Privacy Policy

Last Updated: [July, 1, 2025]

This Privacy Policy explains how GoMim ("GoMim", "we", "our", or "us") collects, uses, discloses, and protects personal information when you visit or use our website and related services (collectively, the "Service") at https://gomim.com. By accessing or using the Service, you agree to the collection and use of information in accordance with this Policy.

If you do not agree with this Policy, please do not access or use the Service.

Scope and Controller

This Policy applies to personal information collected through our Service. The data controller for GoMim is:

  • GoMim
  • Email: contact@gomim.com
  • Address: Unit 04-05, 16th Floor, The Broadway No. 54-62 Lockhart Road, Wanchai, HongKong.

If you are located in the European Economic Area (EEA), United Kingdom, or other jurisdictions that require naming a Data Protection Officer (DPO) or representative, please contact the above email for DPO contact details.

Information We Collect

We collect information you provide directly and information automatically collected when you use the Service.

  • Information you provide
    • Account information: name, email address, username, password, profile info.
    • User content: text, math problems, uploaded photos/images, documents, audio, and other content you submit to the Service ("User Content"). Note: images may contain personally identifying information (PII).
    • Communications: correspondence with support, feedback, and survey responses.
    • Payment information: billing name and address and payment card or payment provider details when you purchase subscriptions.
    • Optional data: if you choose to connect third-party accounts (Google, Apple, etc.), we may collect basic profile data from those providers per your consent.
  • Information collected automatically
    • Usage and analytics: pages viewed, features used, timestamps, errors and crash reports, session length, and other telemetry.
    • Device and technical data: IP address, device type, operating system, browser type, language, and referral/advertising identifiers.
    • Location data: approximate location inferred from IP address (unless you provide explicit location through a device permission).
  • Cookies and similar technologies
    We (and our partners) use cookies, local storage, web beacons and similar technologies to operate the Service, remember preferences, measure usage, and deliver relevant content and advertising.

How We Use Your Information

We use personal information for the following purposes:

  • Provide and operate the Service: to create and manage your account, deliver service features, process transactions, and respond to requests.
  • Process User Content: to analyze and respond to your queries (including using AI/ML models to generate explanations or solutions).
  • Improve and develop products: to debug, monitor, and improve our Service, train, test or evaluate models and algorithms using aggregated or de-identified data.
  • Security and safety: to detect, prevent and respond to fraud, abuse, security incidents and technical issues.
  • Communications: to send service-related announcements, updates, marketing (where permitted), and respond to inquiries.
  • Legal compliance: to comply with legal obligations, enforce our terms, and protect rights, property or safety.

AI-specific processing: When you submit text, photos, or other content for solving problems, that content will be processed to generate a response. Processing may involve in-house systems and/or third-party AI providers. See Section 8 for third-party processing details.

Legal Bases for Processing (for EEA/UK users)

If you are in the EEA/UK, our legal bases for processing personal data include:

  • Performance of a contract: to provide the Service you requested (account management, delivering answers).
  • Consent: where you have given consent (e.g., marketing emails, optional cookies).
  • Legitimate interests: for security, improving products, fraud prevention and analytics, balanced against user rights.
  • Legal obligations: where we must comply with the law.

Sharing and Disclosure

We may share personal information with:

  • Service providers and vendors who perform services on our behalf (hosting, analytics, email delivery, customer support, payment processors, AI/ML model providers).
  • Business transfers: in connection with a merger, sale, asset transfer or insolvency event (we will require that the transferee uses data consistent with this Policy).
  • Legal requests: to comply with court orders, law enforcement or legal process, or to protect legal rights, safety or security.
  • With your consent: we will share where you have expressly authorized disclosure.

We do not sell personal information for money. If this changes, we will update this Policy and provide required notices and opt-outs.

Cookies, Tracking & Advertising

We and our partners use cookies and similar technologies for:

  • Essential site operation (required cookies).
  • Preference and functional cookies (remember settings).
  • Performance and analytics (aggregate usage).
  • Advertising and marketing (where applicable).

You can control or delete cookies through your browser settings or device preferences. Some features of the Service may not function properly if cookies are disabled. For targeted advertising opt-outs, review your device/browser settings and any cookie consent controls in our Service.

Data Retention

We retain personal data only as long as necessary to fulfill the purposes in this Policy, including for legal, accounting, or reporting requirements. Typical retention examples (subject to business needs and legal requirements):

  • Account data: retained while account is active and for a reasonable period after deactivation (e.g., 90 days) to allow recovery and to meet legal obligations.
  • User Content: retained for as long as necessary to provide the Service or as specified when you submit content. You can request deletion.
  • Logs and analytics: retained in aggregated or raw form for analytics and security for a limited period (e.g., 6–36 months).

Exact retention periods may vary by data type and jurisdiction. Contact us to request retention details.

Third-Party Services and International Transfers

  • Third-party processors: We use trusted third parties for hosting, data storage, payment processing (e.g., Stripe), analytics (e.g., Google Analytics), crash reporting, customer support, and AI model providers. Those vendors process data under contract and only per our instructions.
  • International transfers: Data may be transferred to, stored, and processed in countries other than your home country (including the U.S.). When we transfer data from the EEA/UK to other countries, we use appropriate safeguards such as Standard Contractual Clauses, where applicable.

Security

We use reasonable administrative, technical and physical safeguards to protect personal information (encryption in transit, access controls, monitoring). However, no system is completely secure. If a data breach occurs that is likely to result in a risk to your rights, we will notify you and regulators as required by law.

Children's Privacy

Our Service is not intended for children under 13. We do not knowingly collect personal information from children under 13 without verified parental consent. If you are between 13 and the age of majority in your jurisdiction, you may use the Service only with parental or guardian permission. If you believe we have collected data from a child under the applicable age, contact us to request deletion. We will take steps to remove the information promptly.

Your Rights and Choices

Depending on your jurisdiction, you may have the following rights:

  • For EEA/UK users (GDPR-related)
    • Access: request a copy of personal data we hold.
    • Rectification: correct inaccurate or incomplete data.
    • Erasure: request deletion of personal data (subject to exceptions).
    • Restriction: request restriction of processing.
    • Portability: receive data in a structured, machine-readable format.
    • Object: object to processing based on legitimate interests or for direct marketing.
  • For California residents (CCPA/CPRA)
    • Right to know: request categories of personal information we have collected or shared, and the purposes.
    • Right to deletion: request deletion of personal information.
    • Right to opt-out of sale or sharing for targeted advertising: we do not sell personal information; if we engage in covered "sharing," you will be provided an opt-out.
    • Non-discrimination for exercising privacy rights.

Exercising your rights
To submit a request:
Email contact@gomim.com with "Privacy Request" in the subject.
Provide your name, email, and a description of the request.
We may require verification to protect privacy and security. We aim to respond within applicable legal timeframes (e.g., 30 days).

AI Model Training and Use of User Content

  • Processing: User Content (text and images) is processed to generate solutions. Processing may occur on our servers and/or via authorized third-party AI providers.
  • Training / Improvement: We may use aggregated or de-identified inputs and outputs to improve models and services. Where user content could be used to train third-party models in an identifiable way, we will provide notice and obtain consent where required by law or offer opt-out mechanisms.
  • Sensitive data: Do not include sensitive personal information (e.g., Social Security numbers, medical records) in uploaded images or queries. If you unintentionally submit sensitive information, contact us to request its removal.

Analytics and Advertising Partners

We use analytics services to measure and improve the Service. Analytics providers may collect information about your visit. We may also use advertising providers to show promotional content; you can control advertising choices through cookie controls and device/browser settings.

Links to Other Websites

Our Service may contain links to third-party sites. We are not responsible for the privacy practices of those sites. Please review their privacy policies before providing any personal information.

Changes to This Privacy Policy

We may update this Policy for operational, legal, or regulatory reasons. Material changes will be posted with a new effective date and, where required, notified to you. Your continued use of the Service after the change indicates acceptance.

Contact Us

If you have questions, requests, or concerns about this Privacy Policy or our data practices, please contact: