Privacy Policy

Myndfold (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Myndfold mobile application and website (collectively, the “Service”). Please read it carefully. By using our Service, you agree to the data practices described in this policy.

1. Information We Collect

1.1 Information You Provide Directly

• ‣Account Information: When you create an account, we collect your email address and any optional display name you choose.
• ‣App Content: Tasks, routines, energy check-in data, and other planning content you create within Myndfold. This data is stored locally on your device using WatermelonDB and optionally synced to our servers.
• ‣Waitlist Submissions: If you join our waitlist, we collect your email address to notify you when Myndfold is available.
• ‣Found Item Messages: When you use a MyndTap NFC sticker found-item form, we collect any optional message you provide. No personal information about you is stored; the message is forwarded anonymously to the item owner.

1.2 Information Collected Automatically

• ‣Usage Analytics (PostHog): We use PostHog in cookieless mode to understand how visitors use our website. PostHog is configured with person_profiles: 'never' and persistence: 'memory', meaning no cookies are set, no user profiles are created, and no data persists between sessions. Events captured include page views, button clicks, scroll depth, and feature interactions. This data is fully anonymous and cannot be linked back to you personally.
• ‣Error Reporting (Sentry): We use Sentry to capture application errors and crashes. Error reports may include device type, operating system version, app version, and a stack trace of the error. Sentry does not collect personally identifiable information beyond what is strictly necessary for debugging.
• ‣Subscription Data (RevenueCat): If you subscribe to Myndfold Pro or Family, RevenueCat processes your in-app purchase data on behalf of Apple or Google. RevenueCat receives a pseudonymous user ID and subscription status information. Your payment details are handled directly by the App Store or Google Play and are never visible to Myndfold.

2. How We Use Your Information

• ‣To provide, operate, and improve the Service
• ‣To authenticate your account and maintain security (via Supabase Auth)
• ‣To process subscription payments and manage access to Pro features
• ‣To send you transactional emails (account verification, password reset, waitlist notifications)
• ‣To diagnose bugs and crashes via error reports
• ‣To understand aggregate usage patterns and improve the user experience

We do not sell your personal information to third parties. We do not use your data to build advertising profiles. We do not share your personal information with any third party except our service providers (described in Section 4) acting on our behalf.

3. Local-First Data Storage

Myndfold is designed with a local-first philosophy. Your tasks, routines, and energy check-in data are stored primarily on your device using WatermelonDB (a high-performance local database). This means:

• ‣The app works fully offline without sending your planning data to our servers
• ‣Optional cloud sync requires account creation and sends data to Supabase servers
• ‣Deleting your account removes all synced data from our servers

4. Third-Party Service Providers

We use the following third-party services to operate Myndfold. Each has its own privacy policy and data practices:

5. What We Do Not Collect

We want to be explicit about what we do not collect:

• ✓We do not set tracking cookies on our website
• ✓We do not build advertising profiles
• ✓We do not sell your data to data brokers or advertisers
• ✓We do not collect your location data
• ✓We do not access your contacts, microphone, or camera (unless you explicitly grant permission for a specific feature)
• ✓We do not read the content of your tasks or routines for any purpose other than syncing them to you
• ✓We do not use your health or neurodivergent status data for any purpose outside of providing the Service to you

6. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we will delete your personal information from our active databases within 30 days. Some data may be retained in encrypted backups for up to 90 days before being permanently purged. Anonymised, aggregate analytics data (which cannot identify you) may be retained indefinitely for product improvement purposes.

7. Your Rights

Depending on your location, you may have rights including:

• ‣The right to access the personal data we hold about you
• ‣The right to correct inaccurate personal data
• ‣The right to delete your account and associated personal data
• ‣The right to data portability (receive your data in a machine-readable format)
• ‣The right to withdraw consent where processing is based on consent
• ‣The right to lodge a complaint with your local data protection authority

To exercise any of these rights, please contact us at privacy@myndfold.app.

8. Children's Privacy

Myndfold is not directed to children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us immediately at privacy@myndfold.app and we will take steps to delete that information.

9. International Data Transfers

Myndfold is operated from the United States. If you access the Service from outside the United States, your information may be transferred to and processed in the United States or other countries where our service providers operate. We rely on Standard Contractual Clauses (SCCs) and other appropriate safeguards to ensure adequate protection for international transfers.

10. Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These include encrypted data transmission (TLS), encrypted storage, access controls, and regular security reviews. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the “Last updated” date at the top of this page and, where appropriate, sending you an in-app or email notification. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: