Mimea|Phytopedia
Sign inJoin free
Mimea

Privacy Policy

Last updated: April 22, 2026

1. Who We Are

Mimea is operated by TrustTech Digital, a division of Bevon Co LLC (“we”, “us”, “our”). Mimea is a plant-based education and community platform available at mimea.co and through the Mimea mobile app (Android and iOS).

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and password. If you register a business account, we also collect your business name.

Profile Information

You may optionally provide your display name, avatar (profile photo), location, interests, and referral source. This helps us personalize your experience and connect you with relevant groups and content.

User-Generated Content

We store content you create on Mimea, including posts, comments, discussion replies, reactions (likes), and messages sent through the platform.

Usage Data

We collect information about how you interact with Mimea, including pages visited, features used, groups joined, app interactions, and discussions participated in.

Device & Technical Information

When using the Mimea website or mobile app, we collect your IP address, device type, operating system version, app version, and browser type for diagnostics, security, and compatibility purposes.

Community Data (Optional)

If you opt in to data sharing during registration, we may use anonymized and aggregated wellness experience data to generate community insights. This data is never sold or shared individually. You can opt out at any time in your profile settings.

Event & Payment Data

When you purchase event tickets or memberships, payment is processed by Stripe. We store your name, email, phone number (if provided), and ticket/order details. We do not store credit card numbers — Stripe handles all payment data securely.

3. How We Use Your Information

  • To provide and maintain the Mimea platform and mobile app
  • To create and manage your account
  • To display your posts, comments, and reactions in the community feed
  • To personalize your experience (group recommendations, content suggestions)
  • To process event tickets and membership payments
  • To send push notifications, event reminders, community updates, and service notifications
  • To moderate content and enforce community guidelines
  • To generate anonymized community insights (only if you opt in)
  • To respond to your support requests
  • To detect and prevent fraud or abuse
  • To comply with legal obligations

4. How We Store Your Data

Your data is encrypted in transit using HTTPS/TLS. Account data is stored on our Directus backend hosted on DigitalOcean infrastructure. Passwords are hashed using industry-standard algorithms and are never stored in plain text. Payment data is handled entirely by Stripe (PCI-DSS compliant) and is not stored on our servers.

5. Information Sharing

We do not sell your personal information. We share data only with:

  • Stripe — for payment processing
  • DigitalOcean — for hosting infrastructure
  • Cloudflare — for content delivery and security
  • Expo (React Native) — for push notification delivery on mobile
  • Service providers — who assist with email delivery (under data processing agreements)

Your public profile information (display name, profile photo, groups) is visible to other Mimea members. Posts and discussions you create within groups are visible to group members.

6. Data Retention

We retain your account data for as long as your account is active. If you delete your account:

  • Your profile, display name, avatar, posts, comments, reactions, and messages will be deleted within 30 days
  • Your group memberships and subscriptions will be cancelled immediately
  • Financial transaction records (payment history, receipts) are retained for up to 7 years as required by tax and accounting regulations — these records do not include your profile information or community activity
  • Anonymized usage analytics may be retained indefinitely as they cannot be linked back to you

7. Your Rights

You have the right to:

  • Access your personal data via your profile settings
  • Correct inaccurate information in your profile
  • Delete your account and associated data at mimea.co/account/delete
  • Opt out of community data sharing in your profile settings
  • Unsubscribe from marketing emails using the link in any email

You can also request data deletion by emailing [email protected]. We will process your request within 30 days.

8. Data Security

We use industry-standard security measures including HTTPS encryption, secure authentication tokens, and access controls. Passwords are hashed and never stored in plain text. Payment data is handled entirely by Stripe (PCI-DSS compliant).

9. Children’s Privacy

Mimea is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify registered users of material changes via email. The “last updated” date at the top reflects the most recent revision.

11. Contact Us

If you have questions about this privacy policy or your data, contact us at: