top of page

Privacy Policy

Last updated: June 2026

Overview

Mindroo (“we”, “us”, or “our”) is a mental wellness application developed and operated in Australia. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, store and share information when you use our mobile application (“the App”).

Mindroo is available globally. Regardless of where you are located, your data is handled in accordance with this policy. This policy is primarily governed by the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Where applicable, we also comply with other relevant data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the European Union General Data Protection Regulation (EU GDPR) for users in those regions.

By using Mindroo, you agree to the collection and use of information in accordance with this policy.

Information We Collect

We collect the following types of information:

 

Account Information
When you create an account, we collect your email address and display name. This is used to identify your account and personalise your experience.

 

Wellbeing Data
When you use features such as the daily check-in, journal, and mood tracking, we collect the responses and data you choose to enter. This includes mood ratings, energy levels, sleep scores, stress levels, journal entries, and notes.

 

Usage Data
We may collect information about how you interact with the App, including which features you use, how often you use them, and general usage patterns. This helps us improve the App.

 

Device Information
We may collect basic device information such as device type, operating system version, and app version for the purpose of troubleshooting and improving compatibility.

 

Notification Preferences
If you enable notifications, we store your preferences locally on your device.

 

How We Use Your Information

We use the information we collect to:

• Provide, operate and maintain the App
• Personalise your experience and deliver relevant insights
• Generate your Mindroo Pulse wellbeing summaries
• Send you notifications you have opted into
• Respond to your support requests
• Monitor and analyse usage to improve the App
• Comply with legal obligations

 

We do not use your data for advertising purposes. We do not sell your personal information to third parties.

For users in the EU or UK, our legal basis for processing your personal data is: performance of a contract (to provide the App’s services), legitimate interests (to improve the App and ensure security), compliance with legal obligations, and your consent where required.

AI Features and Chat

Mindroo includes an AI-powered chat feature (“Milo”). Messages you send through the chat feature are transmitted to OpenAI’s API for processing in order to generate responses. Chat history is stored securely in your account via Google Firebase. Your chat data is not used to train AI models and is not shared with third parties for commercial purposes.

Please be mindful that any information you share in the chat is processed by OpenAI’s systems. We encourage you not to share sensitive personal or identifying information beyond what is necessary.

Data Storage and Security

Your data is stored using Google Firebase, which provides cloud-based database and authentication services. Firebase infrastructure is hosted in Google data centres with industry-standard security measures including encryption in transit and at rest.

As Mindroo operates globally, your data may be transferred to and stored in countries outside your own, including the United States, where our third-party service providers operate. We take steps to ensure that any such transfers are made in accordance with applicable data protection laws, including through the use of appropriate safeguards such as standard contractual clauses where required.

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. While we take reasonable steps to protect your information, no method of transmission over the internet or electronic storage is 100% secure.

 

Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with the App’s services. If you delete your account, we will delete your personal data from our systems within 30 days, except where we are required to retain it by law. Anonymised or aggregated data that cannot identify you may be retained for longer periods for analytical and improvement purposes.

 

Third Party Services

Mindroo uses the following third-party services. When your data is shared with these providers, it is subject to their respective privacy policies:

Google Firebase — Used for authentication, database storage, and cloud functions. Firebase is operated by Google LLC. https://policies.google.com/privacy

OpenAI — The AI chat feature (Milo) is powered by OpenAI’s API. Messages you send to Milo are processed by OpenAI to generate responses. OpenAI may retain data in accordance with their usage policies. https://openai.com/privacy

RevenueCat — Used to manage in-app subscriptions and purchases. RevenueCat may collect certain transactional and device data for this purpose. https://www.revenuecat.com/privacy

Sign in with Apple — If you choose to sign in with Apple, Apple’s privacy practices apply to the sign-in process. https://www.apple.com/legal/privacy

Google Sign-In — If you choose to sign in with Google, Google’s privacy practices apply. https://policies.google.com/privacy

We are not responsible for the privacy practices of these third-party services.

 

Your Privacy Rights

Australian Users (Privacy Act 1988)
• Access the personal information we hold about you
• Request correction of inaccurate or outdated information
• Request deletion of your personal information
• Opt out of receiving marketing communications
• Make a complaint to the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au

EU and UK Users (GDPR / UK GDPR)
• Access, rectify, or erase your personal data
• Restrict or object to the processing of your data
• Data portability — receive your data in a structured, machine-readable format
• Withdraw consent at any time where processing is based on consent
• Lodge a complaint with your local data protection authority

 

All Other Users
Regardless of your location, you may contact us at any time to access, correct, or request deletion of your personal data.

To exercise any of these rights, please contact us at support@mindroo.com.au

 

Children’s Privacy

Mindroo is not intended for use by children under the age of 13 (or the applicable minimum age in your jurisdiction, which may be higher). We do not knowingly collect personal information from children below this age. Users between the ages of 13 and 18 must have a parent or legal guardian review and agree to this Privacy Policy on their behalf. If you are a parent or guardian and believe your child has provided us with personal information without appropriate consent, please contact us and we will take steps to delete that information.

 

Sensitive Information

The information you enter in Mindroo, such as your mood, mental health check-ins, and journal entries, may be considered sensitive health information under Australian privacy law and special category data under GDPR. We treat this information with the highest level of care and do not share it with third parties except as described in this policy.

 

Notifications

If you enable push notifications, we will send you reminders and updates based on your preferences. You can opt out of notifications at any time through the App settings or your device settings.

 

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by updating the date at the top of this policy and, where appropriate, through an in-app notification. We encourage you to review this policy periodically.

Your continued use of the App after any changes constitutes your acceptance of the updated policy.

 

Contact Us

Mindroo
Email: support@mindroo.com.au

 

We will respond to your enquiry within a reasonable timeframe and in accordance with our obligations under applicable privacy law.

This privacy policy is governed by Australian law and also addresses obligations under the EU GDPR and UK GDPR for international users.

bottom of page