MindfulCart ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use the MindfulCart iOS application.
1. Information We Collect
Account Information
When you create an account we collect your email address (used to authenticate you and send transactional emails) and an optional display name.
Usage Data
- Saved items — product URLs you paste or share into the app, along with scraped product metadata (name, price, image URL, category).
- Wallet savings — a ledger of products you decided not to buy, including the price and currency. Strictly virtual — no real money is involved.
- App preferences — cooling period, preferred currency, language, and marketing email opt-in.
We do not collect device identifiers, advertising IDs, or crash reports sent to third parties. Backend logs record anonymized request hostnames and latency only — full product URLs are never logged.
2. How We Use Your Information
| Purpose | Data used |
|---|---|
| Authenticating you | Email address, access token (stored in iOS Keychain) |
| Scraping product metadata | URL you submit (fetched server-side; not stored in logs) |
| Cooling-period and wallet features | Saved items, wallet savings |
| Transactional emails | Email address (confirmation, password reset) |
| Marketing emails (opt-in only) | Email address |
We do not sell, trade, or rent your personal information to third parties and do not use your data for targeted advertising.
3. Data Storage and Security
- Data is stored in a Supabase-hosted PostgreSQL database with Row Level Security enabled — each user can only access their own rows.
- Access tokens are stored in your device's iOS Keychain.
- All communication uses HTTPS/TLS.
- Soft-deleted items are permanently removed from our servers after 30 days.
4. Data Deletion
You can delete your account at any time from Settings → Account → Delete Account. Deletion is immediate and permanent — all your data is removed via cascading database deletion.
5. Third-Party Services
| Service | Purpose | Privacy Policy |
|---|---|---|
| Supabase | Database, authentication, edge functions | supabase.com/privacy |
| Google Cloud Run | Product URL scraping backend | policies.google.com/privacy |
| Apple Sign in with Apple | Optional authentication | apple.com/legal/privacy |
6. Children's Privacy
MindfulCart is not directed to children under 13. We do not knowingly collect personal information from children under 13.
7. Your Rights
- Access your data — Settings → Account → Export Data
- Correct inaccurate data — update your display name in the app
- Delete your data — Settings → Account → Delete Account
- Withdraw marketing consent — Settings → Privacy → Marketing emails
8. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date above.
9. Contact
Questions about this Privacy Policy: herencia.carlos@gmail.com