Legal
Last updated: June 2026
Contents
Mika Sites is a product of Mika Digital Pty Ltd (ABN to be confirmed), based in Australia. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use the Mika Sites website builder platform.
By creating an account or using any part of the Mika Sites service, you agree to the practices described in this policy. If you do not agree, please do not use our service.
Account data — When you register, we collect your name, email address, and password (stored as a salted hash). If you provide business details during onboarding, these are stored as part of your business profile.
Business profile content — Services, team members, gallery images, FAQs, opening hours, and other content you add to your profile. This content is used to generate and render your website.
Usage data — Pages visited, features used, click events, session duration, and referral source. Collected via anonymised analytics to improve the product.
Payment data — Billing name, card last four digits, and billing address. Full card details are processed by our payment provider (Stripe) and never stored on our servers.
Technical data — IP address, browser type, device type, and operating system, collected automatically when you access the platform.
Communications — If you contact us via email or support, we retain those communications to assist you and improve our service.
To provide and operate the Mika Sites service — including generating your website, managing your account, and processing payments.
To send transactional emails — account confirmation, password reset, billing receipts, and service status notifications.
To improve the platform — aggregate, anonymised usage data helps us understand how features are used and where to focus development.
To communicate product updates — we may occasionally send emails about new features or important service changes. You can unsubscribe from marketing emails at any time.
To comply with legal obligations — we may retain or disclose information where required by Australian law or a valid legal process.
We work with a small number of trusted third-party providers to operate the platform:
Supabase — database storage and authentication. Your account and business profile data is stored on Supabase-managed infrastructure. Supabase is SOC 2 compliant.
Stripe — payment processing. When you add a payment method, you are interacting directly with Stripe. We do not receive or store your full card number.
Vercel / Cloudflare — website delivery and CDN hosting. Your generated website is served through globally distributed infrastructure.
We do not sell your personal information to third parties. We do not share it with advertising networks or data brokers.
We retain your account and business profile data for as long as your account is active or as needed to provide the service.
If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or regulatory reasons (e.g., billing records for tax purposes, which are kept for 7 years as required by Australian tax law).
We implement industry-standard security measures including TLS encryption in transit, bcrypt password hashing, and role-based access controls.
While we take data security seriously, no system is completely immune to breach. If a security incident occurs that affects your personal data, we will notify you in accordance with Australian privacy law.
Under the Australian Privacy Act 1988 and, where applicable, the GDPR, you have the right to:
Access the personal information we hold about you.
Request correction of inaccurate or incomplete personal information.
Request deletion of your personal information (subject to legal retention requirements).
Object to or restrict certain types of processing.
Receive a copy of your data in a portable format.
To exercise any of these rights, email us at privacy@mikadigital.com.au. We will respond within 30 days.
We may update this policy from time to time. When we make material changes, we will notify you by email or by displaying a notice in the platform at least 7 days before the change takes effect.
Your continued use of Mika Sites after changes become effective constitutes acceptance of the updated policy.
If you have questions about this Privacy Policy or how we handle your data, please contact:
Mika Digital Pty Ltd · privacy@mikadigital.com.au
We aim to respond to all privacy-related enquiries within 5 business days.