Privacy Policy

Overview

Mermaid Editor (mermaideditor.io) and the Mermaid Anywhere Chrome extension are operated by Starmorph. This policy explains what data we collect, how we use it, and your rights regarding that data.

Mermaid Editor (Web App)

Data stored in your browser

Diagrams and preferences are stored in your browser's localStorage. We do not have access to this data unless you explicitly share a diagram via URL.

Account data

If you create an account, we collect your email address and authentication data. Authentication is managed by Clerk. We use your Clerk user ID to associate your account with saved charts and subscription status.

Analytics

We use PostHog for anonymous usage analytics (page views, feature usage, export events). For unauthenticated users, no personally identifiable information is collected. For authenticated users, your Clerk user ID is used as a distinct identifier to improve the product experience.

Payments

Payments are processed by Stripe. We do not store your credit card information. Stripe receives your payment details directly. We store your Clerk user ID in Stripe metadata to associate purchases with your account.

AI diagram generation

When you use the AI diagram generator, your text prompt is sent to third-party AI providers (Anthropic, Google) to generate Mermaid code. We do not store your prompts or the generated output on our servers. The AI providers' own privacy policies apply to the processing of your prompts.

Cookies

We use essential cookies for authentication (Clerk session cookies) and analytics (PostHog). We do not use advertising or third-party tracking cookies.

Mermaid Anywhere (Chrome Extension)

The extension collects zero data.

• No user data, browsing history, or page content is collected, transmitted, or stored.
• All diagram rendering happens locally on your device using an offscreen document. No data is sent to any server.
• The extension contains no analytics, telemetry, or tracking of any kind.
• The "Edit in Mermaid Editor" button opens mermaideditor.io with the diagram code encoded in the URL. This is a standard navigation — no data is transmitted to our servers beyond what is visible in the URL.

Third-Party Services

• Clerk — Authentication and user management
• Stripe — Payment processing
• PostHog — Product analytics
• Vercel — Hosting and deployment
• Anthropic / Google — AI diagram generation

Each service operates under its own privacy policy. We recommend reviewing their policies for details on their data practices.

Data Sharing

We do not sell, trade, or transfer your personal data to third parties for advertising or marketing purposes. Data is shared only with the service providers listed above, solely to operate the product.

Data Retention

• Analytics data: retained for 12 months
• Account data: retained until you delete your account
• Payment records: retained as required by tax/financial law
• Chrome extension: stores no data

Your Rights

You can request access to, correction of, or deletion of your personal data at any time. To delete your account and associated data, contact us at support@starmorph.com.

Security

All data transmission uses HTTPS encryption. Authentication is managed by Clerk with industry-standard security practices including secure session tokens and optional multi-factor authentication.

Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of the service after changes constitutes acceptance of the updated policy.

Contact

Questions about this policy? Email support@starmorph.com.