and (optionally) display name. If you sign in with Google, we receive your email, name, and a Google account identifier from Google.

Conversation content. Prompts you submit and responses generated by the AI models you query are stored in our database so you can revisit them later. They are linked to your account and not visible to other users unless you explicitly enable public sharing on a conversation.

Billing. If you subscribe to a paid plan, payment is processed by Stripe. We never see or store your full card number. We do store a Stripe customer identifier and your subscription status.

Usage metadata. We record per-query metadata — model used, token counts, latency, cost — to enforce rate limits, bill correctly, and improve routing.

Analytics. If you accept the cookie banner, we load Google Analytics, which sets cookies to measure aggregate page views and navigation. We do not share identifiable analytics data with advertisers. You can decline analytics on first visit, and you can clear the consent at any time from your browser settings.

2. How we use information

  • To provide the service: route your prompts to the AI models you select, return their answers, save your conversation history.
  • To bill you accurately and prevent abuse of the free tier.
  • To send transactional email (verification, password reset, billing receipts).
  • To debug errors and improve performance.

We do not sell your personal information. We do not use your conversation content to train AI models.

3. Subprocessors

We rely on the following third parties to operate the service. Each receives only the minimum data necessary for their specific function:

  • Cloudflare — hosting, database (D1), object storage (R2), key-value (KV).
  • OpenRouter — AI inference gateway for non-CN traffic.
  • Tu-zi (api.tu-zi.com) — AI inference gateway for CN traffic.
  • Stripe — billing and payment processing.
  • Resend — transactional email delivery.
  • Google — OAuth sign-in (optional) and Analytics (opt-in via cookie banner).
  • Sentry — error monitoring (when activated).

When you submit a prompt, the prompt content is sent to whichever AI inference provider is selected to handle your request. Their respective privacy policies apply to that data in transit and during model inference.

4. Data retention

Conversations and account data are retained until you delete them or close your account. Usage and billing records are retained for up to seven (7) years to comply with tax and accounting obligations. Server logs and Sentry error reports are retained for 90 days.

5. Your rights

You can:

  • Access — view and export your conversations from the in-app export feature.
  • Correct — edit your display name in Settings.
  • Delete — delete individual conversations, or delete your entire account from Settings → Account → Delete account. Deletion is immediate and permanent; we cannot recover data after.
  • Object / withdraw consent — decline analytics via the cookie banner.

If you live in Singapore, you have rights under the PDPA to request access to your personal data, request correction, withdraw consent, and (since the 2024 amendments) request data portability. If you live in the EU, UK, or California, you have additional statutory rights (GDPR Articles 15–22, CCPA §1798.100 et seq.). We honor those rights via the same controls above.

Personal data may be transferred outside Singapore to the subprocessors listed above (mostly hosted in the United States). When we transfer data internationally, we rely on the recipient's binding privacy commitments to provide a comparable standard of protection as required under the PDPA.

6. Security

Account passwords are hashed using industry-standard algorithms via Better Auth. Network traffic is encrypted with TLS. Database access is restricted to the application worker. We follow the principle of least privilege for all subprocessor credentials.

7. Children

multimind is not intended for children under 16. We do not knowingly collect data from children. If you believe a child has created an account, contact us and we will delete it.

8. Changes

We may update this policy as the service evolves. The "Last updated" date at the top will reflect changes. For material changes, we will notify you by email before they take effect.

9. Contact

Questions about this policy or your data? Email privacy@multimind.co.