Privacy Policy

Mino · Last updated: May 25, 2026

Mino ("we", "our", or "the app") is a personal health tool designed to help adults track peptide protocols, dose schedules, inventory, wellness signals, and AI-assisted health context. This policy explains what data we collect, how we use it, and the choices you have.

1. Information We Collect

Mino collects information you choose to enter or generate while using the app:

Account information: email address, authentication provider details, password hash when email login is used, subscription entitlement status, and account deletion/export records.
Profile and goals: goals, onboarding answers, preferences, and the health context you provide so Mino can personalize summaries and reminders.
Health and tracking data: protocols, peptide names, dose schedules, dose logs, inventory and vial details, weight entries, reflections, check-ins, symptom or wellness notes, weekly review inputs, and related timestamps.
Connected wearable data: if you choose to connect a wearable integration such as WHOOP, Mino may collect connection status, provider account identifiers, authorized scopes, encrypted OAuth tokens needed to sync the integration, and imported wellness metrics such as recovery, sleep, HRV, resting heart rate, strain, workouts, and related timestamps or summaries.
AI interactions: Ask Mino questions, answer context, safety classification, model-call metadata, token counts, estimated AI cost, and cached weekly review outputs. Mino does not need your exact account email in model prompts to answer health-context questions.
Sharing data: stack or protocol templates you choose to share, public share tokens or links, and the limited fields included in those shared templates.
App and device data: crash reports, error logs, device/app version, network request metadata, and notification settings used to operate and improve the app.

We do not intentionally collect contacts, camera access, precise location, or data unrelated to Mino's core health-tracking, assistant, billing, security, and support functions.

2. How We Use Your Information

To provide your account, sync your health tracking data, and restore it across sessions.
To calculate dose schedules, dose reminders, inventory status, adherence views, and weekly summaries.
To connect, sync, refresh, and disconnect wearable integrations you authorize, and to show imported wearable context inside your account.
To provide Ask Mino and other AI-assisted features based on the context you choose to track.
To operate subscriptions, app access, security controls, rate limits, account export, and account deletion.
To diagnose crashes, fix bugs, prevent abuse, and monitor AI usage costs.
To respond to support, privacy, and deletion requests.

We do not sell, rent, or share your personal data with third parties for advertising or marketing purposes.

3. AI Processing

Some Mino features use third-party AI providers to generate summaries or answer questions. When you use those features, Mino may send a compact version of the relevant app context, such as active protocols, recent dose adherence, selected goals, and recent check-in trends. We aim to minimize the data sent and avoid unnecessary identifiers.

If you connect a wearable integration, Mino may include compact wearable context, such as recent recovery, sleep, HRV, strain, or workout summaries, to make weekly outlooks, reviews, and insights more relevant. Wearable data is wellness context only and is not used to diagnose, treat, prescribe, or recommend dose changes.

AI-generated responses are informational only and are not medical advice, diagnosis, or treatment. You should consult a qualified healthcare professional before making health or dosing decisions.

4. Data Storage and Security

Your data may be stored locally on your device using app storage and, where applicable, synced to Mino's backend hosted on Railway with database services on Supabase/Postgres. Authentication tokens are stored using secure device storage where supported.

For connected wearable integrations, Mino stores encrypted OAuth tokens on the backend so it can sync data you have authorized. You can disconnect an integration from the app settings, which removes the integration tokens and imported wearable summaries from your active account data.

We use TLS for data in transit, access controls for private API routes, password hashing for email/password login, rate limits for sensitive endpoints, and operational logging designed to avoid exposing sensitive health details.

5. Local Device Storage and Notifications

Mino stores some app state locally so the app remains responsive and can show reminders, schedules, and recently used data. If you enable notifications, Mino may schedule local dose reminders on your device. You can disable notifications in your device settings or inside the app where controls are available.

6. Sharing and Public Links

If you create or open a shared template link, the information included in that template may be visible to anyone with the link. Shared templates should not include private notes, full health logs, inventory records, or account details. You should only share templates you are comfortable making available to the link recipient.

7. Data Retention and Deletion

Your account data is retained while your account is active and as needed to operate Mino, comply with legal obligations, resolve disputes, prevent abuse, and maintain backups. You may request an export or deletion of your account data from inside the app or by contacting us. We aim to process deletion requests within 30 days unless a longer period is required by law, security, or backup-retention constraints.

Disconnecting a wearable integration removes Mino's active access to that integration and deletes imported wearable summaries and metric samples for that provider from your active account data. Some information may remain temporarily in encrypted backups or operational logs until those systems rotate according to their normal retention periods.

8. Children's Privacy

Mino is not intended for users under the age of 18. We do not knowingly collect information from minors. If you believe a minor has provided us with personal information, please contact us and we will delete it promptly.

9. Third-Party Services

We use the following third-party services:

Anthropic for AI-assisted Ask Mino and summary features: Anthropic Privacy Policy.
Apple for Sign in with Apple and App Store subscription services: Apple Privacy Policy.
Resend for transactional email such as password reset messages: Resend Privacy Policy.
Sentry for crash and error reporting: Sentry Privacy Policy.
Supabase for database hosting: Supabase Privacy Policy.
Railway for backend hosting: Railway Privacy Policy.
WHOOP for optional wearable data you choose to connect through WHOOP's OAuth authorization flow: WHOOP Privacy Policy.
Vercel or other web hosting/CDN providers for serving Mino's public website and legal pages.

10. Your Rights

Depending on your jurisdiction, you may have the right to access the personal data we hold about you, request correction of inaccurate data, request deletion of your data, object to certain processing, and withdraw consent where processing is based on consent.

To exercise any of these rights, contact us at privacy@getminoapp.com.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the app or by email. Continued use of Mino after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy, contact us at privacy@getminoapp.com.