Last updated: March 8, 2025
Privacy Policy
1. Introduction
This Privacy Policy describes how we collect, use, store, and protect your information when you use the Mishy mobile application (“Mishy”, “app”, “we”, “us”). Mishy is operated by an individual in Poland (sole proprietor / fizyczna osoba prowadząca działalność gospodarczą). By using Mishy, you agree to this policy. If you do not agree, please do not use the app.
2. Information we collect
We may collect the following categories of information:
- Account information: email address, username, password (hashed), and other details you provide when creating or updating your account.
- Profile information: display name, avatar, bio, and other profile data you choose to share.
- User content: wishlists, wish items, descriptions, links, photos you upload, favorites, follows, and reactions.
- Usage and device information: how you use the app (e.g. screens, actions), device type, operating system, app version, and similar technical data.
- Photos: images you upload for avatars, wishlist covers, or wish items; we process and store these to provide the service.
3. How we use your information
We use the information to:
- Provide, maintain, and improve Mishy (wishlists, profiles, feed, favorites, subscriptions).
- Authenticate you and manage your account.
- Display your content to other users where you have chosen to make it visible or shareable.
- Understand usage and fix issues (including via analytics).
- Comply with legal obligations and enforce our terms.
4. Storage and security
We store your data on secure servers and use industry-standard measures to protect it (e.g. encryption in transit). We retain your information for as long as your account is active or as needed to provide the service and fulfil the purposes described in this policy, unless a longer retention is required by law.
5. Sharing of information
- We do not sell your personal data.
- Other users: Content you make public (e.g. public wishlists, profile) is visible to other users and may be shared via links.
- Service providers: We use third-party services that process data on our behalf, including:
- Legal: We may disclose information if required by law, court order, or government request, or to protect our rights and safety.
- Business transfer: In the event of a merger, sale, or transfer of assets, your information may be transferred as part of that transaction.
6. Your rights
Depending on your location (including EEA/UK), you may have the right to:
- Access: Request a copy of the personal data we hold about you.
- Correct: Request correction of inaccurate or incomplete data.
- Delete: Request deletion of your data, including by deleting your account in the app or by contacting us.
- Export: Request a portable copy of your data.
- Withdraw consent: Where we rely on consent, you may withdraw it at any time.
- Complain: Lodge a complaint with a supervisory authority (e.g. in your country of residence).
To exercise these rights, contact us at [email protected].
7. Children
Mishy is not directed at children under 13 (or under 16 in the EEA where applicable). We do not knowingly collect personal data from such users. If you believe we have collected data from a child, please contact us at [email protected] and we will take steps to delete it.
8. International transfers
Your data may be processed in the European Economic Area and in other countries where our service providers operate. When we transfer data outside the EEA, we ensure appropriate safeguards (e.g. standard contractual clauses or adequacy decisions) where required by law.
9. Changes to this policy
We may update this Privacy Policy from time to time. We will post the revised policy in the app or on our website and update the “Last updated” date. Continued use of Mishy after changes constitutes acceptance of the updated policy. For material changes, we may provide additional notice where appropriate.
10. Contact
For any questions about this Privacy Policy or your personal data, contact us at [email protected].