← Back to Mingo

Privacy Policy

Last Updated: March 28, 2026

Mingo is a product of SimpliCloud, a DBA of H3 Global LLC, a Texas limited liability company ("we," "us," or "our"). We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service at mingoapp.co.

1. Information We Collect

Information You Provide

Account Information: When you sign up using Google Sign-In, we collect your name, email address, and profile photo.
Content Files: Files, images, videos, and documents you upload to our platform.
Project Information: Share names, descriptions, tags, and other metadata you create.
Payment Information: When you subscribe to Pro, your payment is processed by Stripe, Inc. We do not collect, store, or have access to your full credit card number, card verification code (CVV), or other sensitive cardholder data. Stripe is a PCI DSS Level 1 certified payment processor. Only non-sensitive billing details such as the last four digits of your card, card brand, and billing postal code may be retained by Stripe and surfaced to us for account management purposes.

Information Collected Automatically

Usage Data: Information about how you use our service, including file views, downloads, and share analytics.
Device Information: Browser type, operating system, IP address, and device identifiers.
Cookies: We use cookies and similar technologies to maintain your session and improve your experience.

Gmail Data (Optional Feature)

If you choose to connect your Gmail account to use the Brand Deal Finder feature, we access your Gmail inbox in read-only mode. Specifically:

We scan up to 50 recent emails to detect potential brand collaboration opportunities
We analyze email subjects, sender names, and body text solely to identify brand deal keywords
We store only the metadata of detected opportunities (subject line, sender name, detected brand name, confidence score) — we do not store full email content
Gmail OAuth tokens are stored securely in Firebase and used only to perform on-demand scans when you explicitly initiate them
You can disconnect Gmail access at any time from the Inbox tab, which immediately deletes your stored tokens

2. How We Use Your Information

We use the information we collect to:

Provide, maintain, and improve our services
Process your subscription payments
Send you service-related notifications and updates
Respond to your comments, questions, and support requests
Monitor and analyze usage patterns, feature adoption, and trends to improve the product and inform business decisions
Detect, prevent, and address technical issues and security threats
Comply with legal obligations
When Gmail is connected: detect brand collaboration opportunities in your inbox on your behalf
Contact you for customer support, product feedback, feature announcements, or other communications related to your use of the service
Use aggregated or anonymized data for internal reporting, marketing, and business development purposes
Community engagement: Social media handles you provide in Settings may be used to follow, engage with, or feature your content as part of our creator community efforts. We will only use handles you have explicitly provided and you may remove them at any time from Settings.

3. Gmail API Limited Use Disclosure

Mingo's use of information received from Gmail APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, with respect to Gmail data:

We only use Gmail data to detect brand collaboration opportunities on behalf of the user who explicitly connected their Gmail account
We do not use Gmail data for serving advertisements
We do not allow humans to read your Gmail data unless you have given explicit permission or we are required to do so by law
We do not transfer Gmail data to third parties except as strictly necessary to provide the Gmail scanning feature (e.g., Firebase for secure token storage)
We do not use Gmail data for any purpose other than the Brand Deal Finder feature that the user explicitly requested
We do not store full email content — only opportunity metadata derived from scanning
Gmail access is entirely optional and can be revoked at any time

4. How We Share Your Information

We do not sell your personal information. We may share your information with:

Service Providers: Firebase (Google Cloud), Stripe for payment processing, and other service providers who assist in operating our platform.
Share Recipients: When you create a share link, the files and information you include in that share are accessible to anyone with the link (or authorized users, depending on your access control settings).
Legal Requirements: When required by law, subpoena, or other legal process.
Business Transfers: In connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business.

5. Data Storage and Security

Your data is stored securely using Google Firebase and Firebase Storage. We implement appropriate technical and organizational security measures to protect your information from unauthorized access, disclosure, alteration, and destruction.

Authorized personnel at H3 Global LLC (operating as SimpliCloud/Mingo) may access account data stored in our database — including files, deals, shares, and settings — when necessary for customer support, debugging, legal compliance, or service maintenance. We limit such access to what is strictly necessary and do not access your data for any other purpose.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

6. Your Rights and Choices

You have the right to:

Access: Request access to the personal information we hold about you
Correction: Request correction of inaccurate or incomplete information
Deletion: You can delete your account and associated data directly from within the app at Settings → Delete Account. You may also request deletion by contacting us at [email protected].
Export: Request a copy of your data in a portable format
Opt-Out: Unsubscribe from marketing emails (service emails cannot be opted out of while you have an active account)
Revoke Gmail Access: Disconnect your Gmail account at any time from the Inbox tab, which immediately deletes your stored Gmail OAuth tokens

To exercise these rights, contact us at [email protected].

California Residents (CCPA/CPRA)

If you are a California resident, you have the following additional rights under the California Consumer Privacy Act:

Right to Know: You may request disclosure of the categories and specific pieces of personal information we have collected about you, the sources of that information, the business purposes for collecting it, and the categories of third parties with whom we share it.
Right to Delete: You may request deletion of personal information we have collected from you, subject to certain exceptions.
Right to Opt-Out of Sale: We do not sell your personal information. If this changes, we will update this policy and provide an opt-out mechanism.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

To submit a California privacy rights request, contact us at [email protected] with "CCPA Request" in the subject line.

7. Data Retention

We retain your information for as long as your account is active or as needed to provide you services. If you delete your account, we will delete your personal information within 30 days, except where we are required to retain it for legal or compliance purposes.

Gmail OAuth tokens are deleted immediately when you disconnect Gmail or delete your account. Detected opportunity metadata is deleted when you dismiss the opportunity or delete your account.

7a. Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify affected users without undue delay and, where required by applicable law, notify the relevant supervisory authorities. Our notification will include the nature of the breach, the categories and approximate number of individuals affected, the likely consequences, and the measures we have taken or propose to take to address the breach.

7b. Brand Share Links — Public Access Warning

When you create a share link in Mingo, anyone with access to that link may be able to view the files and information you have included in that share. You are solely responsible for controlling who receives your share links and for any content exposed through them. We strongly recommend only sharing links with intended recipients and using expiry dates or access restrictions where available. We are not responsible for unauthorized access to content resulting from a share link being forwarded, leaked, or otherwise distributed beyond your intended recipients.

8. Children's Privacy

Our service is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country. By using our service, you consent to such transfers.

10. Third-Party Links

Our service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically.

12. Contact Us

If you have questions about this Privacy Policy, please contact us:

Email: