M
MoginLabs

Privacy Policy

Last updated: March 1, 2025

This Privacy Policy describes how MoginLabs ("we," "us," or "our") collects, uses, and shares your personal information when you use our products and services, including Heistall and StructMD.

1. Information We Collect

We collect the following types of information:

  • Account Information: Name, email address, and password when you create an account.
  • Payment Information: Payment details are processed securely by our payment processor, Stripe. We do not store your full credit card number on our servers.
  • Usage Data: Information about how you interact with our products, including features used and session duration.
  • Device Information: Browser type, operating system, and device identifiers.
  • Documents: Files you upload to StructMD for processing. These are temporarily stored for conversion and automatically deleted after processing.

2. How We Use Your Information

We use your information to:

  • Provide and maintain our products and services.
  • Process payments and manage your subscription.
  • Send transactional emails (receipts, account updates).
  • Improve our products based on usage patterns.
  • Respond to your support requests.
  • Comply with legal obligations.

3. Payment Processing

We use Stripe as our payment processor. When you make a purchase, your payment information is sent directly to Stripe's secure servers. Stripe's use of your personal data is governed by their Privacy Policy. We only receive limited payment information from Stripe (such as the last four digits of your card and billing address) for record-keeping purposes.

4. Data Sharing

We do not sell your personal data. We share data only with:

  • Stripe: For payment processing.
  • Service Providers: Cloud hosting and analytics services that help us operate our products.
  • Legal Requirements: When required by law, regulation, or legal process.

5. Data Retention

We retain your account data for as long as your account is active. Documents uploaded to StructMD are automatically deleted within 24 hours of processing. You can request deletion of your account and associated data at any time by contacting us.

6. Data Security

We implement industry-standard security measures including encryption in transit (TLS/SSL), encrypted storage, and regular security audits to protect your personal information.

7. Your Rights (GDPR)

If you are located in the European Economic Area, you have the right to:

  • Access your personal data.
  • Correct inaccurate data.
  • Request deletion of your data.
  • Object to or restrict data processing.
  • Data portability.
  • Withdraw consent at any time.

To exercise any of these rights, contact us at [email protected].

8. Cookies

We use essential cookies to maintain your session and preferences. We do not use third-party advertising cookies. You can manage cookie settings in your browser.

9. Children's Privacy

Our services are not intended for children under 13. We do not knowingly collect personal information from children under 13.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through our products. Continued use of our services after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy, contact us at: [email protected]