Privacy

Your information, your terms.

This policy explains what we collect, why, and what you can do about it. Written in plain English. Drafted to comply with the Australian Privacy Principles.

Last updated: 24 May 2026

Who we are

Miroir (“we”, “us”) is an Australian business based in Brisbane, operating the marketplace at miroir.au. We are the data controller for personal information collected through the platform. The operating legal entity will be confirmed before live payments commence.

What we collect

Account information— name, email, phone, password (hashed). We get this when you sign up.
Booking information— the service you booked, date and time, the address we’re sending the artist to, any notes you add.
Payment information— processed by Stripe. We never see your full card number; we store only what Stripe returns (last four digits, brand, expiry).
Artist information— for artists: portfolio images, bio, services, prices, availability, payout details (via Stripe Connect), identification we verify during onboarding.
Usage data— logs of pages viewed, device type, IP address, for security and product improvement.

How we use it

To operate bookings, payments, and payouts.
To verify the identity of artists before they appear on the platform.
To send booking confirmations, reminders, and service updates.
To respond when you contact us.
To investigate fraud, abuse, or safety concerns.

Who we share it with

We share the minimum necessary. The artist you book sees your name, phone, address, and any booking notes — without these, the appointment can’t happen. Stripe processes payments. Supabase and Vercel host our infrastructure. Resend sends our transactional emails. We don’t sell your data and we don’t share it with advertisers.

Your rights

Under the Australian Privacy Act, you can request access to the personal information we hold about you, ask us to correct it, or ask us to delete it. Email privacy@miroir.auand we’ll respond within 30 days.

Retention

We keep booking records for seven years (Australian tax law). We keep account data while your account is active and for 12 months after you delete it (in case of disputes). Payment information is retained by Stripe under their schedule.

Children

Miroir is not directed at people under 16 and we don’t knowingly collect their data.

Changes

If we materially change this policy, we’ll email you before the change takes effect. The “last updated” date above always reflects the current version.

Contact

Privacy questions: privacy@miroir.au. Complaints can also be referred to the Office of the Australian Information Commissioner at oaic.gov.au.