DeleteMyMug

Privacy Policy

Last updated: February 1, 2026

1. Introduction

DeleteMyMug.com ("Company," "we," "us," or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website at https://deletemymug.com (the "Site") and use our mugshot removal services (the "Services"). We understand that the nature of our Services involves highly sensitive personal information, and we take our responsibility to protect that information seriously.

Please read this Privacy Policy carefully. By accessing or using the Site and Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access the Site or use the Services.

2. Information We Collect

2.1 Information You Provide Directly

When you create an account, submit a removal request, or otherwise interact with our Services, we may collect the following types of personal information:

  • Identity Information: Full legal name, date of birth, and any aliases or previous names used.
  • Contact Information: Email address, phone number, and mailing address.
  • Arrest and Record Information: Details related to the arrest record(s) you wish to have removed, including the county and state of arrest, approximate date of arrest, booking number (if known), and URLs of websites hosting your mugshot.
  • Payment Information: Payment card number, billing address, and other payment details necessary to process your transaction. Note that full payment card details are processed and stored by our third-party payment processor, Stripe, and are not stored on our servers.
  • Account Credentials: Email address and password used to create and access your account.
  • Communications: Any messages, emails, or correspondence you send to us through the Site or via email.

2.2 Information Collected Automatically

When you access the Site, we automatically collect certain information about your device and usage patterns, including:

  • Device Information: IP address, browser type and version, operating system, device type, and unique device identifiers.
  • Usage Information: Pages viewed, links clicked, time spent on pages, referring URL, and other browsing behavior on the Site.
  • Log Data: Server logs that may include your IP address, access times, pages viewed, and other system activity.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing Services: To process your mugshot removal requests, communicate with third-party websites on your behalf, and provide updates on the status of your requests through your account dashboard.
  • Payment Processing: To process payments for the Services through our third-party payment processor, Stripe.
  • Account Management: To create, maintain, and secure your account, and to verify your identity.
  • Communication: To respond to your inquiries, send service-related notifications, and provide customer support.
  • Improvement: To analyze usage patterns and improve the functionality, performance, and user experience of the Site and Services.
  • Legal Compliance: To comply with applicable legal obligations, resolve disputes, and enforce our Terms of Service.
  • Security: To detect, prevent, and address fraud, unauthorized access, and other security issues.

4. Data Sharing and Disclosure

We do not sell your personal information to third parties. We may share your information only in the following limited circumstances:

  • Third-Party Websites: In order to fulfill your removal requests, we must share certain identifying information (such as your name and the relevant mugshot URL) with the third-party websites hosting your mugshot. We share only the minimum information necessary to process the removal request.
  • Service Providers: We share information with trusted third-party service providers who assist us in operating the Site and providing the Services, including:
    • Stripe, Inc. — for payment processing. Stripe's privacy policy is available at https://stripe.com/privacy.
    • Supabase, Inc. — for database hosting and authentication services. Supabase's privacy policy is available at https://supabase.com/privacy.
  • Legal Requirements: We may disclose your information if required to do so by law, regulation, or legal process, or if we believe in good faith that such disclosure is necessary to protect our rights, your safety, or the safety of others, investigate fraud, or respond to a government request.
  • Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or other similar event, your personal information may be transferred to the acquiring entity, subject to the same privacy protections described in this Privacy Policy.

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information about your interactions with the Site. Cookies are small data files placed on your device that help us improve the Site and your experience.

Types of Cookies We Use

  • Essential Cookies: Required for the operation of the Site, including authentication tokens and session management. These cookies cannot be disabled.
  • Analytics Cookies: Help us understand how visitors interact with the Site by collecting information about pages visited, time spent on pages, and other usage metrics. This data is aggregated and anonymized.

Most web browsers allow you to control cookies through their settings preferences. However, disabling certain cookies may limit your ability to use some features of the Site. For more information about how to manage cookies, consult your browser's help documentation.

6. Data Security

We implement commercially reasonable administrative, technical, and physical security measures to protect your personal information from unauthorized access, disclosure, alteration, and destruction. These measures include:

  • Encryption of data in transit using TLS/SSL protocols.
  • Encryption of sensitive data at rest in our database.
  • Row-level security policies to ensure users can only access their own data.
  • Regular security audits and vulnerability assessments.
  • Access controls that limit employee access to personal information on a need-to-know basis.

While we strive to protect your personal information, no method of transmission over the internet or method of electronic storage is completely secure. We cannot guarantee the absolute security of your information. You are responsible for maintaining the security of your account credentials and for notifying us immediately if you suspect any unauthorized access to your account.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Services. After your removal requests have been completed, we retain your account information and removal request records for a period of three (3) years to support ongoing monitoring, handle potential disputes, and comply with our legal obligations. After the retention period expires, your personal information will be securely deleted or anonymized.

You may request the deletion of your account and associated personal information at any time by contacting us at [email protected]. Please note that we may retain certain information as required by law or for legitimate business purposes, such as maintaining records of completed transactions for tax and accounting purposes.

8. Your Rights and Choices

Depending on your location and applicable law, you may have certain rights regarding your personal information:

  • Access: You have the right to request a copy of the personal information we hold about you.
  • Correction: You have the right to request that we correct any inaccurate or incomplete personal information.
  • Deletion: You have the right to request the deletion of your personal information, subject to certain legal exceptions.
  • Portability: You have the right to request that we provide your personal information in a structured, commonly used, and machine-readable format.
  • Opt-Out: You have the right to opt out of receiving promotional communications from us by following the unsubscribe instructions in our emails or by contacting us directly.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within thirty (30) days. We may require you to verify your identity before fulfilling your request.

9. California Residents — CCPA

If you are a resident of the State of California, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), provides you with additional rights regarding your personal information. Under the CCPA, you have the right to:

  • Know: Request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which the information was collected, the business or commercial purpose for collecting the information, and the categories of third parties with whom we share the information.
  • Delete: Request the deletion of personal information we have collected from you, subject to certain exceptions.
  • Correct: Request the correction of inaccurate personal information.
  • Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

We do not sell personal information as defined by the CCPA. We do not use or disclose sensitive personal information for purposes other than those permitted by the CCPA. To submit a CCPA request, please contact us at [email protected] or write to us at the address listed in the Contact Information section below.

10. European Residents — GDPR

While our Services are primarily directed at residents of the United States, we recognize the rights of individuals in the European Economic Area (EEA) and the United Kingdom under the General Data Protection Regulation (GDPR). If you are located in the EEA or UK, you may have additional rights including:

  • The right to access, rectify, or erase your personal data.
  • The right to restrict or object to the processing of your personal data.
  • The right to data portability.
  • The right to withdraw consent at any time, where processing is based on consent.
  • The right to lodge a complaint with a supervisory authority.

Where we process your personal data, we do so on the basis of one or more of the following legal grounds: (a) your consent; (b) the necessity to perform a contract with you; (c) compliance with a legal obligation; or (d) our legitimate business interests, provided those interests do not override your fundamental rights and freedoms. To exercise your rights under the GDPR, please contact us at [email protected].

11. Third-Party Services

Our Services integrate with the following third-party service providers. Each provider has its own privacy policy governing the collection and use of your information:

Stripe (Payment Processing)

We use Stripe, Inc. to process all payments. When you make a purchase, your payment card information is transmitted directly to Stripe and is not stored on our servers. Stripe is PCI-DSS Level 1 certified, the highest level of certification available in the payments industry. For more information, visit Stripe's Privacy Policy.

Supabase (Database and Authentication)

We use Supabase, Inc. for database hosting, user authentication, and backend infrastructure. Your account information and removal request data are stored in Supabase's secure, SOC 2 Type II compliant infrastructure. For more information, visit Supabase's Privacy Policy.

12. Children's Privacy

The Site and Services are not directed to individuals under the age of eighteen (18). We do not knowingly collect personal information from children under 18. If we learn that we have collected personal information from a child under the age of 18, we will take steps to delete that information as quickly as possible. If you believe that a child under 18 has provided us with personal information, please contact us at [email protected].

13. Do Not Track Signals

Some web browsers transmit "Do Not Track" (DNT) signals to websites. Because there is no universally accepted standard for how to respond to DNT signals, we do not currently respond to or honor DNT signals. We will continue to monitor developments in DNT technology and may update this policy if an industry standard for recognizing DNT signals is established.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. If we make material changes to this Privacy Policy, we will notify you by posting the updated policy on the Site with a new "Last updated" date and, where required by law, by sending an email notification to the address associated with your account. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

15. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

DeleteMyMug.com

Email: [email protected]

Website: https://deletemymug.com

For CCPA or GDPR-related requests, please include "Privacy Rights Request" in the subject line of your email. We will respond to all verified requests within thirty (30) days of receipt.