Privacy Policy
Last updated: March 2026
We know privacy policies aren't exactly a fun read. We've kept this one as clear and honest as we can. No hidden surprises, no small print that changes everything.
Mintro is built by a solo founder in the UK. We treat your data the way we'd want ours treated — with care, and only when there's a genuine reason for it.
Who we are
Mintro is a financial education app for iOS, built and operated in the United Kingdom. When this policy says "we", "us", or "Mintro", it means the team behind the app.
- Contact: hello@mintroapp.com
- Website: mintroapp.com
What data we collect and why
We only collect what we need to make the app work well for you. Here's a straightforward breakdown.
If you use the app without creating an account
You can use Mintro without signing up. When you do, all your progress (lessons completed, XP, streaks, daily goals, achievements, spending tracker entries, and settings) is stored locally on your device using standard iOS storage. None of it leaves your phone. We never see it.
If you create an account (optional)
Creating an account lets you back up your progress and sync it across devices. When you sign in — via Apple Sign In or email — we store the following in our cloud database:
| Data | Why we need it |
|---|---|
| Email address | To identify your account and let you sign in. If you use Apple Sign In with "Hide My Email", we only receive your Apple relay address — never your real email. |
| Display name | So we can personalise the app (e.g. "Welcome back, Sarah"). You can change this at any time. |
| User ID | A unique identifier created when you sign up. Links your progress to your account. |
| Lesson progress | Which lessons you've completed, how you completed them, and XP earned. |
| Achievements & missions | Which achievements you've unlocked and missions you've completed. |
| Streaks & stats | Current streak, longest streak, daily goal setting, total answers, and accuracy. |
| Daily challenge results | Your scores and answers on daily challenges. |
| Spending tracker entries | Amounts, categories, notes, and dates you enter in the spending tracker. |
| User actions | Action steps from lessons that you've saved or marked complete. |
| Knowledge level & money goal | Preferences set during onboarding to tailor your experience. |
| Placement test results | Your score and starting module, if you took the placement test. |
We also store your authentication token securely on your device so you stay signed in between sessions.
Anonymous analytics
We use TelemetryDeck for app analytics. TelemetryDeck is a privacy-first analytics service based in the EU.
- No personal identification. TelemetryDeck does not collect your name, email, IP address, or any information that could identify you personally.
- No cookies. No tracking cookies, no fingerprinting.
- No cross-app tracking. We have no idea what you do outside of Mintro, and we don't want to.
- What is collected: Anonymous, aggregated signals like which screens are popular, how many lessons are completed, and whether errors occur.
- Why: So we can understand how the app is used and make it better. That's it.
TelemetryDeck is GDPR-compliant by design. Their servers are in the EU. You can read their privacy policy at telemetrydeck.com/privacy.
What we do NOT collect
Just to be crystal clear:
- We do not run any advertising in the app.
- We do not use any third-party advertising SDKs or tracking pixels.
- We do not sell, rent, or share your personal data with anyone for marketing purposes.
- We do not build advertising profiles.
- We do not track you across other apps or websites.
- We do not collect your precise location.
- We do not access your contacts, photos, camera, or microphone.
Legal basis for processing your data
Under UK GDPR, we need a lawful reason to process personal data. Here's ours:
| Legal basis | What it covers |
|---|---|
| Contract performance (Article 6(1)(b)) | Processing your account data, syncing your progress, and providing the service you signed up for. |
| Legitimate interests (Article 6(1)(f)) | Anonymous analytics to improve the app. Our interest in understanding how the app is used is balanced against your privacy. |
| Consent (Article 6(1)(a)) | If we ever introduce optional features that require additional data processing, we'll ask first. You can withdraw consent at any time. |
| Legal obligation (Article 6(1)(c)) | If we're required to retain or disclose data by law. |
Where your data is stored
- Local data (no account): Stored on your device only. Never transmitted.
- Account data: Stored in Supabase, with data hosted in the EU (Frankfurt). Encrypted in transit (TLS) and at rest.
- Analytics data: Processed by TelemetryDeck on servers in the EU.
- Payment data: Handled entirely by Apple through the App Store. We never see your payment details.
We do not transfer your personal data outside of the UK and EU/EEA. If this ever changes, we will update this policy and ensure appropriate safeguards are in place.
How long we keep your data
| Data | Retention period |
|---|---|
| Account data and progress | For as long as you have an active Mintro account. |
| After account deletion | All data deleted from our servers immediately. Local data on your device also cleared. |
| Anonymous analytics | Retained indefinitely (aggregated and anonymous — cannot be linked to any individual). |
| Authentication tokens | Cleared when you sign out or delete your account. |
If you stop using the app without deleting your account, your data stays so your progress is there if you come back. If inactive for more than 24 months, we may contact you before deleting your data.
Your rights
Under UK GDPR and the Data Protection Act 2018, you have the following rights. Exercise any of them by emailing hello@mintroapp.com.
- Right of access — Ask for a copy of all personal data we hold. We'll respond within 30 days.
- Right to rectification — Ask us to correct wrong or incomplete data. You can also update your display name in the app.
- Right to erasure — Ask us to delete all your personal data. Use "Delete Account" in the app (Profile > Settings) or email us.
- Right to data portability — Ask for your data in a structured, machine-readable format (JSON).
- Right to restrict processing — Ask us to limit how we use your data while a concern is resolved.
- Right to object — Object to processing based on legitimate interests.
- Right to withdraw consent — Where processing is based on consent, withdraw it at any time.
We respond to all rights requests within 30 days and never charge a fee for reasonable requests.
If you're not happy with how we've handled a request, you can lodge a complaint with the Information Commissioner's Office (ICO):
- Website: ico.org.uk
- Phone: 0303 123 1113
Data security
We take the security of your data seriously:
- All data transmitted between the app and our servers is encrypted using TLS.
- Data stored on our servers is encrypted at rest.
- Authentication uses industry-standard protocols (Apple Sign In via OAuth/OpenID Connect, or email with hashed passwords through Supabase Auth).
- Row-level security on our database means your data can only be accessed by your authenticated account.
- The app does not request unnecessary device permissions.
No system is 100% secure, but we are committed to protecting your data using current best practices and will notify you promptly if a breach ever affects your information.
Children's data
Mintro is designed for adults (target audience: 22–35 year olds). We do not knowingly collect personal data from anyone under 16. If you believe a child under 16 has created an account, contact us at hello@mintroapp.com and we will delete the account promptly.
Cookies and tracking technologies
Mintro does not use cookies. The app is a native iOS application and does not use web-based cookies or tracking technologies. TelemetryDeck also does not use cookies or device fingerprinting.
If you visit our website (mintroapp.com), we may use essential cookies to keep the site working. We do not use advertising or tracking cookies on our website.
Third-party services
Complete list of third-party services that may process data in connection with Mintro:
| Service | Purpose | Privacy policy |
|---|---|---|
| Supabase | Authentication and cloud sync | supabase.com/privacy |
| TelemetryDeck | Anonymous analytics | telemetrydeck.com/privacy |
| Apple (App Store) | App distribution and payments | apple.com/legal/privacy |
We do not use any advertising networks, social media SDKs, crash reporting tools that collect personal data, or any other third-party services beyond what's listed above.
Changes to this policy
If we make changes, we'll update the "Last updated" date. For significant changes, we'll notify you in the app before they take effect.
We won't reduce your privacy protections without giving you clear notice and, where required, obtaining your consent.
How to contact us
If you have any questions about this policy, your data, or anything else privacy-related, we'd genuinely like to hear from you.
- Email: hello@mintroapp.com
We aim to respond to all enquiries within 7 days, and to formal rights requests within 30 days.
This privacy policy applies to the Mintro iOS app and related services. It is governed by the laws of England and Wales and the UK General Data Protection Regulation (UK GDPR) as supplemented by the Data Protection Act 2018.