|
Log InStart for free
Task ManagementTime ManagementWorkload ManagementHow it works
PricingAbout
Log InStart for free

Mira Privacy Policy

1. Introduction & Controller

At Mira, we respect your privacy and commit to protecting your personal data. This Privacy Policy explains how we collect, process, share, and protect your personal data when you use the Mira application and services, and details your privacy rights under United Kingdom data protection law.

The Service is operated personally as an individual product in the United Kingdom. For the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, we are the Data Controller responsible for the processing of your personal data collected through the Service.

2. Data We Collect

We only collect data that is strictly necessary to deliver a high-quality tracking experience. This includes:

  • Account Credentials: Your email address and basic profile details required to establish, authenticate, and secure your account access.
  • Workspace Content: The descriptions, workload categories, time allocations, estimates, and tasks that you voluntarily input into your tracking space.
  • Billing & Transactions: Payment and subscription details. All payment processing is handled securely by our third-party provider; we do not store credit card or financial account numbers directly on our systems.
  • Technical Usage Metrics: Information regarding how you navigate and interact with the Service, including masked IP addresses, browser types, and page interaction histories.

3. Legal Bases for Processing

Under the UK GDPR, we process your personal data under the following legitimate legal bases:

  • Contractual Performance: Processing is strictly necessary to establish your workspace, authenticate your sessions, and deliver the tracking services you requested.
  • Legitimate Interests: To monitor and maintain platform security, address software bugs, and review product performance metrics to improve user experience.
  • Legal Compliance: To comply with financial accounting, taxation, or statutory reporting obligations under United Kingdom law.

4. Third-Party Subprocessors

To provide a seamless and secure digital service, we integrate with established third-party subprocessors. Each subprocessor is contractually bound to maintain strict confidentiality and data protection standards:

Supabase

Provides secure cloud database hosting, system storage, and primary authentication infrastructure to safeguard your account credentials and workspace records.

Stripe

Acts as our exclusive merchant billing processor. Stripe manages subscription transactions, recurring payments, and card compliance under global security regulations.

PostHog

Provides diagnostic usage analytics. PostHog tracks non-identifiable interactions and system performance, allowing us to identify interface issues and improve product usability.

5. Automated Tools & AI Promise

Mira is built with modern tracking convenience in mind. When utilizing our background assistant, Aide, or any other automated analysis tools, we operate under strict privacy promises:

Enterprise AI Privacy Promise

We promise that Mira will never utilize, share, or store your task descriptions, team work logs, calendar entries, or personal schedules to train third-party artificial intelligence models, machine learning algorithms, or large language models. Your business operations and details remain strictly private to your isolated workspace.

6. Functional Cookies & Storage

Unlike traditional marketing sites, Mira does not utilize advertising, tracking, or marketing cookies.

We strictly limit cookie and local storage utilization to purely functional purposes. These are technically required to securely keep you logged in, remember your workspace configuration preferences, and protect your active session tokens.

Since these technical elements are essential to the performance of the Service, they do not require consent under UK PECR rules. You can block or delete functional local storage items using your web browser settings, though doing so will log you out and prevent the application from loading.

7. Your UK GDPR Data Rights

As a resident of the United Kingdom, you hold comprehensive rights regarding your personal data under the UK GDPR. These include:

  • Right of Access: The right to request copies of the personal data we hold about you.
  • Right to Rectification: The right to request that we correct any inaccurate or incomplete personal information.
  • Right to Erasure: The right to request that we delete your personal data (the "right to be forgotten"). You can trigger full account and workspace deletions directly through your account settings.
  • Right to Restriction: The right to request that we restrict or limit how we process your personal data under specific conditions.
  • Right to Data Portability: The right to request that we transfer your collected data to another organization or directly to you in a standard, machine-readable format.

8. Contact & Queries

If you wish to exercise any of your data protection rights, or if you have any questions or concerns regarding our privacy practices and data processing, please do not hesitate to contact us.

You can submit a direct query to us by visiting our live contact portal: Contact Page.

Last updated: May 18, 2026.