Privacy Policy
1. Data Controller
Responsible for data processing is:
MindUnload UG (limited liability)
Musterstraße 123
12345 Musterstadt
Germany
Email: privacy@mindunload.app
If you have any questions about data protection, you can contact us at any time at the above email address.
MindUnload UG (limited liability)
Musterstraße 123
12345 Musterstadt
Germany
Email: privacy@mindunload.app
If you have any questions about data protection, you can contact us at any time at the above email address.
2. What Data We Collect
Local data (on your device):
- Your entered thoughts, tasks, notes and worries
- App settings and preferences
- Streak and usage statistics
When creating an account (optional):
- Email address
- Username
- Encrypted password
When cloud sync is enabled:
- All local data mentioned above is stored encrypted on our servers
- Your entered thoughts, tasks, notes and worries
- App settings and preferences
- Streak and usage statistics
When creating an account (optional):
- Email address
- Username
- Encrypted password
When cloud sync is enabled:
- All local data mentioned above is stored encrypted on our servers
3. Purpose of Data Processing
We process your data exclusively for the following purposes:
- Providing app functionality
- Storing your thoughts and tasks
- Cloud synchronization (when enabled)
- Improving app quality
- Sending notifications (when enabled)
- Providing app functionality
- Storing your thoughts and tasks
- Cloud synchronization (when enabled)
- Improving app quality
- Sending notifications (when enabled)
4. Legal Basis
Processing is based on:
- Art. 6 Para. 1 lit. a GDPR (consent) for optional features
- Art. 6 Para. 1 lit. b GDPR (contract performance) for core features
- Art. 6 Para. 1 lit. f GDPR (legitimate interest) for security and improvement
- Art. 6 Para. 1 lit. a GDPR (consent) for optional features
- Art. 6 Para. 1 lit. b GDPR (contract performance) for core features
- Art. 6 Para. 1 lit. f GDPR (legitimate interest) for security and improvement
5. Storage Duration
Local data:
Stored until you delete it or uninstall the app.
Cloud data:
Stored as long as your account exists. After account deletion, all data will be irrevocably deleted within 30 days.
Stored until you delete it or uninstall the app.
Cloud data:
Stored as long as your account exists. After account deletion, all data will be irrevocably deleted within 30 days.
6. Your Rights under GDPR
You have the following rights:
- Right to information (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR)
- Right to lodge a complaint with a supervisory authority
- Right to information (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restriction (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR)
- Right to lodge a complaint with a supervisory authority
7. Data Export
You can export all your data at any time via the app. Go to Account Settings and select "Export my data".
8. Third-Party Services
AI Processing:
We use OpenAI to categorize your thoughts. Only the texts you enter are processed. OpenAI stores this data according to their privacy policy.
Push Notifications:
For notifications, we use Expo/Apple/Google services. Only technical data is transmitted, no content.
Speech Recognition:
OpenAI Whisper is used for voice input. Audio data is processed and not permanently stored after transcription.
We use OpenAI to categorize your thoughts. Only the texts you enter are processed. OpenAI stores this data according to their privacy policy.
Push Notifications:
For notifications, we use Expo/Apple/Google services. Only technical data is transmitted, no content.
Speech Recognition:
OpenAI Whisper is used for voice input. Audio data is processed and not permanently stored after transcription.
9. Data Security
We implement technical and organizational measures to protect your data:
- Encrypted transmission (HTTPS/TLS)
- Encrypted password storage (bcrypt)
- Regular security updates
- Access restrictions
- Secure token-based authentication (JWT)
- Encrypted transmission (HTTPS/TLS)
- Encrypted password storage (bcrypt)
- Regular security updates
- Access restrictions
- Secure token-based authentication (JWT)
10. Changes
We reserve the right to adapt this privacy policy. We will inform you of significant changes via the app.