Skip to main content
Home

Privacy Policy

Last updated: March 2026

1. Introduction

Mix Lab AI ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains in detail how we collect, use, disclose, store, and safeguard your information when you use our formulation platform, website, mobile applications, and any related services (collectively, the "Service").

This policy applies to all users of the Service, including visitors to our website, registered account holders, and users of our mobile and tablet applications. By using the Service, you consent to the practices described in this Privacy Policy. If you do not agree with this policy, please do not use the Service.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or the Service. We encourage you to review this policy periodically. The "Last updated" date at the top indicates when the policy was last revised.

2. Information We Collect

We collect information in several ways: directly from you when you provide it, automatically when you use the Service, and from third parties where applicable.

2.1 Information You Provide

Account and profile information. When you register for an account, we collect your email address, name, and your chosen industry or vertical. We use passwordless sign-in (magic links sent to your email); we do not store passwords. You may also provide a profile picture, job title, company name, and contact preferences. We use this information to create and manage your account, personalize your experience, and communicate with you.

Formulation and product data. When you use the Service to create or edit formulations, ingredient lists, test results, production batches, research queries, or other content, we store that data in order to provide the Service. This includes INCI and other ingredient lists, concentrations, supplier information, regulatory notes, iteration history, and any files or attachments you upload. You retain ownership of your content; we process it only as necessary to operate and improve the Service.

Payment and billing information. If you subscribe to a paid plan, we collect billing name, address, and payment method details. Payment card details are processed by our payment provider (e.g. Stripe); we do not store full card numbers on our servers. We may retain billing history and invoices for accounting and dispute resolution.

Communications. When you contact us for support, feedback, or inquiries, we collect the content of your messages and any contact information you provide. We may use this to respond to you, improve our services, and train our support processes.

2.2 Information Collected Automatically

Usage data. We collect information about how you use the Service, including pages and features you access, actions you take (e.g. creating formulations, running compliance checks, using the research or benchmark tools), frequency and duration of use, and referral sources. This helps us understand product usage, enforce quotas, troubleshoot issues, and improve the Service.

Device and technical data. We collect your IP address, browser type and version, operating system, device type and identifiers, screen resolution, language settings, and similar technical data. We use this for security, fraud prevention, compatibility, and analytics.

Log data. Our servers automatically record information such as access times, request URLs, and error logs. We retain logs for a limited period for operational and security purposes.

2.3 Information from Third Parties

We may receive information from third-party services you connect to the Service (e.g. single sign-on or social login), from our payment processor regarding subscription status, or from analytics and marketing partners in accordance with their policies and your choices. We use this information only as described in this policy or with your consent.

3. How We Use Your Information

We use the information we collect for the following purposes:

Providing and operating the Service. We use your account and usage data to authenticate you, display your formulations and data, run regulatory and compliance checks, power the research and benchmark features, and deliver all functionality you use. We use formulation and product data solely to provide the features you request and to store your work securely.

Improving and developing the Service. We analyze aggregated and, where appropriate, de-identified usage data to understand how the Service is used, identify bugs, prioritize features, and improve performance and user experience. We may use feedback and support communications to improve our documentation and product.

Communicating with you. We use your contact information to send you transactional messages (e.g. sign-in links, account confirmation, billing), important service announcements, and, where permitted, product updates and marketing. You can opt out of non-essential marketing communications at any time.

Security and compliance. We use your information to protect the Service and our users from fraud, abuse, and security incidents; to enforce our Terms of Service and acceptable use policies; and to comply with applicable laws, regulations, and legal process.

Legal and business purposes. We may use your information as necessary to establish or defend legal claims, in connection with a merger or sale of assets, or as required by law.

We do not sell your personal information to third parties. We do not use your formulation or product data for advertising purposes or to train third-party AI models in a way that identifies you or your business.

4. Data Retention and Security

Retention. We retain your personal data for as long as your account is active or as needed to provide the Service. After you close your account, we may retain certain data for a limited period for backup, legal compliance, dispute resolution, and enforcement of our agreements. After that period, we delete or anonymize your data in accordance with our retention schedule. You may request earlier deletion subject to legal and operational constraints.

Security. We implement industry-standard administrative, technical, and physical measures to protect your data against unauthorized access, alteration, disclosure, or destruction. These include encryption in transit and at rest, access controls, secure development practices, and regular security assessments. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

Your responsibilities. You are responsible for maintaining the confidentiality of your account credentials. You must notify us promptly of any unauthorized use of your account or any other breach of security.

5. Your Rights and Choices

Depending on your location (including if you are in the European Economic Area, United Kingdom, or certain U.S. states), you may have the following rights:

Access and portability. You may request a copy of the personal data we hold about you in a structured, commonly used format.

Correction. You may request correction of inaccurate or incomplete personal data. You can update much of your account and profile information directly in the Service.

Deletion. You may request deletion of your personal data, subject to exceptions required by law or for legitimate business purposes (e.g. completing transactions, resolving disputes).

Restriction and object. You may request that we restrict processing of your data or object to certain processing (e.g. for direct marketing or profiling where applicable).

Withdraw consent. Where we rely on your consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal.

Complaint. You have the right to lodge a complaint with a supervisory authority in your jurisdiction.

To exercise any of these rights, contact us at privacy@mixlabai.com. We will respond within the time required by applicable law. We may need to verify your identity before processing your request.

6. Third-Party Services and Disclosure

We work with third-party service providers who process personal data on our behalf to host the Service, process payments, send emails, analyze usage, and provide support. These providers are contractually required to protect your data and use it only for the purposes we specify. They may be located in the United States or other countries; when we transfer data internationally, we do so in compliance with applicable law (e.g. using standard contractual clauses or other approved mechanisms).

We may disclose your information if required by law, court order, or government request; to protect the rights, property, or safety of Mix Lab AI, our users, or the public; or in connection with a merger, acquisition, or sale of assets, subject to the same privacy protections.

We do not share your formulation or product data with third parties for their marketing or for training their AI models. We do not sell your personal information.

7. Children's Privacy

The Service is not intended for individuals under the age of 18 (or the age of majority in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us at privacy@mixlabai.com and we will take steps to delete it.

8. International Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States, where our servers and service providers may be located. Laws in those countries may differ from the laws of your jurisdiction. By using the Service, you consent to such transfer and processing. Where required, we implement appropriate safeguards (such as standard contractual clauses) for international transfers.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy in the Service, updating the "Last updated" date, and, where appropriate, sending you an email or in-app notice. Your continued use of the Service after the effective date of changes constitutes your acceptance of the revised policy. We encourage you to review this policy periodically.

10. Contact Us

For privacy-related questions, requests, or complaints, contact us at:

Email: privacy@mixlabai.com

Mix Lab AI
Toronto, Ontario, Canada

We will respond to your request in accordance with applicable law.