Privacy Policy

JoCoding, Inc. operates Mirrorly, a no-account, one-time paid service that turns a user-uploaded photo into an AI-generated report image.

The following public business and support details apply to this Privacy Policy.

• Business name: JoCoding, Inc.
• Service name: Mirrorly
• Representative: DONG KEUN JO
• Website: https://jocoding.net
• Support email: mu07010@jocoding.net
• Statement descriptor: JOCODING INC
• Address line 1: 1111B S Governors Ave
• Address line 2: STE 80543
• City/State/ZIP: Dover, DE 19904
• Country: United States

Mirrorly processes personal information to create orders, run Stripe checkout, store uploaded source images, generate AI report images, deliver result emails, provide result pages, respond to support and refund requests, prevent abuse, keep service logs, and comply with applicable legal obligations.

If the processing purpose changes materially, we will provide notice or obtain consent where required by applicable law.

Required information includes email address, uploaded hand or face photo, selected report type, selected result language, order identifiers, Stripe checkout and payment identifiers, source image path, result image path, and order processing status.

Information generated automatically may include IP address, access time, browser and device information, cookies, service usage records, error logs, and Cloudflare country code. The country code may be included in order metadata and may also be used by Stripe Checkout to present localized pricing through Adaptive Pricing.

Mirrorly does not request government identification numbers, passport numbers, driver license numbers, alien registration numbers, card numbers, or full payment method details. Users should not upload images containing identity documents, health information, financial information, or other sensitive information that is not needed for report generation.

Face photos are not used for identity verification or biometric authentication templates. They are used only as input material for the selected report image.

Order and payment-related records are retained for the period needed to provide the service, handle support, process refunds, respond to disputes, and satisfy legal recordkeeping requirements.

Records related to contracts, cancellations, payment, digital content supply, consumer complaints, and dispute handling may be retained for periods required by applicable commerce and consumer protection laws.

Uploaded source images and generated result images are stored in private storage for result delivery and support. If a user requests deletion, we will verify the requester and delete data that no longer needs to be retained for legal or operational reasons.

When personal information is no longer needed, electronic files are deleted in a way designed to make restoration difficult.

Mirrorly does not sell personal information and does not disclose it to third parties for their independent marketing purposes.

Personal information is processed within the purposes described in this Privacy Policy. Where a vendor processes information on our behalf, that relationship is described in the processors and international transfers section.

Mirrorly uses external service providers to operate the service. These providers may process information in the United States, Singapore, Korea, or other regions where they operate infrastructure.

Stripe processes checkout, payment, and payment dispute information. Supabase provides the order database and private image storage. Resend sends result emails. OpenAI processes uploaded images and style references to generate AI images. Cloudflare provides hosting, CDN, security, and access logging. Tencent Cloud Lighthouse hosts the remote generation worker.

Transferred or processed information may include email address, uploaded image, generated result image, order identifiers, payment identifiers, and access logs. The transfer purposes are payment, storage, email delivery, AI generation, web hosting, security, troubleshooting, and support.

Processing and transfers continue for the period needed to provide the service, maintain records, resolve disputes, and comply with legal obligations.

You may request access, correction, deletion, suspension of processing, or portability of your personal information by contacting mu07010@jocoding.net. We may verify your identity before acting on a request.

Where data portability applies, we will provide eligible order and service records in a structured format or explain why a request cannot be fulfilled.

Mirrorly is not intended for children under 14. If we learn that information from a child under 14 has been submitted without appropriate authority, a parent or legal guardian may request access, correction, deletion, or suspension of processing.

Mirrorly may use cookies and similar logs that are necessary for no-account order handling, security, troubleshooting, Cloudflare protection, and Next.js service delivery. We do not currently sell behavioral data or provide it to advertising networks for targeted advertising.

You can restrict or delete cookies in your browser settings. In Chrome, use Settings > Privacy and security > Third-party cookies or Site data. In Safari, use Settings or Preferences > Privacy. In Edge, use Settings > Cookies and site permissions. In Firefox, use Settings > Privacy and Security.

On mobile devices, you can reset or limit advertising identifiers in the privacy or advertising settings of iOS or Android. Blocking necessary cookies may limit checkout, result viewing, security checks, or other service functions.

Mirrorly uses AI to create entertainment-oriented report images based on the uploaded photo, selected report type, and selected language.

The generated output is not used to make decisions that have legal, medical, employment, credit, insurance, or similarly significant effects on a user. It is provided for entertainment and self-reflection only.

The processing flow is source image upload, private storage, worker normalization, AI image generation request, result image storage, result page creation, and email delivery. You may contact us to ask for an explanation, deletion, or regeneration where appropriate.

Mirrorly limits access to personal information to what is needed for operation and support. Uploaded and generated images are stored in private Supabase buckets and are accessed through unguessable tokens or signed URLs where applicable.

Operational safeguards include HTTPS, Stripe checkout, Cloudflare security features, separation of environment secrets, restricted administrator keys, worker logs, and access controls.

Privacy contact: DONG KEUN JO, mu07010@jocoding.net.

Business address: 1111B S Governors Ave, STE 80543, Dover, DE 19904, United States.

For privacy-related disputes, users may also contact the competent privacy, consumer protection, law enforcement, or dispute resolution authority available in their jurisdiction.

This Privacy Policy is effective as of 2026-05-02. If laws, service features, vendors, or processing practices change, we will update this page. Material adverse changes will be announced in advance where reasonably possible or legally required.