← Back to Home

Privacy Policy (GDPR)

Last updated: 16. 03. 2026

Privacy Policy

Effective date: 16 March 2026
Service name: Mindbanger
Website: www.mindbanger.com

This Privacy Policy explains how Genomic Fashion s.r.o. ("Mindbanger", "we", "us", "our") processes personal data in connection with the Mindbanger website, products, subscriptions, communications, affiliate features, and related services.

1. Controller

Genomic Fashion s.r.o.
Nám. Sv. Martina 407/3A
90851 Holíč
Slovakia
Company ID (IČO): 55 662 072
VAT ID (IČ DPH): SK2122052933
Registered in the Commercial Register of the District Court Trnava, Section Sro, File No. 54755/T
General email: info@mindbanger.com
Support: support@mindbanger.com
Privacy/GDPR contact: gdpr@mindbanger.com

Responsible person for privacy matters: Mgr. Miroslav Jobus

2. Who this Policy applies to

This Policy applies to visitors, customers, account holders, newsletter subscribers, affiliate users, business customers, and other individuals whose personal data we process through Mindbanger.

3. Categories of personal data we may process

Depending on how you use the Service, we may process:

  1. Identification data – first name, last name, username, display name.
  2. Contact data – email address, phone number, communication preferences.
  3. Account data – login credentials, account settings, authentication data, connected social login identifiers.
  4. Transaction and billing data – purchased products, subscription status, invoices, billing history, payment metadata, VAT/tax-related data, and limited payment-related information provided by our payment processors.
  5. Affiliate data – affiliate link usage, referral data, commission records, payout requests, wallet balances, payout details, bank details, tax details, invoicing details, and verification information where needed for payout.
  6. Technical and usage data – IP address, device data, browser type, operating system, identifiers, cookies, log records, event data, usage analytics, site navigation, campaign attribution data, and security-related metadata.
  7. Marketing data – newsletter subscriptions, open/click information, consent records, campaign preferences, and remarketing/audience data.
  8. Support and communication data – messages sent to support, email correspondence, complaint details, and related records.
  9. User-provided profile or optional data – profile fields or linked account details you choose to provide.

We do not intentionally require special categories of personal data for normal use of the Service. Please do not submit sensitive health, biometric, political, religious, or similarly sensitive personal data unless specifically requested and legally justified.

4. Sources of personal data

We collect personal data:

  1. directly from you when you register, purchase, contact us, subscribe, or use the Service;
  2. automatically through your device and our website technologies;
  3. from payment providers and fraud-prevention providers;
  4. from authentication providers, including Facebook Login and Google Login, if you choose to use them;
  5. from advertising, analytics, and attribution partners;
  6. from affiliate tracking and referral activity connected with our Service.

5. Purposes and legal bases of processing

We process personal data for the following purposes and legal bases:

A. Account creation and service delivery

To register accounts, authenticate users, deliver digital content, manage subscriptions, provide access to features, and operate the Service.
Legal basis: performance of a contract; pre-contractual measures.

B. Payments, billing, and records

To process payments, issue invoices, handle billing, maintain financial records, and administer taxes.
Legal basis: performance of a contract; compliance with legal obligations.

C. Customer support and complaints

To respond to inquiries, resolve complaints, and provide user assistance.
Legal basis: performance of a contract; legitimate interests in support and service quality.

D. Security, fraud prevention, and enforcement

To protect the Service, detect abuse, investigate fraud, verify identity where necessary, enforce rights, and comply with sanctions, AML/KYC, or legal restrictions when relevant.
Legal basis: legitimate interests; compliance with legal obligations where applicable.

E. Affiliate program administration

To track referrals, calculate commissions, manage wallet balances, review eligibility, process payout requests, collect tax and payment details, and prevent affiliate fraud.
Legal basis: performance of a contract; legitimate interests; compliance with legal obligations where applicable.

F. Newsletter and direct marketing

To send newsletters, product news, updates, offers, and promotional communications.
Legal basis: consent where required; legitimate interests where permitted by law.

G. Analytics, product improvement, and personalization

To understand usage, measure traffic, improve the Service, optimize performance, personalize content or offers, and support future marketing tools and remarketing activities.
Legal basis: consent where required for cookies/trackers; legitimate interests where lawful.

H. Legal compliance and claims

To comply with legal obligations, tax obligations, accounting requirements, court orders, or legal claims and defenses.
Legal basis: compliance with legal obligations; legitimate interests in establishing, exercising, or defending legal claims.

6. Cookies and similar technologies

We use cookies, pixels, SDKs, tags, and similar technologies for functionality, authentication, analytics, security, attribution, and marketing.

These may include tools and services related to:

  • Google Analytics
  • Meta Pixel
  • PostHog
  • Cloudflare
  • Vercel
  • authentication/session tools
  • advertising and attribution tools used now or in the future

Where required by law, we will request your consent before placing non-essential cookies or similar technologies on your device. You can also manage cookies through your browser settings and any cookie preferences tools we make available.

7. Recipients and processors

We may share personal data with trusted service providers and processors that help us operate Mindbanger, including categories such as:

  • payment processing providers (e.g. Stripe);
  • database, authentication, and backend providers (e.g. Supabase);
  • email and communication providers (e.g. Brevo);
  • hosting, CDN, security, and infrastructure providers (e.g. Vercel and Cloudflare);
  • analytics and product intelligence providers (e.g. Google Analytics and PostHog);
  • marketing and advertising providers (e.g. Meta and Google-related tools);
  • social login or identity providers (e.g. Google Login and Facebook Login);
  • accountants, legal advisers, auditors, regulators, banks, and public authorities where required.

We may also share personal data:

  1. within corporate transactions such as merger, sale, investment, or restructuring;
  2. to protect rights, users, or the public;
  3. where required by law, court order, regulatory requirement, sanctions screening, or lawful request.

8. International data transfers

Because Mindbanger may use global service providers, personal data may be transferred to countries outside the European Economic Area. Where required, we use appropriate safeguards such as adequacy decisions, standard contractual clauses, or other lawful transfer mechanisms.

9. Data retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including:

  • for the duration of your account and service relationship;
  • for the duration of subscription and billing administration;
  • for legally required accounting, tax, and recordkeeping periods;
  • for the duration necessary to resolve complaints, disputes, claims, audits, fraud reviews, or legal obligations;
  • for marketing until you withdraw consent or object where applicable;
  • for affiliate records as needed for program administration, payout verification, tax compliance, fraud prevention, and audit trail purposes.

When retention is no longer necessary, we delete, anonymize, or securely restrict the data, unless continued retention is required by law.

10. Your rights

Subject to applicable law, you may have the right to:

  1. obtain confirmation whether we process your personal data;
  2. access your personal data;
  3. request rectification of inaccurate or incomplete data;
  4. request erasure of data in certain circumstances;
  5. request restriction of processing in certain circumstances;
  6. object to processing based on legitimate interests, including direct marketing;
  7. withdraw consent at any time where processing is based on consent;
  8. receive your data in a portable format where applicable;
  9. lodge a complaint with a competent supervisory authority.

To exercise your rights, contact gdpr@mindbanger.com.

11. Marketing communications

You may unsubscribe from marketing emails at any time by using the unsubscribe link in the email or by contacting us. Transactional and service-related communications may still be sent where necessary for account, billing, or contractual reasons.

12. Children and age limits

Mindbanger is intended for users aged 16 or older. Purchases, paid subscriptions, and affiliate cash payouts are limited to users aged 18 or older. We do not knowingly allow under-16 users to create accounts or use the Service where prohibited. If we learn that personal data was collected in violation of these rules, we may delete or restrict the relevant account and data.

13. Security

We implement reasonable technical, organizational, and contractual measures designed to protect personal data against unauthorized access, accidental loss, misuse, or unlawful alteration. No system is completely secure, and we cannot guarantee absolute security.

14. Changes to this Policy

We may update this Privacy Policy from time to time. The current version will be published on the website with the effective date.

15. Contact

General inquiries: info@mindbanger.com
Support: support@mindbanger.com
Privacy/GDPR: gdpr@mindbanger.com