Privacy Policy

Last Updated: June 13, 2025
Effective Date: June 10, 2025

Welcome to Mindless Labs. Mindless Labs (“Mindless Labs,” “we,” “us,” or “our”) provides content, products, and services via www.mindless.org (the “Site”), mobile applications (the “App” or “Apps”), or other delivery methods that link to this Privacy Policy (collectively, the “Services”). This Privacy Policy outlines how Mindless Labs collects, uses, shares, or sells (if applicable) your personal information when you access or use our Services (through any device which is used to access or use the Services, including through third party services, social media, marketing activities, and other methods described in this Privacy Policy.

Information We Collect
- Information You Provide to Us
  We collect personal information you choose to provide through the Services or otherwise, which may include:

Account Information: Email address, username, joined groups, followed topics, and account preferences.
Contact Information: Name, email, phone number, and mailing address.
Profile Information: Optional details such as date of birth, gender, pronouns, biography, occupation, location, profile photo, social media links, interests, website URLs, and any health-related information you choose to disclose. You may update or remove this data at any time.
User Content: Text, images, videos, comments, direct messages, attachments, and metadata that you upload, post, or submit to the Services.
Communications: Correspondence with us, including chat features, feedback, and support inquiries.
Survey and Research Data: Demographic, medical, educational, or financial details provided in response to surveys, polls, or research activities.
Marketing Preferences: Your preferences for receiving marketing communications.
Other Information: Any additional personal information you choose to share, which we will handle according to this Privacy Policy.
Payment Information: When you subscribe to paid services, payment data such as card type, number, expiration date, and billing address may be collected by our third-party payment processors. MINDLESS LABS does not process payment data directly.
- Information from Third-Party Sources
  We may combine your information with data from other sources, including:
Data providers and commercial data services.
Public platforms such as social media.
Research partners, such as universities and companies involved in collaborative initiatives.
- Automatically Collected Information
  We, our service providers, and business partners may collect the following automatically:
Device Data: Browser type, device identifiers, OS version, screen resolution, device type, IP address, network data, and location inferred from IP address.
Online Activity: Browsing behavior, pages viewed, time spent, navigation paths, and referring URLs.
Location Data: Country, state, and city derived from your IP address (your country is public by default and can be made private in settings).
- AI Features. We may use AI systems—ranging from background infrastructure tools to interactive features—for personalization, security, and quality assurance. Where applicable, you’ll be informed and given the option to engage with any AI-powered features.
- Sensitive Personal Information

We may collect sensitive personal information, such as details about your medical condition, gender identity, or ethnicity, when you voluntarily provide it. Where required by law, we will request your explicit consent before processing such information. We do not use sensitive personal information for any purposes that require a right to limit under applicable law (e.g., CCPA/CPRA).

Please note:

We do not seek consent when you voluntarily disclose sensitive information in public areas of the Services, such as posts or comments.
You should not provide sensitive personal information unless it is necessary, and you consent to our use of it as described in this Privacy Policy.
If you do not consent to our processing of your sensitive personal information, please do not submit it to us.

How We Use Your Information

We use your information for the following purposes or as otherwise described at the time of collection:

Service Delivery

To provide, operate, and improve the Services.
To create and manage your account and profile.
To maintain platform security, including device recognition and authentication.
To communicate with you about the Services, including announcements and support.
To personalize content and recommendations based on your preferences and information.
To support transactions, manage billing, and apply taxes as necessary.
To improve service quality, detect trends, and enhance user experience.

Research and Development

To conduct surveys and research initiatives.
To develop aggregated and de-identified datasets for analytics and business planning.
To refine our offerings based on user behavior and feedback.

Marketing and Advertising

Direct Marketing: We may send promotional communications as permitted by law. You can opt out at any time.
Interest-Based Advertising: Third-party advertising partners may use cookies and other tools to show relevant ads across various platforms based on your activity.

Compliance and Protection

To comply with legal obligations and respond to legal requests.
To protect rights, safety, and property (ours and others’).
To audit compliance and enforce our terms and policies.
To prevent, investigate, or mitigate fraud, abuse, or unauthorized access.

Sharing Your Personal Information

We may share your personal information with the following categories of recipients, and as otherwise described in this Privacy Policy or at the time of collection:

Affiliates
Our corporate parent, subsidiaries, and affiliates, for purposes consistent with this Privacy Policy.
Service Providers
Vendors and contractors that perform services on our behalf or assist in the operation of the Services or our business. These may include providers of IT services, customer relationship management, chat and support tools, email distribution, marketing, advertising, and analytics.
Advertising Partners
Third-party advertising companies may collect information about your use of the Services and other online services over time to help us deliver advertising and measure its effectiveness.
Professional Advisors
Legal, financial, and other professional advisors, such as attorneys, auditors, insurers, and bankers, when disclosure is necessary in the course of the professional services they provide.
Authorities and Others
Law enforcement, government agencies, crisis lines, and private parties, when we believe in good faith that disclosure is necessary or appropriate to:
- Comply with applicable laws or legal processes;
- Protect our rights, safety, and property, and those of others;
- Prevent or investigate fraud, abuse, or other illegal activity.
Business Transferees
Relevant participants (including their advisors) in actual or potential business transactions involving a merger, acquisition, sale, corporate reorganization, or other transfer of assets or ownership involving Mindless Labs or any of our affiliates (including as part of bankruptcy or similar proceedings).
Other Users and the Public
Some information associated with your profile—such as your username, pronouns, biographical information, profile photo, and links to social media—may be visible by default to other users and the public. Any user generated content, comments, or communications you post, publish, or make available through use of the Services, including sensitive information (e.g., medical data), may be publicly accessible. Please be aware that others may view, share, or use any information you choose to make public.
Business and Research Partners
We may share publicly available or de-identified content with research institutions, universities, and business partners as part of surveys or research initiatives we may be involved in. Additionally, if you participate in a survey or research initiative, we may share your responses with relevant partners, as described to you at the time of collection. In some cases, we may republish your submitted content on a partner’s website, in accordance with our terms.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. For example, we retain account information for as long as your account exists. After the retention period, your information will be securely deleted or anonymized.

We consider the following factors when determining how long to retain your personal information:

Purpose of Use: We retain your personal information as long as necessary to provide our Services, fulfill contractual obligations, respond to inquiries, and meet legal and regulatory requirements.
Legal and Regulatory Requirements: Certain personal information may need to be retained for specific periods to comply with applicable laws, such as tax laws, anti-money laundering regulations, or other regulatory obligations.
Statutes of Limitation: We retain personal information for the duration of any applicable statute of limitations periods, which may require us to hold data for a specific period in case of legal claims or disputes.
Business and Operational Needs: Personal information may be retained longer if it is necessary for operational purposes, such as maintaining your account, improving our Services, or conducting audits and business analysis.

We may retain aggregated or anonymized data for analytical, research, or business development purposes, as this data does not identify individual users and is not subject to the same data retention policies. If you would like to request the deletion of your personal information, please refer to the section on Your Privacy Choices and Controls below for instructions on how to submit such a request.

For more details on your rights, please refer to the applicable supplemental privacy notices below for residents of California, the EU, the UK, and other relevant jurisdictions.

Your Privacy Choices and Controls

Depending on your location and how you use our Services, you may have certain rights in relation to your personal information. While we are not subject to all data protection laws globally, we aim to give all users transparency and control. You may have right, choice, or ability to control your personal information as follows:

Access and Update Your Information
If you have an account, you may review and update certain personal information by logging into your account.
Correction of Information
You may request corrections to your personal information where it is inaccurate, in accordance with applicable local privacy laws.
Marketing Communications
You can opt out of receiving promotional emails by using the unsubscribe link at the bottom of those emails. Please note that you will continue to receive service-related communications (e.g., transactional or administrative emails).
Cookies and Tracking Technologies
Most browsers let you remove or reject cookies via their settings. Note that if you disable cookies, certain features of the Services may not function properly. For more details, see Section 7 of this Privacy Policy.
Do Not Track
Some browsers offer a “Do Not Track” feature. At this time, we do not respond to such signals unless otherwise stated.
Declining to Provide Information
Certain features of the Services require personal information. If you choose not to provide requested information, we may not be able to offer those services.
Third-Party Platforms
If you access or connect to the Services through a third-party platform (e.g., social media), you may adjust your privacy settings through that platform to control what data is shared with us. Revoking access will not affect data we previously received.
Delete Your Content or Close Your Account
You may delete certain content via your account settings. To request account closure, contact us or, if using our mobile app, initiate account deletion from the user preferences screen.

Exercising Your Choices and Controls

You may request to access the personal information we have collected about you, request corrections to inaccurate information, or request deletion of your personal information by contacting us as provided for above. We may not be able to process your request if you do not provide sufficient detail to allow us to verify your identity and understand the scope of your request. You may also appeal any denial of your request using the same method.

Your Opt-Out Rights

Opt-Out of Targeted Advertising
We do not sell your personal information for monetary consideration. However, we may use third-party services to deliver interest-based advertisements, and under some privacy laws, this may be considered “sharing” your personal information. You have the right to opt out of such sharing.

You can submit a request to opt-out of tracking for targeted advertising by visiting the Your Privacy Choices and Controls section of our Privacy Policy.
Your opt-out request will apply only to the device and browser from which the request is made.
You can also enable the Global Privacy Control (GPC) in supported browsers to automatically communicate your opt-out preferences. Learn more at https://globalprivacycontrol.org.

Opt-Out of Profiling and Limit Use of Sensitive Personal Information
You may receive marketing emails based on the topics you follow, your profile preferences, or sensitive data you provide (such as health-related conditions). Some privacy laws may consider this “profiling” or a restricted use of sensitive personal information.

You can limit the use of your sensitive personal information and opt out of marketing-related emails by following the unsubscribe link included in each email .
Even if you opt out of marketing communications, you may still receive service-related or transactional communications.

Identity Verification

To protect your information, we may need to verify your identity before processing your rights request. Depending on the type of request and applicable laws, we may ask you to:

Log in to your account, if you have one
Provide information that we can match against existing records
Confirm your request using your verified contact information
Provide a government-issued ID or signed declaration under penalty of perjury (where permitted by law)
Complete other reasonable verification steps permitted by applicable law

Authorized Agents

You may authorize someone to submit a request on your behalf. We may require proof of your agent’s authority to act for you, including:

A copy of a valid power of attorney under applicable law
Signed, written permission granting the agent authority to act on your behalf
Verification of your identity and confirmation that you authorized the request

We reserve the right to deny a request from an agent who does not provide sufficient proof of authorization.

Cookies

When you access or use our Services or visit our Site, we may collect information from you automatically through cookies including cookies provided by our partners or third parties. We use cookies and the information they collect for a variety of purposes including functionality, analyzing performance, security, personalizing Site or App content, advertising, and enhancing and improving user experience. We will get your consent in order to use such trackers or provide you with the opportunity to opt-out of cookies, to the extent required by applicable law. To the extent applicable, you may be able to use an opt-out preference signal, such as the Global Privacy Control (GPC), to opt-out of the sale/sharing of your personal information. For more information on the types of cookies we use and your choices regarding them, please review our Cookie Notice.

Security of Your Information

We implement a variety of technical, organizational, and physical safeguards intended to protect the personal information we collect. However, no method of transmission over the internet or method of electronic storage is completely secure. As such, we cannot guarantee the absolute security of your personal information. By using our Services, you acknowledge and accept the inherent risks involved in transmitting data over the internet.

While we strive to protect your personal information, you also play an important role in ensuring the security of your data. We recommend that you create strong passwords, log out of your account after using our Services, especially on shared or public devices, and make sure you are using up-to-date versions of operating system or software on the devices you use our Services.

Some of the procedures or methods we may use to protect your personal information include but are not limited to:

Encryption in Transit and at Rest – All user data is encrypted in transit using TLS/SSL (HTTPS) and at rest using AES-256 encryption by default across Firebase and GCP services.
Authentication & Access Control – We use Firebase Authentication to securely identify users via email/password and federated login providers. Access to data is tightly controlled via Firebase Security Rules and IAM policies in GCP to ensure users and services can only access data they are authorized to see.
Secure Firestore & Realtime Database Access – Firebase’s NoSQL databases are secured with custom security rules that enforce role-based access controls and contextual logic, ensuring separation of user data.
Cloud Storage Security – Uploaded user content is stored in Firebase Cloud Storage, which uses signed URLs and access rules to protect against unauthorized access.
Logging & Monitoring – GCP’s Cloud Audit Logs, Error Reporting, and Monitoring are enabled to track access, detect anomalies, and support incident response processes.
Protected Secrets & API Keys – We use Google Secret Manager to store sensitive configuration values and restrict API key usage with IP/domain restrictions and scoped permissions.
App Transport Security (ATS) – Our Apps enforces HTTPS connections only and uses certificate pinning (where applicable) to prevent man-in-the-middle attacks.
Regular Updates & Patch Management – All libraries and dependencies in the app and backend services are monitored and updated regularly to mitigate known vulnerabilities.
Data Residency & Compliance – user data is stored in U.S.-based GCP regions, and we operate in alignment with applicable data protection regulations including GDPR principles and HIPAA-relevant safeguards (though we do not currently process protected health information).

International Users or Data Transfers

We are headquartered in the United States, and our Site, App, and Services are intended solely for individuals located in the United States. We do not target or offer our Services, merchandise, or Content to residents of the European Union (EU), United Kingdom (UK), or any other regions outside the United States. By accessing or using our Services, you represent and warrant that you are located in the United States. If you are located outside the United States, you should not use or access our Site, App, or any related Services.

As part of our operations, we may engage service providers located in other countries. Accordingly, your personal information may be transferred to, stored in, or otherwise processed in jurisdictions that may not offer the same level of data protection as your home jurisdiction. Where required by applicable law, we will implement appropriate safeguards to protect personal information prior to such transfers.

Third-Party Privacy Policies

Our Services may contain links to websites, mobile applications, and other online services operated by third parties. These links are provided for your convenience and do not constitute our endorsement of, or affiliation with, those third parties. In addition, our content may appear on web pages, mobile apps, or services that are not associated with us. We do not control and are not responsible for the privacy practices or content of any third-party websites, mobile applications, or online services.

Children’s Privacy

Our Services are not intended for use by children under the age of 13. If we become aware that we have collected personal information from a child under 13 without the appropriate legal consent, we will take steps to delete such information. If you believe that a child under 13 may have provided us with personal information, please contact us using the details provided below.

Contact Us

If you have questions or requests regarding your privacy rights or this Privacy Policy, please contact us at:

Mindless Labs
Email: trust@mindless.org
Phone: (801) 405-4064
Address: 1935 E Vine St, STE 110, Salt Lake City, UT 84121

Supplemental Notices for Certain Jurisdictions

Depending on your jurisdiction, you may have additional choices or rights under applicable privacy laws. Please note that Mindless Labs is a U.S.-based company, and your personal information will be stored and processed in the United States.

We provide jurisdiction-specific notices to help you understand your rights and our obligations. Please review the applicable supplemental notices:

Privacy Notice for the EU, UK, and Switzerland – Rights under applicable privacy laws.
Privacy Notice for California – Your rights under the California Consumer Privacy Act (CCPA) and other California state laws.
Privacy Notice for Other U.S. States – Your rights under other state-specific privacy laws.

Privacy Notice for the EU, UK, and Switzerland

This section applies to individuals located in the European Union (EU), the United Kingdom (UK), and Switzerland. For purposes of the General Data Protection Regulation (GDPR) and the UK GDPR, Mindless Labs acts as a data controller with respect to the personal information collected through the Services as described in our Privacy Policy.

Legal Bases for Processing

We process your personal information based on one or more of the following legal bases, as permitted under applicable data protection laws:

Your consent – which you may withdraw at any time.
Performance of a contract – when processing is necessary to fulfill our contractual obligations to you, such as those under our Terms of Service.
Legal obligation – where processing is required for compliance with a legal obligation, such as responding to lawful requests from authorities.
Legitimate interests – where processing is necessary for our legitimate business interests, and such interests are not overridden by your rights or interests.

Legitimate Interests

We rely on legitimate interests for certain processing activities, including:

Providing and improving our Services – including functionality, customer support, and personalization of the Services based on your preferences and interactions.
Communicating with you – such as responding to inquiries, delivering service messages, or providing information about new features, services, or events that may interest you.
Developing and enhancing products – through internal analytics, product research, and the development of new tools and features.
Security and compliance – to protect users, enforce our terms, prevent fraud or misuse, investigate suspicious activity, and maintain a trusted, safe environment.
Marketing and audience understanding – to personalize and optimize promotional content, understand how our users engage with marketing materials, and improve future outreach (subject to your marketing preferences).
Risk management and regulatory compliance – including anti-money laundering (AML), know-your-customer (KYC) checks, sanctions compliance, credit analysis, and legal investigations or audits.
Legal obligations and defense of claims – such as complying with applicable laws or regulations, responding to legal requests, and asserting or defending against legal claims.

When relying on legitimate interests, we conduct a balancing test to ensure that our interests do not override your fundamental rights and freedoms.

Your Rights Under GDPR and UK GDPR

If you are located in the EU, UK, or Switzerland, you have specific privacy rights under applicable law. In addition to the rights described in the Your Privacy Choices and Controls section of the Privacy Policy, you may also have the following rights:

Right to object to processing – You may object to the processing of your personal information in certain circumstances, particularly where we rely on legitimate interests.
Right to restrict processing – You may request that we limit the processing of your personal information in specific situations.
Right not to be subject to automated decision-making – You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal or similarly significant effects. We do not currently engage in such automated decision-making.
Right to lodge a complaint – You may file a complaint with a data protection authority in your country. We encourage you to contact us first so we can try to resolve your concern directly.
- For EU residents: https://www.edpb.europa.eu/about-edpb/about-edpb/members_en
- For UK residents: https://ico.org.uk/make-a-complaint/data-protection-complaints/

Please note that exceptions and limitations to these rights may apply under applicable law.

Data Protection Officer (DPO)

We have appointed a Data Protection Officer to oversee our data protection practices and compliance efforts. You may contact our DPO with any questions or concerns regarding the processing of your personal information at:

Data Protection Officer
Email: trust@mindless.org
Address: 1935 E Vine St STE 110, Salt Lake City, UT 84121, U.S.

Privacy Notice for California

This section supplements the information in our Privacy Policy and applies solely to individuals who reside in the State of California, in accordance with the California Consumer Privacy Act of 2018 (“CCPA”) and its amendment, the California Privacy Rights Act of 2020 (“CPRA”), as may be updated or amended in accordance with applicable law (collectively, the “CCPA”).

Categories of Personal Information Collected

Below is a summary of the categories of personal information we have collected in the past twelve (12) months, as defined under the CCPA, including whether we have “sold” or “shared” such information for cross-context behavioral advertising purposes.

Category	Examples	Collected	Shared
A. Identifiers	Name, alias, IP address, email address, account credentials, government ID (for verification), NPI	Yes	No (e.g., IP address, email, unique identifiers)
B. California Customer Records	Name, address, phone number, payment details, employment history, medical/insurance info	Yes	No (e.g., email)
C. Protected Classifications	Gender, age (40+), disability, ethnicity, sexual orientation	Yes	No
D. Commercial Information	Products or services purchased or considered, payment history	No	No
E. Biometric Information	Health or exercise data	No	No
F. Internet Activity	Browsing history, interactions with our Site	Yes	No
G. Geolocation Data	Approximate location via IP address	Yes	No
H. Sensory Data	Audio recordings, voicemails, photographs	Yes	No
I. Employment Information	Employer, job title, work contact details	No	No
J. Education Information	Student ID	No	No
K. Inferences	Profile reflecting preferences, behavior, or characteristics	Yes	No
L. Sensitive Personal Information	Health info, payment info, password, racial/ethnic origin, gender identity, sexual orientation	Yes	No

Note: Some information may fall under multiple categories.

Use of Personal Information

We use personal information for the following business and commercial purposes:

To provide and maintain our Services;
To communicate with you about the Services;
To respond to your inquiries and provide customer support;
To process payments and manage transactions;
To develop, improve, and personalize our Services;
To conduct research and analytics;
To provide marketing and promotional communications;
To detect, prevent, or investigate fraud or other unlawful activity;
To ensure the security and integrity of our Services;
To comply with legal obligations or exercise legal rights.

Use of Sensitive Personal Information

We use sensitive personal information only for:

Performing necessary business functions;
Providing requested Services;
Preventing fraud and ensuring security; We do not use sensitive personal information to infer characteristics about you or for advertising purposes.

Retention of Personal Information

We retain personal information only as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law. Retention periods depend on factors including:

The duration of your relationship with us;
Legal obligations;
The potential need to retain data for legal claims or regulatory investigations.

Your California Privacy Rights

If you are a California resident, you have the following rights under the CCPA, subject to applicable exceptions:

Right to Know: Request details on the personal information we collect, use, disclose, sell, or share.
Right to Access: Obtain a copy of your personal information in a portable format.
Right to Delete: Request deletion of your personal information, subject to legal exceptions.
Right to Correct: Request correction of inaccurate personal information.
Right to Opt-Out: Opt out of the sale or sharing of your personal information. See the “Notice of Right to Opt-Out” below.
Right to Limit Use of Sensitive Personal Information: Restrict our use of your sensitive personal information to what is necessary for providing Services.
Right to Non-Discrimination: You will not be penalized or discriminated against for exercising your rights.

Notice of Right to Opt-Out

We may “sell” or “share” certain categories of your personal information with third parties for targeted advertising, as those terms are defined under the CCPA. You have the right to opt out of such activity.

To exercise your opt-out rights, please visit the “Your Privacy Choices and Controls” section of our Privacy Policy or use a Device, browser, or other reasonable method that supports the Global Privacy Control (GPC) signal. If you access our Services via our App, you may also opt out through in-app settings where available.

Direct Marketing Disclosures (“Shine the Light” Law)

We do not disclose your personal information to third parties for their direct marketing purposes without your consent. California residents may request further information regarding such practices by contacting us at [trust@mindless.org].

How to Exercise Your California Privacy Rights

If you are a California resident, you may exercise your rights under the CCPA by submitting a verifiable consumer request through one of the following methods:

Email: trust@mindless.org
Mail: 1935 E Vine St, STE 110, Salt Lake City, UT 84121
Phone: (801) 405-4064

You may designate an authorized agent to make a request on your behalf. To do so, the agent must provide proof of your written permission, or you must verify your identity directly with us.

We will respond to verifiable consumer requests in accordance with applicable legal timelines and requirements. We may decline certain requests if we are unable to verify your identity or if an exception applies.

Verification Process

Before fulfilling your request, we must verify your identity. This helps protect your personal information from unauthorized access or deletion. The verification process may include:

Matching identifying information you provide with information we already have on file;
Requesting additional information or documentation as needed to confirm your identity;
For sensitive or high-risk requests (e.g., access to specific data), we may require further verification steps.

If we cannot verify your identity using the information provided, we will inform you and may request additional details. If a request is denied based on an exception under the CCPA, we will inform you of the reason required.

Privacy Notice for Other U.S. States

This section applies to residents of U.S. states that have enacted specific privacy laws that may impact their rights. These laws include, but are not limited to, the Virginia Consumer Data Protection Act (VCDPA), the Connecticut Data Privacy Act (CTDPA), the Utah Consumer Privacy Act (UCPA), the Colorado Privacy Act (CPA), the Nevada Privacy Law (NPL), the Rhode Island Data Transparency and Privacy Protection Act (RIDTPA), the Minnesota Consumer Data Privacy Act (MCDPA), and the Oregon Consumer Privacy Act (OCPA). This section is intended to comply with these laws and supplements the information provided elsewhere in the Privacy Policy.

Collection of Personal Information

Mindless Labs may collect personal information as described in the table above or elsewhere in the Privacy Policy. Please note that certain categories of personal information, including mental or physical health information, racial or ethnic origin, and information about sexual orientation or gender identity, may be considered sensitive personal information under the laws of some states. The collection of such sensitive personal information is only for the purposes outlined below and in accordance with applicable state laws.

Use of Personal Information

Mindless Labs uses personal information for the purposes outlined in the Privacy Policy. This includes using sensitive personal information for the same purposes as other personal information, except for the personalization of advertisements, which does not involve sensitive personal information.

Disclosure of Personal Information

Mindless Labs may disclose your personal information to third-party service providers and other entities as described in the Sharing Your Personal Information section of the Privacy Policy. The disclosure of personal information is done in accordance with state-specific laws and applicable privacy rights.

Your Privacy Rights

In addition to the general privacy rights described in the Your Privacy Choices and Controls section of the Privacy Policy, residents of certain U.S. states may have additional privacy rights as outlined below. To exercise these rights, please refer to the Contact Us section of the Privacy Policy or follow the instructions provided for specific state rights. We will respond to your verifiable request within the time limits established by applicable law. Please note that certain exceptions may apply, as detailed in the Privacy Policy.

Colorado, Connecticut, Virginia, Utah, Minnesota, Rhode Island, and Oregon Residents:

Right to Opt-Out of Targeted Advertising and Sales: You have the right to opt out of the sale or sharing of your personal information for targeted advertising purposes. If you are a resident of one of these states, you may exercise this right by navigating to the appropriate source or method as may be provided for in accordance with applicable law, you may exercise this right by clicking the “unsubscribe” or “manage preferences” link found at the bottom of our marketing emails.
Right to Opt-Out of Profiling for Legal Decisions: Residents of Colorado, Connecticut, Virginia, Utah, Minnesota, Rhode Island, and Oregon have the right to opt out of profiling used to make decisions that produce legal or similarly significant effects. Please note that, while you may exercise this right, Mindless Labs does not currently use profiling in such a manner.

Nevada Residents:

Right to Opt-Out of Sale: Nevada residents have the right to opt out of the sale of their personal information under state law. However, please note that we do not sell your personal information for payment, and therefore, this right does not apply.

Minnesota and Oregon Residents:

Right to Know Third-Party Disclosures: Minnesota and Oregon residents have the right to request a list of third parties to whom we may disclose personal information. To make such a request, please use the information provided in the Contact Us section of our Privacy Policy.

Rhode Island Residents (“RIDTPA”):

Right to Know About Sales or Sharing: While we do not sell personal information for payment, the RIDTPA defines “sale” as sharing personal information for targeted advertising purposes. Under this definition, we may have shared your personal information with third parties. To learn more about this, please refer to the Sharing Your Personal Information section above.

Cookie Notice

What is a cookie?

A cookie is a small text file that is placed on your hard drive by a web page server. Cookies contain information that can later be read by a web server in the domain that issued the cookie to you. You can find out more about each cookie by viewing our current cookie list below. We update this list every six months, so there may be additional cookies not yet listed. Web beacons, tags, and scripts may be used on the Site or in emails to help us to deliver cookies, count visits, understand usage and advertising campaign effectiveness, and determine whether an email has been opened and clicked on. We may receive reports based on the use of these technologies by our service/analytics providers on an individual and aggregated basis.

Why does Mindless Labs use cookies?

When you visit our Site, we may place a number of cookies in your browser. These are first-party cookies, and they allow us to hold session information as you navigate within the site. For example, we use cookies on our Site to understand visitor and user preferences, improve their experience, and track and analyze usage, navigational, and other statistical information. You can control the use of cookies at the individual browser level. If you choose not to activate cookies or to later disable them, you can still visit our Site, but your ability to use some features may be limited.

How do I disable cookies?

You can generally activate or later deactivate the use of cookies through your web browser. Find your browser below to learn more about how to manage your cookie settings.

Chrome: Click here to learn more about “Incognito” and managing cookie settings.

Microsoft Edge: Click here to learn more about “InPrivate” and managing cookie settings.

Safari: Click here to learn more about “Private Browsing” and managing cookie settings.

If you want to learn more about cookies or how to control, disable, or delete them, please visit aboutcookies.org for detailed guidance.

In addition, certain third party advertising networks, including Google, allow users to opt out of or customize preferences associated with your internet browsing. To learn more about this feature from Google, click here.

Cookies Mindless Labs Uses

Many jurisdictions require or recommend that website operators disclose the types of cookies they use and occasionally get consent from users before placing certain cookies.

We may use any of the following categories of cookies on our Site as detailed below. Each cookie falls within one of these four categories:

Essential Cookies: Essential cookies (first-party cookies) are sometimes called “strictly necessary” as without them we cannot provide many services that you need on the Site. For example, essential cookies help remember your preferences as you move around the Site.

Analytics Cookies: These cookies track information about website visits so we can make improvements and report our performance. For example, we analyze visitor and user behavior to provide more relevant content or suggest certain activities. These cookies collect information about how visitors use the website, which site the user came from, the number of each user’s visits, and how long a user stays on the website. We might also use analytics cookies to test new ads, pages, or features to see how users react to them.

Functionality or Preference Cookies: During your visit to the Site, these cookies are used to remember information you have entered or choices you make such as your username, language, or region. They also store your preferences when personalizing the Site to optimize your use of Services, for example, your preferred language. These preferences are remembered through the use of the persistent cookies, and the next time you visit the Site you won’t have to set them again.

Targeting or Advertising Cookies: These third-party cookies are placed by third-party advertising platforms or networks in order to deliver ads and track ad performance, enabling advertising networks to deliver ads that may be relevant to you based upon your activities (this is sometimes called behavioral, tracking, or targeted advertising) on the Site. They may subsequently use information about your visit to show you ads that you may be interested on our Site and other websites. For example, these cookies remember which browsers have visited the website.