Privacy Policy

Last updated: February 9, 2026

1. Introduction

MeltyMap ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web-based platform for creating Perler bead patterns.

By using MeltyMap, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Username: A unique identifier you choose
  • Email address: Used for account verification, communication, and password recovery
  • Password: Stored in encrypted form (we cannot see your actual password)

2.2 Pattern and Content Data

When you use the Service, we may collect and store:

  • Patterns you create: When you save or share patterns, we store pattern data (bead colors, grid layout, dimensions) on our servers
  • Shared patterns: Patterns you choose to share publicly are stored and made available to other users
  • Custom color sets: Color palettes you create and save
  • Pattern metadata: Titles, descriptions, tags, and other information you provide about your patterns

Note: Original images you upload for pattern creation are processed in your browser. We do not store the original uploaded images on our servers unless you explicitly save or share the resulting pattern.

2.3 Payment and Subscription Information

For Pro subscription plans, we collect:

  • Subscription details: Plan type (Monthly/Yearly), subscription status, billing period
  • Payment information: Processed securely through Stripe. We do not store your full credit card details on our servers
  • Billing history: Records of subscription purchases and renewals
  • Stripe Customer ID: Used to manage your subscription and process payments

2.4 Usage and Technical Information

We automatically collect certain information when you use the Service:

  • Usage Analytics: We use Google Analytics to collect anonymized usage data, such as page views, features used, session duration, and general location (country/city level)
  • Technical Information: Browser type, device type, operating system, screen resolution, and IP address
  • Server Logs: Standard web server logs including IP addresses, request times, pages accessed, and error messages
  • Cookies and Local Storage: We use cookies and browser local storage to maintain your session, remember preferences, and improve user experience

2.5 Communication Data

If you contact us, we may collect:

  • Contact information you provide (name, email address)
  • Content of your messages or inquiries
  • Any other information you choose to provide

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide and maintain the Service: Creating and managing your account, processing subscriptions, storing and displaying your patterns
  • To process payments: Managing subscription billing, processing payments through Stripe, sending payment confirmations
  • To communicate with you: Sending account-related notifications, responding to inquiries, providing customer support
  • To improve the Service: Analyzing usage patterns, identifying technical issues, developing new features
  • To enable community features: Displaying shared patterns, enabling pattern browsing and search functionality
  • To ensure security: Detecting and preventing fraud, unauthorized access, and other security threats
  • To comply with legal obligations: Responding to legal requests, enforcing our Terms of Service, protecting our rights
  • For marketing (with consent): Sending promotional communications about new features or offers (you can opt out at any time)

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

  • Publicly Shared Content: Patterns you choose to share publicly are visible to all users of the Service. This includes pattern data, titles, descriptions, and your username.
  • Payment Processing: We share payment information with Stripe, our payment processor, to process subscription payments. Stripe's use of your information is governed by their Privacy Policy.
  • Service Providers: We may share information with third-party service providers who perform services on our behalf, such as hosting, analytics, and customer support. These providers are contractually obligated to protect your information.
  • Legal Requirements: We may disclose information if required by law, court order, or government regulation, or to protect our rights, property, or safety, or that of our users or others.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.
  • With Your Consent: We may share your information with your explicit consent for any other purpose.

5. Third-Party Services

Our Service integrates with third-party services that have their own privacy policies:

We are not responsible for the privacy practices of these third-party services. We encourage you to review their privacy policies.

6. Cookies and Local Storage

We use cookies and browser local storage for the following purposes:

  • Authentication: Maintaining your login session
  • Preferences: Remembering your settings, color palette selections, and display preferences
  • Analytics: Tracking usage patterns and improving the Service (via Google Analytics)
  • Functionality: Enabling features and maintaining application state

You can control cookies through your browser settings. However, disabling cookies may affect the functionality of the Service. Most browsers allow you to refuse or delete cookies, but doing so may prevent you from accessing certain features.

7. Data Security

We implement appropriate technical and organizational security measures to protect your information:

  • Encryption: HTTPS encryption for all data transmission
  • Secure Storage: Passwords are hashed and encrypted. Sensitive data is stored securely
  • Access Controls: Limited access to personal information on a need-to-know basis
  • Regular Updates: Keeping our systems and software up to date with security patches
  • Payment Security: Payment information is processed through Stripe's secure payment infrastructure. We do not store full credit card details

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

8. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes outlined in this Privacy Policy:

  • Account Information: Retained while your account is active and for a reasonable period after account deletion to comply with legal obligations
  • Patterns: Retained as long as your account is active. Shared patterns may remain visible even after account deletion unless you delete them first
  • Payment Records: Retained as required by law for accounting and tax purposes (typically 7 years)
  • Server Logs: Typically retained for 30-90 days for security and troubleshooting purposes

You can request deletion of your account and associated data at any time through your account settings or by contacting us.

9. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

  • Access: Request access to the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your account and associated data (subject to legal retention requirements)
  • Portability: Request a copy of your data in a portable format
  • Opt-Out: Opt out of marketing communications and certain data collection (e.g., Google Analytics)
  • Objection: Object to processing of your information for certain purposes
  • Restriction: Request restriction of processing in certain circumstances

To exercise these rights, please contact us through our DMCA/Contact page. We will respond to your request within a reasonable timeframe and in accordance with applicable law.

Account Settings: You can update your account information, manage your subscription, and control certain privacy settings through your account dashboard.

10. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.

If you are between 13 and 18 years of age, you represent that you have your parent's or guardian's permission to use the Service and agree to our Terms of Service.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using the Service, you consent to the transfer of your information to these countries.

We take appropriate safeguards to ensure that your information receives an adequate level of protection in accordance with this Privacy Policy.

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your privacy rights

To exercise these rights, please contact us through our DMCA/Contact page.

13. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent at any time
  • Right to lodge a complaint with a supervisory authority

Our legal basis for processing your information includes: (1) your consent, (2) performance of a contract, (3) compliance with legal obligations, and (4) our legitimate interests.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by:

  • Posting the updated Privacy Policy on this page with a new "Last updated" date
  • Sending an email notification to registered users (for significant changes)
  • Displaying a notice on the Service (for major changes)

Your continued use of the Service after changes are posted constitutes acceptance of the updated Privacy Policy. If you do not agree to the changes, you should stop using the Service and may delete your account.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us through our DMCA/Contact page.

We will respond to your inquiry within a reasonable timeframe and in accordance with applicable law.

← Back to Home