Privacy Policy

a) Creators (registered accounts)

• Email address (for account authentication and notifications)
• Display name / username
• Training content you submit (personality descriptions, interests, opinions, career background) — stored encrypted in our database
• Stripe Connect account ID (if you connect Stripe for payouts) — we never store full banking details
• Account settings and preferences
• Aggregate usage statistics (total sessions, total messages)

b) Fans / Visitors

• A randomly-generated visitor token stored in your browser's localStorage — no name, email, or account is required
• Chat messages you send to a ME (stored temporarily to maintain conversation context within a session; not linked to your real identity)
• Free message count per Creator, stored in your browser's localStorage
• Payment information if you purchase credits — processed entirely by Stripe, Inc. NYMM receives only confirmation of payment and the credit amount purchased. We never see or store your card number, bank details, or billing address.

c) Automatically collected

• Server logs including IP addresses, browser type, and pages visited — retained for up to 30 days for security and debugging purposes
• Basic analytics on session volume (no third-party ad tracking or behavioral profiling)

• To create and maintain your Creator account
• To power your ME — your training content is used to generate AI responses
• To process payments and facilitate Creator payouts via Stripe
• To send transactional emails (account verification, password reset) via Resend — we do not send marketing emails without your explicit consent
• To enforce our Terms of Service and prevent abuse
• To improve the Service (aggregate, anonymized data only)

We do not sell your personal data. We do not use your data to train AI models for purposes other than powering your own ME.

NYMM uses the following third-party services, each with their own privacy policies:

We choose service providers that maintain strong security standards, but we cannot guarantee the privacy practices of third parties. We recommend reviewing their respective privacy policies.

Creator training content is stored encrypted using AES-256-GCM encryption at rest. All data in transit is encrypted via TLS/HTTPS.

Visitor tokens and free message counts are stored entirely in your browser's localStorage — they never leave your device except as anonymous session identifiers.

No system is 100% secure. If you become aware of any security vulnerability involving NYMM, please contact us immediately at contact@nymm.me.

• Creator accounts: Data retained while your account is active. Deleted within 30 days of account deletion.
• Chat sessions: Session chat history is not permanently stored on our servers after the session ends. Conversation context within an active session is held in memory only.
• Server logs: Retained up to 30 days.
• Payment records: Retained as required by applicable tax and financial regulations (typically 7 years).

NYMM does not use third-party tracking cookies or advertising cookies. We use browser localStorage solely for functional purposes:

• me_visitor_token — anonymous session identifier to track credit balance and free message usage
• me_free_[id] — count of free messages used with a specific Creator
• me_has_credits_[id] — flag indicating a credit purchase has been made

You can clear these at any time by clearing your browser's localStorage. No tracking pixels, cross-site identifiers, or advertising networks are used.

NYMM is not directed at children under 18 years of age. We do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us with personal information, please contact us immediately at contact@nymm.me and we will delete such information promptly.

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the data we hold about you.
• Correction: Request correction of inaccurate data. Most data can be updated directly in your account settings.
• Deletion: Request deletion of your account and associated data. Use the account deletion option in Settings or contact us.
• Portability: Request an export of your training data in a portable format.
• Opt-out: You can opt out of any optional communications at any time.

California residents (CCPA): You have the right to know what personal information is collected, to opt out of the sale of personal information (we do not sell personal information), and to non-discriminatory treatment for exercising your rights.

EU/EEA residents (GDPR): Our lawful bases for processing are performance of a contract (to provide the Service) and legitimate interests (security, fraud prevention). For data processed with your consent, you may withdraw consent at any time.

To exercise any right, contact us at contact@nymm.me. We will respond within 30 days.

NYMM is based in the United States. If you access the Service from outside the US, your data may be transferred to and processed in the United States. By using the Service, you consent to this transfer. We rely on the safeguards provided by our service providers (Supabase, Stripe, etc.) for international data transfers.

We may update this Privacy Policy from time to time. When we do, we will revise the "Effective date" at the top. Material changes will be communicated via email (for registered Creators) or a notice on the Service. Continued use after changes take effect constitutes acceptance.

For privacy-related questions, requests, or concerns, contact us at:

contact@nymm.me