Privacy Policy

This Privacy Policy explains how MONIQO ("MONIQO", "we", "us", or "our") collects, uses, stores, and protects information when you use MONIQO and related websites, products, and services (collectively, the "Service"). Please read this Policy carefully before using the Service.

1. What MONIQO Is

MONIQO is an iPhone application for organizing, forecasting, and managing recurring financial obligations — subscriptions, installments, recurring services, and fixed repeating payments. MONIQO is an organizational and planning tool only. MONIQO is not a bank, financial institution, broker, payment processor, or financial advisor.

MONIQO does not connect to bank accounts, does not request or store bank login credentials, and does not initiate, process, or cancel any payments. Payment sources within MONIQO are user-defined organizational labels (for example, "Main card" or "Apple Pay") — they are personal notes, not live payment instruments through which any transaction is executed.

2. Information We Collect

We collect only the information necessary to operate and improve the Service:

Account and Authentication Information

• Email address and authentication identifiers used to create and access your account.
• Optional profile information, such as a display name, if provided through an authentication provider (Apple, Google) or entered manually.

User-Created App Data

• Recurring obligations and related parameters: service or subscription names, amounts, currencies, billing cycles, next payment dates, categories, and notes.
• Payment source labels, types, and colors (organizational records only — see Section 1).
• Reminder settings, financial load limits, and language or currency preferences.

Derived and Generated Data

• Forecasts of future payment dates and amounts, calculated from user-entered data.
• Aggregated obligation analytics and upcoming payment records generated within the app.
• Reminder schedules and push notification device tokens, if you enable notifications.

Subscription Entitlement Data

• MONIQO Premium entitlement information received from Apple, including product identifier, transaction identifier, purchase status, renewal status, and expiration date, used solely to verify and manage your access to Premium features.

Technical and Operational Data

• Basic technical diagnostics such as app version, device type, operating system version, crash reports, and error logs — used to operate, secure, debug, and improve the Service.

3. Information We Do Not Collect

To be explicit about the scope of the Service, MONIQO does not collect:

• Bank account numbers, bank login credentials, or payment card numbers.
• Biometric data, location data, or contact lists.
• Data from third-party financial institutions, banking APIs, or payment networks.
• Browsing history, advertising identifiers, or cross-app tracking data.
• Any information about actual transactions processed outside of MONIQO.

4. How We Use Information

We process your information for the following purposes and, where applicable, on the following legal bases:

• To provide the Service — authenticate your account, store and sync your data, calculate forecasts, display analytics, and enable app functionality. (Legal basis: performance of contract / legitimate interest.)
• To deliver reminders — send push notifications for upcoming payments if you have enabled this feature. (Legal basis: consent, which may be withdrawn at any time in device settings.)
• To manage Premium access — verify subscription entitlement, restore purchases, and control access to Premium features. (Legal basis: performance of contract.)
• To operate and improve the Service — troubleshoot issues, monitor stability, prevent abuse, and develop new features. (Legal basis: legitimate interest.)
• To respond to requests — handle support inquiries, privacy requests, and account deletion requests. (Legal basis: legal obligation / legitimate interest.)
• To comply with law — fulfil legal obligations, respond to lawful requests, and protect the rights, safety, or property of MONIQO and its users. (Legal basis: legal obligation.)

We do not use your data for advertising, do not build advertising profiles, and do not sell your personal information.

5. How We Share Information

We do not sell, rent, or trade your personal information. We share information only in the following limited circumstances:

• Supabase — provides authentication, user database, storage, server functions, and password-recovery email delivery. Supabase processes data on our behalf as a data processor.
• Apple — provides Sign In with Apple, In-App Purchase billing, subscription entitlement management, and push notification delivery (APNs). Apple acts as an independent data controller for its own platform services.
• Google — provides Sign In with Google as an optional authentication method. Google acts as an independent data controller for its own authentication services.
• Legal and safety disclosures — we may disclose information if required by applicable law, regulation, legal process, or governmental request, or to protect the rights, safety, or property of MONIQO, users, or the public.
• Business transfers — if MONIQO is involved in a merger, acquisition, or sale of assets, personal information may be transferred as part of that transaction. We will provide notice before your data becomes subject to a materially different privacy policy.

6. Data Retention

We retain your account and app data for as long as your account is active or as needed to provide the Service. If you request account deletion, we will delete or de-identify your personal information within a reasonable time, unless a longer retention period is required by law, necessary to resolve disputes, enforce agreements, prevent fraud, or maintain security.

Technical diagnostic data and anonymized aggregates may be retained for longer periods for operational and analytical purposes, as this data cannot reasonably be used to identify you.

7. Your Rights and Choices

Depending on your location, you may have rights with respect to your personal information, including the right to:

• Access — request a copy of the personal information we hold about you.
• Correction — request correction of inaccurate or incomplete information.
• Deletion — request deletion of your account and associated personal data.
• Portability — request your data in a portable format. MONIQO also includes in-app data export functionality.
• Objection or restriction — object to or request restriction of certain processing activities.
• Withdraw consent — where processing is based on consent (e.g., push notifications), withdraw it at any time via device settings without affecting the lawfulness of prior processing.

You can update or delete app data directly within MONIQO. For account deletion or any other privacy request, contact us at support@moniqo.space. We will respond to verifiable requests within the timeframe required by applicable law.

If you are located in the European Economic Area, United Kingdom, or Switzerland, you may also have the right to lodge a complaint with your local data protection authority.

8. California Privacy Rights (CCPA/CPRA)

California residents may have additional rights under the California Consumer Privacy Act (CCPA) as amended by the CPRA, including the right to know, delete, correct, and opt out of the "sale" or "sharing" of personal information. MONIQO does not sell or share personal information for cross-context behavioral advertising. To submit a rights request, contact us at support@moniqo.space. We will not discriminate against you for exercising your privacy rights.

9. International Data Transfers

MONIQO and its service providers, including Supabase, may store and process your information in the United States or other countries where data protection laws may differ from those in your jurisdiction. Where required by applicable law, we rely on appropriate transfer mechanisms — such as Standard Contractual Clauses — to protect data transferred internationally.

10. Security

We implement reasonable technical and organizational measures designed to protect your information against unauthorized access, alteration, disclosure, or destruction. These include encrypted data transmission, access controls, and use of reputable infrastructure providers. No method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security.

11. Children's Privacy

MONIQO is not directed to children under the age of 13 (or 16 in jurisdictions where a higher age threshold applies under local law). We do not knowingly collect personal information from children below the applicable age threshold. If you believe a child has provided us with personal information, please contact us at support@moniqo.space and we will take appropriate action, including deletion of that information.

12. Cookies and Tracking

The MONIQO mobile app does not use cookies. Our website may use standard session or functional cookies strictly necessary for website operation. We do not use third-party advertising cookies or cross-site tracking technologies on our website.

13. Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or applicable law. If we make material changes, we will update the "Last updated" date at the top of this Policy and, where appropriate, provide additional in-app or email notice. Continued use of the Service after the updated Policy becomes effective constitutes your acceptance of the revised terms. We encourage you to review this Policy periodically.

14. Contact

For privacy questions, rights requests, or account deletion, contact us at support@moniqo.space.