Privacy Policy
Last updated: 10 June 2026
1. Who we are
Mayno Health Ltd ("Mayno", "we", "us") operates the Mayno app and mayno.health. Data Controller: Mayno Health Ltd. Contact: [email protected]
2. What data we collect
• Account data: email, name, password (hashed) • Health data (Special Category): symptoms, cycle data, mood logs, journals you choose to record • Usage data: feature interactions, crash reports, aggregate analytics (no individual tracking) • Payment data: processed by Stripe (we don't store card details)
3. Legal basis (GDPR)
• Consent: for all Special Category health data (withdraw any time) • Contract: for account creation and service delivery • Legitimate interests: anonymised product analytics and fraud prevention
4. How we use your data
• Providing symptom tracking, AI insights, and health reports • Personalising your experience • Enabling practitioner bookings when you consent • Sending service communications (never marketing without consent) • Improving Mayno via anonymised aggregate data
5. Data sharing
We never sell your data. We share only with: • Stripe (payments) · AWS EU-West-1 (hosting) · Anthropic (anonymised AI processing) • Practitioners: only when you book and consent to share your health report
6. Your rights
Access · Correction · Erasure · Restriction · Portability · Withdraw consent Email [email protected]. We respond within 30 days.
7. Security
TLS in transit · AES-256 at rest for health data · bcrypt password hashing · Regular security audits. We will notify you promptly of any data breach.
8. Children
Mayno is not intended for users under 18. Contact us immediately if you believe a child has created an account.
9. Changes
We will notify you of material changes at least 30 days in advance via email or in-app notification.