MindsHub
Star Log in Get started

Legal

Privacy Policy

Last updated:

This Privacy Notice explains how MindsDB (“we,” “us,” or “our”) collects, uses, discloses, and protects personal information when you visit our websites, interact with our marketing, register for events, contact us, or otherwise communicate with us in a business context. It also describes your privacy rights and how to exercise them.

Who we are. MindsDB, legal address: 3277 S White Rd PMB 10166, San Jose, CA 95148, USA. Data Protection Officer (DPO). Adam Carrigan – [email protected].

If you are a user of our products under a separate agreement, or an employee/candidate, this website notice may be supplemented by product- or HR-specific notices.

1) Scope and audience

This notice applies to personal information about visitors, prospective customers and partners, vendors, and other contacts who interact with our public websites and marketing (collectively, Business Contacts). It does not cover information we process solely on behalf of our customers as a processor/service provider — those activities are governed by a separate data processing agreement.

2) Information we collect

We collect personal information in the categories below (examples are illustrative):

  • Identifiers & contact details – name, employer, job title/role, business email, phone, country/region, and any information you provide in forms or communications.
  • Professional information – company, team, interests, purchase intent, and CRM notes.
  • Internet / device & usage data – IP address, device and browser type, operating system, pages viewed, links clicked, referring URLs, time spent, language, and approximate geolocation (derived from IP).
  • Cookies & similar technologies – identifiers set by us and our partners for analytics, site performance, fraud/security, and (if enabled) advertising/retargeting.
  • Event & webinar data – registration information, attendance, and feedback.
  • Support interactions – content of messages, call/chat metadata.
  • Sensitive personal information – we do not intentionally collect sensitive personal information via our marketing websites. If you choose to provide such information in free-text fields, we will process it only as necessary to handle your request.

Sources of information. We collect information directly from you (forms, emails, support), automatically via your device (cookies, logs), and from third parties (co-marketing partners, event organizers, lead-generation providers, and publicly available sources such as LinkedIn when allowed by law).

3) How we use personal information (purposes)

We use personal information to:

  1. Provide, operate, and improve our websites and services.
  2. Communicate with you, respond to inquiries, send administrative messages, and provide requested materials (e.g., whitepapers, demos).
  3. Market and advertise our services, including measuring campaign effectiveness and building audiences (see Cookies & Tracking).
  4. Plan and host events and manage registrations.
  5. Maintain security and prevent fraud, abuse, or misuse.
  6. Comply with legal obligations and enforce our agreements.

Where required by law, we will obtain consent before using cookies for non-essential purposes or sending you certain marketing communications.

4) Cookies & tracking controls

We and our partners use cookies, SDKs, and similar technologies.

  • In the Regions requiring prior consent (for example, the EU/UK/EEA/Switzerland/Canada), we seek opt-in consent for any non-essential cookies (e.g., analytics/advertising). These cookies are not set until you accept.
  • In the United States, you may opt out of interest-based advertising and the disclosure of your data for targeted advertising via the Your Privacy Choices link and by enabling recognized opt-out preference signals (see below).
  • You can update your cookie preferences at any time via the cookie banner, the Cookie Preferences control in our footer, or your browser settings. Blocking cookies may affect some site features.

For a current, always-up-to-date list of cookies and partners we use, see our Cookie Policy (Cookie Declaration), accessible via the cookie banner and the Cookie Preferences control in our footer.

5) When and with whom we disclose information

We disclose personal information as described below (we do not disclose lists of individual names unless required by law):

  • Service providers/contractors who process data for us under written contracts (e.g., hosting, analytics, email delivery, CRM, event management, customer support, security). They may access personal information only to perform services for us and must not use it for their own purposes.
  • Advertising and analytics partners to measure campaigns, improve our sites, and (if enabled) show you relevant ads on other sites. See Your choices below for how to opt out.
  • Business partners in co-marketing or joint events when you register for those programs.
  • Professional advisors (lawyers, accountants), authorities, and others when necessary for compliance, safety, and legal reasons.
  • Corporate transactions – if we engage in a merger, acquisition, financing, or sale of assets, your information may be transferred as part of that transaction, subject to confidentiality.

We do not knowingly allow our service providers to collect, use, or disclose personal information except to provide the services we request or as permitted by law and contract.

6) “Selling” or “sharing” personal information / targeted advertising

We do not “sell” personal information for money. We may “share” identifiers and internet/activity data with advertising partners for cross-context behavioral advertising (targeted ads). You may opt out at any time via the Your Privacy Choices link and by using recognized opt-out preference signals (Global Privacy Control).

We honor Global Privacy Control (GPC) and other recognized regional opt-out signals where required. See Your rights & choices.

7) Your rights & choices

Your rights depend on where you live. We will honor requests as required by applicable law and, where reasonable, in other regions as well.

California & other U.S. state privacy laws

If you live in CA, CO, CT, UT, VA, OR (and other states with comprehensive privacy laws), you may have the right to:

  • Know/Access the categories and specific pieces of personal information we collected about you.
  • Delete personal information we collected from you.
  • Correct inaccurate personal information.
  • Opt out of the sale or sharing of personal information and of targeted advertising.
  • Limit the use and disclosure of sensitive personal information (if we collect it).
  • Appeal our decision if we decline to act on your request (where applicable).

How to exercise your rights. Submit a request at [email protected] (subject line: Privacy Request). For opt-outs of targeted advertising, use the Your Privacy Choices link on our site or enable GPC in your browser. We will confirm receipt within 10 business days and respond within 45 days (or as allowed by law). We will take steps to verify your identity (and authority of any authorized agent).

We will not discriminate against you for exercising your rights.

Do Not Track. Our websites do respond to browser Do-Not-Track (DNT) signals by disabling non-essential tracking used for targeted advertising (and limiting analytics as configured). We also honor Global Privacy Control (GPC).

EU/EEA, UK, and Switzerland (GDPR/UK GDPR)

If you are in the EU/EEA, UK, or Switzerland, you have the rights to access, rectify, erase, restrict, object (including to direct marketing), and data portability, and the right to withdraw consent at any time (without affecting the lawfulness of processing before withdrawal). You also have the right to lodge a complaint with your local supervisory authority.

Legal bases. Depending on the context, we rely on: contract (to provide requested materials), legitimate interests (to operate and secure our sites, to conduct B2B marketing compatible with your expectations, to improve our services), consent (for non-essential cookies/marketing where required), and legal obligation.

DPO contact. Adam Carrigan – [email protected].

Brazil (LGPD), Canada (PIPEDA/Provincial), Japan (APPI), South Korea (PIPA), and other regions

Residents of these jurisdictions may have similar rights to access, correct, delete, or object/opt-out of certain processing, and to lodge complaints with local authorities. You can exercise rights by contacting [email protected].

8) International data transfers

We are headquartered in the United States and may transfer your personal information to countries that may not provide the same level of protection as your home country. Where required, we use legally approved safeguards (for example, Standard Contractual Clauses (SCCs) or country-specific equivalents).

9) Data retention

We keep personal information for as long as necessary to achieve the purposes described above, including to comply with legal, accounting, or reporting obligations, resolve disputes, and enforce agreements. We also consider the amount, nature, and sensitivity of the data and the risk of harm from unauthorized use or disclosure.

Typical retention periods:

  • Website analytics: 13–24 months (per cookie/tool settings).
  • CRM & marketing records for Business Contacts: 3 years after last meaningful interaction.
  • Event registration: 3 years after the event.
  • Support communications: 5 years after resolution.

10) Security

We use administrative, technical, and physical measures designed to protect personal information. No method of transmission or storage is 100% secure; if we learn of a security incident that affects your information, we will notify you as required by law.

11) Children’s privacy

Our websites are intended for adults and are not directed to children. We do not knowingly collect personal information from anyone under 16. If you believe a child has provided personal information to us, contact [email protected] and we will take appropriate steps.

12) Changes to this notice

We may update this notice from time to time. When we do, we will change the “Last updated” date at the top and, when required, provide additional notice.

13) How to contact us

MindsDB Legal address: 3277 S White Rd PMB 10166, San Jose, CA 95148, USA Data Protection Officer: Adam Carrigan – [email protected] For privacy requests, email [email protected] and include Privacy Request in the subject line.