Privacy policy

Effective Date: 20.03.2025
Latest Update: 20.03.2025

1. Introduction

Welcome to MindCore ("we," "our," or "us"), a mobile application developed by CS TECHNOLOGIES, LDA. Your privacy is important to us. This Privacy Policy explains how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA/CPRA), and other applicable laws.

Please read this privacy policy carefully as it describes our privacy practices and how we will collect, use, and disclose any personal information we collect from you, or that you provide to us, in connection with MindCore. This privacy policy forms a part of and is incorporated into the Terms of Use for MindCore.

2. Data We Collect

We may collect and process the following personal information about you:

• Information You Provide: Name, email address and any other details you provide when creating an account or using app features.

• Automatically Collected Data: Location, device information, system performance information, usage data, and logs.

• Communications with Us: You may also provide us with information when you provide us feedback or communicate with our customer support team about a support question.

• Third-Party Data: Information from third-party services that may identify you as an individual or allow online or offline contact with you as an individual (e.g., authentication providers, analytics tools).

• Mobile Analytics: Information such as how often you engage with MindCore, the events that occur within MindCore, aggregated usage and performance data, and where MindCore was downloaded from. We may link the information we store within the analytics software to any personal information you submit within the mobile application.

Please note: We do not store any personal notes, journal entries, mood logs, or thought tune-up submissions on our servers. All such data is kept exclusively on your device.

In our cloud database (Firebase), we store only the following information to support account management and communication:

• Your email address

• Optional first and last name

• Unique user identifier (UID)

• Your acceptance of the Terms of Use and Privacy Policy

• Push notification token (to send important system messages)

This information is necessary to provide secure access to your account, manage subscriptions, and send essential notifications.

We may also ask you to complete surveys that we use for research purposes. Your participation in these surveys is entirely voluntary and will not impact your use of any of the services.

3. How We Use Your Data

We process your personal data for the following purposes:

• To provide and improve our services

• To respond to your requests, resolve disputes, and/or troubleshoot problems

• To provide you with information related to MindCore that will facilitate your engagement with MindCore

• To analyze app usage and optimize user experience

• To send notifications and updates (with your consent)

• To comply with legal obligations

We will communicate with you primarily in the form of texts, push alerts, and emails. You can manage the frequency and/or opt out of receiving these communications by changing your settings on the App, and/or clicking the “Unsubscribe” link at the bottom of each marketing email. Please note that even if you unsubscribe or opt out of our emails, we may still send you services-related communications (e.g., emails related to your account or the MindCore app).

4. Legal Basis for Processing

If you are in the EU, our legal grounds for processing your personal information include:

• The use is necessary to fulfil our commitments to you under applicable terms or to administer your account — for example, in order to enable access to our service on your device or to charge you for a paid plan;

• The use is necessary for compliance with a legal obligation

• The use is necessary to protect your vital interests or those of another person

• We have a legitimate interest in using your information (e.g., to improve services, communicate with users, ensure security)

• You have given us your consent

If you are located in the EEA, the UK, or Switzerland and have concerns about our data processing, you have the right to contact your local Data Protection Authority:

• EEA: https://edpb.europa.eu/about-edpb/board/members_en

• UK: https://ico.org.uk/global/contact-us/

• Switzerland: https://www.edoeb.admin.ch/edoeb/en/home/the-fdpic/contact.html

US Privacy Laws

Some US states require us to provide additional details about the categories of personal information we collect and how we use it.

In the last 12 months, we collected the following categories of personal information, depending on the services used:

• Identifiers (like your name, contact information, and device and

  online identifiers);

• Commercial information (your billing information and purchase history, for example);

• Characteristics protected by law (for example, you might provide your

  gender as part of a research survey for us);

• Internet or other electronic network activity information (such as

  your usage of our Services);

• Geolocation data (such as your location based on your IP address)

We collect personal information for the business and commercial purposes described in the “How We Use Your Data” section. And we share this information with the categories of third parties described in the “How We Share Information” section. We retain this information for the length of time described in our “Data Retention” section.

In some US states you have additional rights, subject to any exemptions provided by your state’s respective law, including the right to:

• Request a copy of the specific pieces of information we collect about you and, if you’re in California, to know the categories of personal information we collect, the categories of business or commercial purpose for collecting and using it, the categories of sources from which the information came, and the categories of third parties we share it with;

• Request deletion of personal information we collect or maintain;

• Request correction of personal information we collect or maintain;

• Opt out of the sale or sharing of personal information;

• Receive a copy of your information in a readily portable format;

• Not receive discriminatory treatment for exercising your rights under

  the CCPA.

We do not “sell” or “share” your personal data as those terms are defined under the privacy laws of the relevant US states. We also do not have any knowledge of any “sales” or “sharing” of the personal data of minors under 16 years of age. We do not collect or process your sensitive personal information except where it is strictly necessary to provide you with our service, where the processing is not for the purpose of inferring characteristics about you, or for other purposes that do not require an option to limit under California law.

5. Your Rights

If you are located in certain parts of the world, including some US states and countries that fall under the scope of the European General Data Protection Regulation (aka the “GDPR”) or CCPA, you may have certain rights regarding your personal information, like:

• Access, correct, or delete your data

• Withdraw consent (where applicable)

• Object to our use and processing of your personal data

• Request data portability

• Opt-out of data sales (Note: We do not sell your data)

• Lodge a complaint with a data protection authority

To exercise these rights, contact us at: legal@mindcoreapp.com

6. Data Sharing and Transfers

We might share your data with following entities:

• Third-Party Service Providers: We use Google Analytics, Firebase, Expo, and RevenueCat to provide essential app functionality. These services may process user data.

• Legal Compliance: We may disclose data if required by law.

• International Transfers: Because our Services are offered worldwide, the information about you that we process when you use the Services in the EU may be used, stored, and/or accessed by individuals operating outside the European Economic Area (EEA) who work for us, other members of our group of companies, or third-party data processors. This is required for the purposes listed in the “Data We Collect” section above. When providing information about you to entities outside the EEA, we will take appropriate measures to ensure that the recipient protects your personal information adequately in accordance with this Privacy Policy as required by applicable law. These measures include entering into European Commission approved standard contractual arrangements with entities based in countries outside the EEA. You can ask us for more information about the steps we take to protect your personal information when transferring it from the EU.

7. Data Retention

We will retain the personal information we collect from or about you only for so long as we require it to satisfy the purposes for which we collected the information. We will also retain your personal information for as long as is required to meet our various legal and business obligations, which in some cases might be for a longer period than is necessary to satisfy the purposes for collection.

You can always delete your account and associated data through the app's settings.

8. Security Measures

We implement technical and organizational measures to protect your data against unauthorized access, loss, or misuse. Firebase, our cloud provider, applies industry-standard security practices.

Unfortunately, the transmission of information via the Internet is not completely secure. Although we will do our best to protect your personal information, we cannot guarantee the security of your information transmitted to MindCore; any transmission is at your own risk.

If you are using password as an authentication method, you are responsible for keeping this password confidential. We ask you not to share a password with anyone and suggest that you change your password frequently.

If you have enabled your device to access the app without entering a password, you are also responsible for ensuring your personal information is protected by not allowing others to use your device without your permission.

9. Third Party Websites

It’s important to guard your privacy online. If MindCore contains links to other websites, this privacy policy does not govern those websites. Whether we have posted those links or other organizations, or individuals have, you should read their privacy notices and make an informed decision about whether you want to use those websites or their services.

10. Children's Privacy

Our Services are not directed to children, and children are not eligible to use our Services. Protecting the privacy of children is very important to us. We do not collect or maintain personal information from people we actually know are under 13 years of age, and no part of our Services is designed to attract people under 13 years of age. If we later learn that a user is under 13 years of age, we will take steps to remove that user’s personal information from our databases and to prevent the user from utilizing the Services.

11. Changes to This Policy

We may update this Privacy Policy periodically. Your continued use of MindCore constitutes your agreement to abide by the privacy policy as changed. We may also elect to notify you of changes or updates to this policy by additional means, such as pop-up or push notifications within MindCore or email.

12. Contact Us

If you have any questions or concerns, please contact us at: legal@mindcoreapp.com

Important Disclaimer

MindCore provides self-help tools and content prepared by practicing psychologists. However, the App does not offer medical or psychological diagnoses, treatment, or professional health advice.

If you are experiencing severe mental health challenges or require professional care, we strongly recommend consulting with a qualified healthcare provider or licensed mental health professional.