Contents
1 Information We Collect
When you use Mint, we collect information in the following ways:
Information you provide directly:
- Account details — name, date of birth, gender, and profile photos
- Profile content — bio, interests, lifestyle preferences (smoking, drinking, workout habits, etc.)
- Contact details — email address and phone number (optional)
- Communications — messages you send to matches within the app
- Verification media (optional) — if you choose to get verified, a selfie used for a one-time photo/face comparison against your profile photos
Information collected automatically:
- Device information — device type, operating system, and unique device identifiers
- Usage data — features you interact with, swipe activity, session duration
- Location data — approximate location derived from your IP address; precise location is only used if you explicitly grant permission
Information from third-party sign-in providers:
- If you sign in via Google or another provider, we receive your name, email address, and profile picture as permitted by that provider
2 How We Use Your Information
We use the information we collect to:
- Create and manage your account
- Show your profile to other users and display other profiles to you
- Power the matching algorithm (swipe deck, filters, mutual-like detection)
- Deliver in-app messages between matched users
- Send transactional notifications (match alerts, security emails)
- Improve app performance, fix bugs, and develop new features
- Review photos, selfies, and text (such as bios and messages) for safety — using automated checks and, where needed, human review by our team
- Provide optional photo/selfie verification and award a verified badge to members who complete it
- Enforce our Terms of Service and prevent abuse, fraud, or safety threats
- Comply with applicable legal obligations
3 Sharing Your Information
We share your information only in the following limited circumstances:
With other Mint users: Your profile (name, age, photos, bio, and preferences you choose to display) is visible to other authenticated users in the discovery feed and when you match with someone.
With service providers (sub-processors): We work with trusted third-party providers who process data on our behalf to help us operate the app:
- Google Firebase / Google Cloud — account authentication, database (Firestore), Cloud Functions (server-side processing), app-integrity/security checks, and crash reporting
- Cloudflare R2 — storage and delivery of user-uploaded photos and media. Uploads use short-lived, backend-generated upload links, and media is delivered through our configured Cloudflare endpoint. Cloudflare may process the stored media and related technical metadata as our storage and content-delivery provider.
- Amazon Web Services (AWS) — Rekognition — automated image analysis that helps with photo moderation and optional selfie/photo verification (face comparison). When these checks run, the relevant photo or selfie and related metadata are sent to AWS for analysis.
- Google Cloud Vision & Natural Language — automated safety checks on uploaded images and on text such as bios and messages, to help detect inappropriate or unsafe content.
These providers act as our sub-processors: they are contractually bound to process your data only as directed by us and may not use it for their own purposes. Automated checks may flag content, but moderation and verification outcomes can also rely on our own product logic and, where applicable, human review by our team.
For legal reasons: We may disclose your information if required by law, court order, or to protect the rights, property, or safety of Mint, our users, or the public.
Business transfers: If Mint is involved in a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will notify you before your data is transferred and becomes subject to a different privacy policy.
4 Data Retention
We retain your personal data for as long as your account is active or as needed to provide you with our services.
- Active accounts: Data is kept for the lifetime of the account.
- Deleted accounts: Core profile data is deleted within 30 days of account deletion. Anonymised or aggregated statistical data may be retained indefinitely.
- Photos & media: Photos and media stored in Cloudflare R2 are removed when you delete them in the app or when your account is deleted, subject to standard backup and content-delivery propagation delays.
- Chat messages: Messages are stored in Firestore and deleted when either match participant deletes the conversation.
- Legal holds: Where required by law, we may retain specific data for longer periods.
5 Your Rights & Choices
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you.
- Correction: Update inaccurate or incomplete information directly within the app or by contacting us.
- Deletion: Request deletion of your account and associated data. You can initiate this from the app's Settings screen.
- Portability: Request your data in a structured, machine-readable format.
- Objection: Object to processing of your data in certain circumstances.
- Withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
To exercise any of these rights, contact us at support@mintapp.dating. We will respond within 30 days.
6 Security
We take the security of your data seriously and implement industry-standard safeguards, including:
- All data in transit is encrypted using TLS 1.2 or higher
- Firebase Security Rules restrict read and write access to authenticated users only, with field-level protections on sensitive flags
- Privileged fields (such as verification and premium status) can only be modified by our server-side Admin SDK — never by client requests
- Photo and media uploads use short-lived, backend-generated signed upload links, and each upload is validated server-side before it is used
- Passwords are never stored by Mint; authentication is delegated to Firebase Auth / Google Sign-In
No method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. If you suspect unauthorised access to your account, please contact us immediately.
7 Children's Privacy
Mint is intended exclusively for users who are 18 years of age or older. We do not knowingly collect personal information from anyone under 18.
If we become aware that we have collected data from a person under 18, we will delete that account and all associated data promptly. If you believe a minor has created an account, please report it to support@mintapp.dating.
8 Third-Party Services
Mint integrates with the following third-party services. Their own privacy policies govern the data they collect independently:
- Google Firebase / Google Cloud — firebase.google.com/support/privacy
- Google Sign-In — policies.google.com/privacy
- Cloudflare (R2 storage & delivery) — cloudflare.com/privacypolicy
- Amazon Web Services (AWS Rekognition) — aws.amazon.com/privacy
Links to external websites or services from within the app are not covered by this Privacy Policy. We encourage you to review the privacy policies of any third-party sites you visit.
9 Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will:
- Update the Effective Date at the top of this page
- Notify you via an in-app notification or email (where required by law)
Your continued use of Mint after any changes take effect constitutes your acceptance of the revised policy. If you do not agree to the updated policy, please delete your account.
10 Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out: