Privacy Policy

Last updated: 2026-05-23

INFJ Studio, Inc. (“meshive”, “we”, “us”) provides an AI-native project management tool. This policy explains what we collect, why, and your rights.

1. Who we are

Data controller: INFJ Studio, Inc. (a Delaware corporation), D Dong 1044 Ho, 520 Misa-daero, Hanam-si, Gyeonggi-do, South Korea. Contact: jc@codefactory.ai.

2. Data we collect

• Waitlist (marketing site): your email address and selected role, to notify you about availability. Stored with our email provider (Resend).
• Account data (app): name, email, and authentication identifiers, via our auth provider (Clerk), to create and secure your account.
• Workspace content (app): projects, tasks, workflows, and related content you create, stored in our database (Supabase), to provide the service.
• Product analytics (app): pages viewed, features used, and session recordings (with input fields masked), via PostHog, to understand and improve the product.
• Anonymous analytics (marketing site): aggregate, cookieless usage statistics that do not identify you and set no cookies or device identifiers.

3. Legal bases (EEA/UK users)

• Contract: account and workspace data needed to provide the service you signed up for.
• Legitimate interests: first-party product analytics to operate, secure, and improve meshive; you may object (see Your rights).
• Consent: where required (e.g. non-essential cookies); you accept our Terms and this Policy at signup and can withdraw via account settings.

4. Cookies & tracking

Our marketing site uses cookieless, anonymous analytics and sets no tracking cookies. The logged-in app uses first-party analytics cookies and session recording to improve the product; you accept this at signup and can opt out anytime in account settings. See our Cookie Policy for details.

5. How we share data (subprocessors)

We use vetted service providers (“subprocessors”) who process data on our behalf under data processing agreements. See our Subprocessors page for the current list. We do not sell your personal data.

6. International transfers

We are based in / host data in the United States. Where we transfer personal data from the EEA/UK, we rely on Standard Contractual Clauses and/or the EU-US Data Privacy Framework, as implemented in our agreements with our subprocessors.

7. Data retention

We retain personal data for as long as your account is active or as needed to provide the service, then delete or anonymize it, except where longer retention is required by law. Waitlist data is kept until you unsubscribe or we launch and migrate you.

8. Your rights

Depending on your location you may have rights to access, correct, delete, port, restrict, or object to processing, and to withdraw consent. EEA/UK users may lodge a complaint with a supervisory authority. California (CCPA) users may request to know, delete, and opt out of “sale”/“sharing” (we do not sell or share for cross-context advertising). To exercise rights, email jc@codefactory.ai.

9. Security

We use industry-standard measures (encryption in transit, access controls, reputable infrastructure providers). No system is perfectly secure.

10. Children

meshive is not directed to children under 16 and we do not knowingly collect their data.

11. Changes

We may update this policy; material changes will be noted with a new “Last updated” date.

12. Contact

Questions or requests: jc@codefactory.ai.