Privacy Policy
Last updated: April 8, 2026
This Privacy Policy explains how Minaricrew Inc. ("we", "us", or "our") handles your information when you use Bondr. We believe in being straightforward about what we collect and how we use it.
What We Collect
Account Information
When you sign in with Google, we receive your name, email address, and profile picture.
Gmail Data
With your permission, we access your Gmail to display and send emails within the app. This includes email content, metadata, and attachments. We only access what's needed to provide email features.
Campaign Data
Information you create in the app: campaigns, influencer contacts, email templates, notes, and workspace settings.
Payment Information
Payments are processed by Paddle. We only receive subscription status and billing info—not your credit card details.
Technical Data
Basic technical info like IP address, browser type, and how you use the app. This helps us fix bugs and improve the service.
How We Use Your Data
- •Provide the service—displaying emails, managing campaigns, team collaboration
- •Process subscription payments through Paddle
- •Send important service updates and respond to support requests
- •Improve the app based on how people use it
- •Protect against fraud and abuse
Gmail API Usage
Our use of Gmail data follows the Google API Services User Data Policy, including Limited Use requirements:
- ✓We only use Gmail data to provide the email features you have chosen to use in our app
- ✓We do not use Gmail data for advertising
- ✓We do not share Gmail data with third parties for purposes unrelated to the user-facing features. When you use our optional AI features, the email content you select is sent to our AI processor solely to generate the requested output—it is not used to train AI models, not retained beyond the request, and not used for any other purpose.
- ✓We do not allow humans to read your emails unless you explicitly ask us to help with a specific issue, or it's required by law
Who We Share Data With
We rely on a small set of service providers to run Bondr. We only share what each service needs to do its job:
| Service | Purpose |
|---|---|
| Supabase | Database, authentication, file storage |
| Gmail API & sign-in | |
| Paddle | Payments and merchant of record |
| Vercel | Application hosting |
| AI processor | Powers optional AI features (summaries, drafts) — only when you use them |
| Enrichment provider | Looks up public influencer profile data when you use the enrichment feature |
We do not sell your personal information. We do not name individual subprocessors here; if you need the current list (for example, for a vendor review), please email us.
Sharing within your workspace
Bondr is built for teams. If your workspace uses shared email mode, other members of your workspace can view emails connected by anyone in that workspace. This is a setting controlled by the workspace owner—not a transfer of data to a third party.
Data Security
We take reasonable measures to protect your data:
- •Encrypted connections (HTTPS)
- •Secure authentication via Google OAuth
- •Row-level security in our database
- •Access tokens stored securely
That said, no system is 100% secure. We cannot guarantee absolute security.
Data Retention
- Account & Campaign Data: Kept while your account is active. Within 30 days of account deletion, all account, campaign, and email cache data is permanently removed from our active systems. Encrypted backups containing this data are purged within 90 days.
- Gmail Data: Cached in our database to display threads in the app. The original data stays in your Gmail and our cache is rebuilt from there. When you disconnect Gmail or delete your account, the cached copy is removed within 30 days.
- Payment Records: Kept for 5 years after the transaction to comply with applicable commerce and tax laws (e.g., Korea's Act on the Consumer Protection in Electronic Commerce §6, with equivalent records-retention rules in Japan, Taiwan, and the U.S.).
Your Rights and Choices
Wherever you live, you have the following rights over your personal information. Most of them you can exercise yourself in the app; for the rest, email us and we will respond within a reasonable time.
- Access: View your data anytime in the app, or request a full copy by email.
- Correct: Update inaccurate personal information from Settings → Profile, or by email.
- Delete: Delete your account and all associated data directly from Settings → Account → Delete Account. Workspace owners must transfer ownership or delete the workspace before deleting their personal account.
- Object or restrict: Object to or restrict specific processing (such as analytics) by contacting us.
- Revoke Gmail: Remove Gmail access anytime via your Google Account settings.
- Export: Request a copy of your campaign data in a machine-readable format by email.
- Complain: Lodge a complaint with your local data-protection authority. In Korea, you can contact the Personal Information Protection Commission, KISA's Privacy Infringement Report Center (privacy.kisa.or.kr / 118), or the Personal Information Dispute Mediation Committee (kopico.go.kr / 1833-6972).
Children's Privacy
Bondr is intended for business use and is not directed at children. We do not knowingly collect personal information from anyone under the age of 14. If you are a parent or guardian and believe your child has provided personal information to us, please contact us and we will delete it. Where local law requires consent from a legal guardian for users between 14 and 16 (such as in Korea), that consent must be obtained before the minor uses Bondr.
International Data Transfers
Your data may be stored and processed in different countries where our service providers operate. By using Bondr, you consent to your data being transferred internationally.
Cookies
We use two types of cookies. Essential cookies are required for authentication and session management—the app cannot function without them. Analytics cookies, set by our analytics provider, help us understand how the product is used so we can improve it and fix bugs. You can disable analytics cookies in your browser settings without losing core functionality.
Changes to This Policy
We may update this policy from time to time. We'll post changes here and update the date at the top. For significant changes, we'll notify you by email.
Contact Us
Questions about this policy or your data? Email us at business@minaricrew.com
Service Operator
Minaricrew Inc.
Suite 1109, 37 Hangangdae-ro, Yongsan-gu, Seoul, Republic of Korea
Business Registration No.: 502-60-43998
For users in Korea: in addition to contacting us directly, you can report privacy concerns to KISA's Privacy Infringement Report Center (privacy.kisa.or.kr / 118) or request mediation through the Personal Information Dispute Mediation Committee (kopico.go.kr / 1833-6972).