MyAttic
Legal

Privacy Policy

Last updated: March 16, 2026

1. Introduction

MyAttic (“we”, “our”, “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our document organization service.

2. Data We Collect

We collect the following types of information:

  • Account Information: Name, email address, and plan preferences when you sign up.
  • Documents: Files you forward to MyAttic via WhatsApp, Telegram, Email, or Messenger.
  • Metadata: Descriptions and tags you assign to documents for organization.
  • Usage Data: How you interact with the service (searches, feature usage) to improve our product.

3. How We Use Your Data

  • To store, organize, and retrieve your documents as requested.
  • To provide optional AI categorization (only when you enable it).
  • To improve and maintain the service.
  • To communicate with you about your account and service updates.

4. Data Storage & Security

Your data is stored on EU-hosted infrastructure by default. We implement industry-standard security measures including encryption at rest and in transit.

  • All data is hosted in EU data centers.
  • Documents are encrypted at rest using AES-256 encryption.
  • All connections use TLS 1.3 encryption.
  • You can choose to store documents in your own cloud storage (Google Drive, Dropbox).

5. AI & Your Files

AI analysis is always optional and under your control. When enabled, AI processes your documents to suggest categories and descriptions. Your files are never used to train AI models. You can disable AI features at any time.

6. Your Rights (GDPR)

As a user, you have the right to:

  • Access: Request a copy of all data we hold about you.
  • Rectification: Correct any inaccurate personal data.
  • Erasure: Request deletion of your data (“right to be forgotten”).
  • Portability: Export your data in a standard format.
  • Objection: Object to processing of your personal data.
  • Withdrawal: Withdraw consent at any time.

7. Third Parties

We do not sell your data. We may share data with third-party service providers only as necessary to operate the service (e.g., cloud infrastructure, payment processing). All third parties are GDPR-compliant and bound by data processing agreements.

8. Cookies

We use essential cookies only to maintain your session and preferences. We do not use tracking cookies or third-party advertising cookies.

9. Contact

For privacy-related inquiries, contact us at [email protected].