Last Updated: December 2025 | Effective Date: December 2025
This Privacy Policy ("Policy") describes how Sow Bold LLC, a Wyoming limited liability company ("MindPosted," "Company," "we," "us," or "our"), collects, uses, discloses, and protects your personal information when you use the MindPosted service (the "Service"). This Policy applies to all users of the Service and forms part of our Terms of Service.
By accessing or using the Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree to this Policy, you must not use the Service.
THE SERVICE IS INTENDED EXCLUSIVELY FOR RESIDENTS OF THE UNITED STATES OF AMERICA. We do not intentionally collect, process, or store personal data from individuals located in the European Union, European Economic Area, United Kingdom, Switzerland, or any jurisdiction subject to the General Data Protection Regulation (GDPR), UK GDPR, or similar comprehensive data protection legislation.
If you are a resident of, citizen of, or physically located in the EU, EEA, UK, or any jurisdiction with comprehensive data protection laws similar to GDPR, you are strictly prohibited from using our Service. By using the Service, you represent and warrant that you are not subject to such regulations.
IF YOU ACCESS THE SERVICE FROM A PROHIBITED JURISDICTION IN VIOLATION OF THESE RESTRICTIONS, YOU DO SO UNLAWFULLY AND IN BREACH OF OUR TERMS OF SERVICE. WE DISCLAIM ALL LIABILITY FOR DATA PROTECTION CLAIMS ARISING FROM SUCH UNAUTHORIZED ACCESS. WE RESERVE THE RIGHT TO TERMINATE ACCOUNTS AND BLOCK ACCESS FROM PROHIBITED JURISDICTIONS WITHOUT NOTICE.
We collect and process the following categories of personal information:
IMPORTANT BIOMETRIC DATA NOTICE:
If you use our AI avatar generation feature, we collect:
This Biometric Data constitutes biometric identifiers under applicable state laws, including the Illinois Biometric Information Privacy Act (BIPA). By uploading photographs, you provide your informed written consent to the collection and use of your Biometric Data as described in this Policy and our Terms of Service.
Note: We do not store complete payment card numbers on our servers. All payment processing is handled by Stripe pursuant to PCI-DSS standards.
We use your information for the following purposes:
WE DO NOT SELL YOUR PERSONAL INFORMATION. We may share your information only in the following limited circumstances:
We share information with third-party service providers who assist in operating our Service:
| Provider | Purpose | Data Shared |
|---|---|---|
| Stripe, Inc. | Payment processing | Payment and billing info |
| OpenAI | AI content generation | Content inputs |
| Datadog | Analytics and monitoring | Usage and performance data |
| Google (Ads) | Advertising analytics | Technical identifiers only |
| Meta (Facebook) | Advertising analytics | Technical identifiers only |
Note regarding advertising SDKs: We use Google Ads and Meta (Facebook) Pixel solely for measuring our own advertising campaign performance. These tools use technical identifiers (such as hashed data and conversion events) for attribution purposes. We do not share personal data for ad targeting or behavioral profiling purposes.
We may disclose information if required by law, court order, subpoena, or government request, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
In the event of a merger, acquisition, bankruptcy, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity.
We may share information for other purposes with your explicit consent.
We retain your information for the following periods:
| Data Type | Retention Period |
|---|---|
| Voice recordings | Deleted within 24 hours after processing |
| Original photographs | Deleted within 24 hours after processing |
| Biometric Data | Deleted within 30 days of account deletion or written request |
| Generated content | Retained for account lifetime |
| Account data | Retained 30 days after account deletion |
| Analytics data | Retained for 12 months |
| Legal/compliance data | As required by applicable law |
We may retain certain information for longer periods as required by law, to prevent fraud, resolve disputes, or enforce our Terms of Service.
We implement industry-standard security measures to protect your information, including:
However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.
In the event of a data breach affecting your personal information, we will notify you via email within 72 hours of becoming aware of the breach, consistent with applicable law. We will also notify appropriate regulatory authorities as required.
You may access, update, or correct your account information at any time through your account settings or by contacting us at [email protected].
You may request deletion of your account by contacting [email protected]. Upon receiving a verified deletion request, we will delete your personal information within 30 days, except for data we are required or permitted to retain by law.
You may opt out of marketing communications by clicking the "unsubscribe" link in any marketing email or by contacting us. Please note that you cannot opt out of transactional or service-related communications.
You may request deletion of your Biometric Data at any time by emailing [email protected]. We will permanently destroy all Biometric Data within 30 days of receiving your verified request.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
You have the right to request information about the categories and specific pieces of personal information we have collected, the sources of collection, the purposes for collection, and the categories of third parties with whom we share personal information.
You have the right to request deletion of your personal information, subject to certain exceptions.
You have the right to request correction of inaccurate personal information.
We do not sell your personal information. We do not "share" personal information for cross-context behavioral advertising as defined by CPRA.
Biometric Data is considered sensitive personal information under CPRA. We use this data only for the disclosed purpose of avatar generation.
We will not discriminate against you for exercising your privacy rights.
To exercise these rights, email [email protected] or submit a request through your account settings. We will verify your identity before processing your request. You may designate an authorized agent to submit requests on your behalf.
California Civil Code Section 1798.83 permits California residents to request information regarding disclosure of personal information to third parties for direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes.
Nevada residents may opt out of the sale of certain personal information. We do not sell personal information as defined under Nevada law. If you wish to submit a request, email [email protected].
You can control cookies through your browser settings. Disabling essential cookies may prevent certain features of the Service from functioning properly.
Our Service does not respond to "Do Not Track" browser signals. There is no uniform standard for responding to such signals, and we do not alter our data collection practices based on these signals.
The Service is not intended for anyone under 18 years of age. We do not knowingly collect personal information from children under 18. If we learn that we have collected personal information from a child under 18, we will promptly delete it. If you believe a child has provided us with personal information, please contact us at [email protected].
All data is stored and processed in the United States. By using the Service, you consent to the transfer of your information to the United States and the processing of your information in the United States.
If you are accessing the Service from outside the United States in violation of our Terms of Service, you acknowledge that any data you submit will be transferred to and processed in the United States, and you accept the risks associated with such transfer. We are not responsible for the level of data protection in your jurisdiction.
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated Policy on our website with a new "Last Updated" date and, for material changes, by sending an email to the address associated with your account. Your continued use of the Service after any changes constitutes your acceptance of the updated Policy.
For questions about this Privacy Policy, or to exercise your privacy rights, contact us at:
Sow Bold LLC (dba MindPosted)
5830 E 2nd St, Ste 7000 #26126
Casper, Wyoming 82609
United States
Privacy Inquiries: [email protected]
Response Time: We aim to respond to all privacy-related inquiries within 30 days.