Minora legal
Minora legal
This page explains the product-layer data Minora handles for editing, assets, publish, deploy, remote MCP, and related security workflows. It supplements, rather than replaces, FirstDayLab privacy documents.
FirstDayLab remains the shared source for account, sign-in, authentication, authorization, subscription, entitlement, and billing data. This supplement focuses on Minora's product-layer handling.
This supplement applies to Minora Console, API, remote MCP, local MCP, asset flows, content versions, publish and deploy flows, and challenge or step-up security workflows.
It supplements the FirstDayLab privacy policy for product-layer data used by Minora.
Minora may receive the minimum necessary identity and subscription data from FirstDayLab so Minora can authenticate the current user and enforce the correct product access.
In addition to FirstDayLab data, Minora may process product-layer records created by your use of the service.
Minora uses this data to provide editing, preview, asset management, publish and deploy workflows, product access control, support, troubleshooting, safety checks, and abuse prevention.
Minora should not use FirstDayLab identity or subscription data for unrelated purposes outside the product flow.
If you publish, deploy, or export content, some pages, files, public URLs, deployment metadata, or static outputs may become publicly accessible.
Do not include secrets, tokens, passwords, or other sensitive data in content that you intend to publish.
If you use Minora through Claude, OpenAI, or other supported AI clients or connectors, those third parties may process prompts, files, metadata, or authorization steps under their own policies.
Minora cannot fully control how third-party platforms retain or process their own inputs and outputs.
Minora product-layer data may be disclosed on a need-to-know basis to internal product, support, security, operations, and compliance teams, infrastructure providers, and parties required by law.
If you intentionally use a third-party client or connector, some metadata may also be visible to that third party as part of the requested flow.
Deleting a FirstDayLab account or losing entitlement does not automatically mean that Minora content, published outputs, deployment artifacts, or product-layer audit and security logs are removed immediately.
Some records may need to be retained for safety, fraud prevention, dispute handling, legal obligations, recovery, or incident investigation.
Depending on applicable law, you may have rights to access, update, delete, or request restrictions regarding certain data.
Some requests may be limited where retention is required for security, compliance, accounting, or incident response reasons.
This supplement should be read together with the FirstDayLab privacy policy. FirstDayLab covers identity and subscription-layer processing, while this page covers Minora's product-layer processing.
We may update this supplement from time to time. Material changes may be communicated through the service, by email, or by other reasonable means.