Privacy Policy

Effective April 8, 2026 · Last updated April 8, 2026

1. Introduction

Mindly ("we," "our," or "us") provides an AI-powered voice companion for personal reflection and emotional well-being through the Mindly iOS application ("the App"). This Privacy Policy explains what data we collect, how we use it, and the choices you have.

We designed Mindly with privacy at its core. Most AI processing happens directly on your device, and we never sell your data.

2. Information We Collect

2.1 Voice Recordings

Voice input is processed entirely on your device using Apple Speech Recognition.
Raw audio is never transmitted to our servers or any third party.
Audio is converted to text locally and discarded immediately after transcription.
We do not store, retain, or have access to your voice recordings.

2.2 Journal Entries and Conversations

Text from your conversations with Spike (the AI companion) is stored locally on your device in encrypted storage.
When using on-device AI, your conversation content never leaves your device.
When cloud AI providers are used (see Section 4), conversation text is sent to the selected provider for processing, with personally identifiable information removed first.

2.3 Usage Analytics

Mindly does not collect usage analytics, crash reports, or performance telemetry. We do not implement any first-party analytics, and we do not integrate any third-party analytics or crash reporting SDK (no Firebase, Mixpanel, Amplitude, Segment, Sentry, Crashlytics, or equivalent).

If you have separately opted in to share analytics with Apple under iOS Settings → Privacy & Security → Analytics & Improvements, iOS may include Mindly in what it sends to Apple. That is a relationship between you and Apple; Mindly neither asks for that data nor receives it. You can disable this at any time in iOS Settings.

2.4 Information We Do NOT Collect

We do not require account creation or login.
We do not collect your name, email address, phone number, or any personal identifiers.
We do not collect location data.
We do not use cookies or cross-app tracking.
We do not access your contacts, photos, or other personal data beyond microphone access for voice input.

3. On-Device AI Processing

Mindly prioritizes on-device AI so your conversation text stays on your phone by default. On-device processing involves no data transmission and is not disclosed in our App Store privacy nutrition label because the data never leaves the device.

Apple Foundation Models (iOS 26+): On supported devices (A17 Pro chip or later running iOS 26+), AI responses are generated entirely on your device. No conversation data is sent to any server.

CoreML / MLX Local Models: On devices that do not support Apple Foundation Models, Mindly uses locally downloaded AI models. These run entirely on your device with no network communication.

4. Cloud AI Providers and Your Explicit Consent

4.1 Providers We Use

When cloud AI is needed, Mindly routes requests to one of these named providers:

Anthropic (Claude). Anthropic, PBC, San Francisco, CA. Data processed per Anthropic's API Terms of Service. API inputs are not used to train models. Anthropic retains API logs for up to 30 days for abuse and safety monitoring, then deletes them.
OpenAI (GPT). OpenAI, LLC, San Francisco, CA. Data processed per OpenAI's API Data Usage Policy. API data is not used to train models. OpenAI retains API logs for up to 30 days for abuse monitoring, then deletes them.

No other cloud AI providers are used without updating this policy and notifying you in the App.

4.2 When Cloud AI Is Used (Explicit Opt-In Required)

Cloud AI is never used without your explicit consent. You control this through Mindly's privacy mode toggle:

Privacy Mode	Cloud AI	What Happens
Private Mode	OFF (guaranteed)	All processing stays on-device. No data leaves your phone. No internet required.
Normal Mode	ON (with protections)	Conversation text is sent to cloud providers with PII removed. You must explicitly select this mode.
Full Power Mode	ON (premium providers)	Conversation text is sent to premium cloud providers. You must explicitly select this mode.

Default: The App defaults to Private Mode. You must actively choose Normal or Full Power mode to enable cloud AI processing. You can switch back to Private Mode at any time, and cloud processing stops immediately.

4.3 What Is Sent to Cloud Providers

When you have opted into cloud AI:

Only the conversation text necessary to generate a response is sent.
We apply PII detection and removal before transmission, stripping names, addresses, phone numbers, email addresses, and other identifiable information.
Voice audio is never sent, only the locally transcribed text.
A system prompt is included to guide the AI's response style. This does not contain your personal information.

4.4 What Is NOT Sent

Voice recordings (never transmitted)
Spike companion state or emotional data
Your conversation history beyond the current exchange
Device identifiers, location, or usage analytics
Any data when you are in Private Mode

4.5 What We Don't Claim to Protect Against

We want to be straight with you about the limits of what removing direct identifiers can do. When you opt into cloud AI, we strip names, phone numbers, addresses, and similar identifying tokens from your conversation text before it leaves your phone. That protects against the most common ways a stray log line gets traced back to a real person. What it does not do is mask how you write. Academic research has shown that writing style itself can act as a fingerprint: word choices, sentence rhythms, and topic patterns can re-identify an author from text that has had all the obvious identifiers removed, given enough samples. We're not aware of any consumer AI app that defends against this, and we don't claim to either. If you're sending text to a cloud provider for any reason, treat it the way you'd treat sending a postcard: scrubbed of the name and return address, but still in your own handwriting. The free, on-device tier sidesteps this entirely because nothing leaves the phone.

5. Data Storage and Security

5.1 Local Storage

All conversation data, Spike companion state, insights, and preferences are stored locally on your device in encrypted storage.
Data is protected by iOS Data Protection, which encrypts files at rest using your device passcode.
Sensitive credentials (such as API keys) are stored in the iOS Keychain, backed by the Secure Enclave.

5.2 No Server-Side Personal Data

We do not operate user accounts or maintain server-side databases of personal conversation data.

5.3 Data Retention

Data Type	Retention	How to Delete
Conversations	Until you delete them	Settings > Delete Data, or uninstall the App
Spike companion state	Until you delete	Settings > Delete Data, or uninstall the App
Cloud provider logs	Up to 30 days (provider policy)	Deleted automatically by provider

Deleting the App removes all locally stored data, including conversations, Spike companion state, and preferences.

6. Data Sharing and Third Parties

We Do Not Sell Your Data

We never sell, rent, or trade your personal information, conversation data, or usage patterns to any third party for any purpose.

Limited Third-Party Sharing

Third Party	What Is Shared	When	Your Control
Anthropic (Claude API)	PII-stripped conversation text	Normal/Full Power mode only	Privacy toggle (switch to Private to stop)
OpenAI (GPT API)	PII-stripped conversation text	Normal/Full Power mode only	Privacy toggle (switch to Private to stop)
Apple (OS-level, not via Mindly)	Whatever iOS diagnostics you opted into at the OS level, routed entirely by Apple. Mindly does not push anything to this pipeline.	If you opted in during iOS setup	iOS Settings > Privacy & Security > Analytics & Improvements
Law enforcement	As required by valid legal process	Court order, subpoena, or legal obligation	N/A

We do not use third-party advertising networks, data brokers, or social media tracking pixels.

7. Children's Privacy

Mindly is rated 4+ and is suitable for all ages.
We do not knowingly collect personal information from children under the age of 13.
Because Mindly does not require account creation and does not collect personal identifiers, we do not knowingly receive data that identifies any user as a child.
If you are a parent or guardian and believe your child has provided personal information through the App, please contact us at privacy@tellspike.com and we will take steps to delete such information.
We recommend parental supervision for children using AI-powered applications.

8. Your Rights and Choices

8.1 Privacy Mode Control

You have full control over how your data is processed:

Private Mode (default): Guarantees all processing stays on your device. No data is sent anywhere.
Normal/Full Power Mode: Enables cloud AI with PII removal. Requires your explicit opt-in.
You can change modes at any time in the App. Changes take effect immediately.

8.2 Data Deletion

Delete all conversation data from within the App (Settings > Delete Data).
Uninstall the App to remove all locally stored data.

8.3 California Residents (CCPA/CPRA)

California residents have the right to:

Know what personal information is collected (see Section 2).
Request deletion of personal information.
Opt out of the sale of personal information (we do not sell data).
Non-discrimination for exercising privacy rights.

8.4 European Residents (GDPR)

If you are in the European Economic Area, you have the right to access, rectify, erase, restrict, or port your personal data, and to lodge a complaint with a supervisory authority. Our legal basis for processing is your explicit consent (for cloud AI usage via the privacy toggle).

8.5 Wellness Disclaimer

Mindly is a personal wellness and reflection tool. It is not a medical device, does not provide medical advice, diagnosis, or treatment, and is not a covered entity under HIPAA. Mindly should not be used as a substitute for professional mental health care. If you are in crisis, please contact emergency services or a crisis hotline.

9. AI-Specific Disclosures

9.1 AI-Generated Content

All responses from Spike are generated by artificial intelligence and may not always be accurate, complete, or appropriate.
AI responses do not constitute professional medical, legal, or financial advice.
Mindly clearly labels AI-generated content within the App.

9.2 AI Model Training

Your conversations are never used to train or fine-tune any AI model, whether on-device or cloud-based.
On-device models are pre-trained and do not learn from your individual conversations.
Cloud API providers (Anthropic and OpenAI) are contractually bound by their API terms to not use API inputs for model training.

9.3 Emotional Well-Being Safeguards

Mindly is designed as a supportive companion for reflection, not as mental health treatment.
The App includes disclaimers when conversations touch on sensitive topics.
We encourage users to seek professional help for mental health concerns.

Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last Updated" date at the top of this policy and notify you within the App. Continued use of the App after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or your data:

Email: privacy@tellspike.com
Support: tellspike.com/mindly/help

Summary

Data Type	Collected?	Stored Where	Shared With Third Parties?
Voice audio	Processed transiently	Device only	Never
Conversation text	Yes	Device only (encrypted)	Cloud AI only when you opt in (PII removed)
Spike companion state	Yes	Device only	Never
Emotional insights	Yes	Device only	Never
Personal identifiers	No	N/A	N/A
Location data	No	N/A	N/A

App Store Privacy Nutrition Label

Per App Store requirements, our privacy nutrition label discloses:

Data Used to Track You: None
Data Linked to You: None
Data Not Linked to You: None (Mindly implements no first-party analytics, crash reporting, or performance telemetry)
Cloud AI data sharing: Disclosed as "Other Data" only when Normal/Full Power mode is enabled, and only for PII-stripped conversation text sent to the selected cloud provider. On-device processing (Private Mode, the default) requires no disclosure.