Privacy Policy

Your thinking stays on your phone.

Effective date: 30 May 2026  ·  Last updated: 14 June 2026  ·  Publisher: Mondivio  ·  Contact: hello@veynor.co

The short version: No account. No email. No name. Nothing. Your sessions, patterns, and insights are stored only on your device. We cannot read your data. The only moment data leaves your device is when the AI processes your input — and that happens without any identity attached. We also count a handful of anonymous events (things like "app opened" or "session completed") so we can tell whether the product is working — never the content of what you wrote.

1. Who we are

Veynor is published by Mondivio. We built Veynor as a privacy-first decision clarity tool. We do not run an ad business, we do not sell data, and we do not benefit from knowing what you're thinking about.

Contact: hello@veynor.co

2. What data is collected

2.1 Data you create — stored locally only

Everything below lives on your phone. None of it goes anywhere unless you back it up yourself.

Data What it is Where it goes
Session inputThe text you type into VeynorYour device only
Session outputThe AI's structured responseYour device only
Session metadataMode used, timestamp, ratingsYour device only
Profile insightsAI-extracted patterns from sessionsYour device only
Recurring patternsThemes Veynor detects across sessionsYour device only
Uploaded documentsDISC profiles, coaching reports, PDFsYour device only
Day summariesAI-generated summaries of session daysYour device only
Affirmations & quotesDaily AI-generated text, cached locallyYour device only
Book recommendationsWeekly AI-generated reading suggestionsYour device only
Chat messagesTalk It Out conversation historyYour device only
Streak and statsSession count, streak, clarity rateYour device only
Sealed envelopesNotes you write to future-you, locked until their unlock dateYour device only
Predictions & calibrationYour forecasts on session outcomes and how accurate they turned outYour device only
Verdicts & regret marksWhether a past session landed, and which calls you later regrettedYour device only
Mental Hygiene IndexThe composite score and its componentsYour device only
Spillway entriesWhat you wrote in The Spillway and the digest built from itYour device only
Annual LetterThe yearly letter Veynor writes you, kept locallyYour device only

Veynor 5.0 added a record layer — Sealed Envelopes, predictions and calibration, the Mental Hygiene Index, The Spillway, the Annual Letter, and the rest of the memory features. All of it lives in the same on-device database as the rest of your sessions. The promise hasn't changed: nothing leaves your phone unless you back it up yourself.

2.2 Data sent to the AI (temporary processing only)

When you submit a session, your text is sent to an AI to generate the response. That's how the app works.

What is sent:

  • The text you typed
  • Your selected mode
  • Relevant context from your profile insights (if document context is enabled)
  • Conversation history (for chat/mentor sessions, within the same session only)

What is NOT sent:

  • Your name, email address, or any account information (there is no account)
  • Your device identifier or location
  • Any persistent user ID that could identify you across sessions

Once the AI responds, it's done. Your session isn't saved on any AI server, and the AI has no memory of it after that.

AI providers used: Anthropic (Claude), Groq, OpenRouter — all operate under their respective privacy policies.

2.3 Subscription and billing

Veynor uses RevenueCat to manage App Store and Google Play subscriptions. RevenueCat assigns a random anonymous identifier to your installation — no email, name, or personal information is passed to RevenueCat. Your payment is processed entirely by Apple (App Store) or Google (Google Play). Mondivio never sees your payment details.

RevenueCat's privacy policy: revenuecat.com/privacy

2.4 Error reporting

Veynor uses Sentry to capture application errors and crashes. Crash reports include your device OS, app version, and the error itself. Nothing from your sessions is included — no text, no name, nothing personal.

Sentry's privacy policy: sentry.io/privacy

2.5 What we do not collect

We do not collect, store, or have access to:

  • Your name, email address, or phone number
  • Your location or GPS data
  • Device advertising identifiers (IDFA, GAID)
  • Biometric data — Face ID / fingerprint is processed entirely by your device's OS
  • Your contact list, calendar, or any other device data
  • Session recordings, screen tracking, heatmaps, or any analytics tied to your identity
  • Any data that could be used to advertise to you

2.6 Anonymous usage counts

We count a small number of anonymous events — things like the app being opened, a session being started, or a subscription being purchased — so we can tell whether the product is healthy and which modes people actually use. We never include the content of your sessions, your input, the AI's reply, or anything that could identify you. A random per-install ID is used so we can measure things like "did new users come back next week"; it's deleted when you uninstall.

The analytics provider is TelemetryDeck. Their privacy policy: telemetrydeck.com/privacy.

3. Local storage

Everything stays in a private database on your phone. It's not synced anywhere. Mondivio can't access it, no third party can, and if you delete the app, it's gone completely.

4. Backup

Veynor offers an optional manual backup feature.

  • You initiate the backup — it is never automatic
  • Your data is encrypted using AES-256 before leaving the app
  • An encryption key is generated and shown to you once — you must save it
  • Mondivio does not hold, store, or have access to your encryption key
  • The encrypted backup file is shared to a destination you choose (iCloud Drive, Google Drive, local file, etc.)
  • Mondivio cannot read the backup file even if we had access to it

Important: If you lose your encryption key, the backup cannot be recovered — not by you, not by us. Keep it somewhere safe.

5. Security

  • Your data sits in a private database on your phone, protected the same way your device protects everything else
  • Biometric authentication (Face ID / fingerprint) and PIN lock are available as optional security layers
  • Your PIN is never stored as-is — only a scrambled version that can't be reversed
  • Backup files are encrypted with AES-256

6. Children's privacy

Veynor is for adults. It's not designed for anyone under 13 (or under 16 in the EU), and we don't collect data from children. If you think a child has used the app, reach out at hello@veynor.co.

7. Your rights (GDPR — EU/EEA users)

Right of access: Because all your data is stored locally on your device, you have direct access to it at all times through the app.

Right to erasure: Delete the app. All locally stored data is permanently removed. For error reports held by Sentry, contact us and we will request deletion.

Right to data portability: Use the backup feature to export your data as an encrypted file at any time.

Right to object: There's no profiling, no targeting, and no automated decisions made about you in Veynor.

Right to rectification: Your data lives on your device. You can edit or delete individual sessions directly within the app.

Data controller: Mondivio — hello@veynor.co

Legal basis for AI processing: It's needed to deliver the service. No personal data is sent.

8. Data retention

Data type Retention
Local device dataUntil you delete the app or manually delete sessions
Error reports (Sentry)90 days per Sentry's default policy
RevenueCat subscription recordsPer RevenueCat's policy (required for restore purchases)
AI processingNot stored — each request is independent

9. Third-party services

Service Purpose Data shared Privacy policy
Anthropic (Claude) AI session processing Session text only, no identity anthropic.com/privacy
Groq AI session processing (fallback) Session text only, no identity groq.com/privacy
OpenRouter AI routing (fallback) Session text only, no identity openrouter.ai/privacy
RevenueCat Subscription management Anonymous install ID only revenuecat.com/privacy
Sentry Crash / error reporting App errors, no personal data sentry.io/privacy
TelemetryDeck Anonymous usage counts Event names only, no identity, no content telemetrydeck.com/privacy
Apple IAP Payment processing Handled entirely by Apple apple.com/privacy
Google Play Billing Payment processing Handled entirely by Google policies.google.com/privacy

10. Changes to this policy

If we make changes to this policy, we'll update the date at the top and let you know through the app. If you keep using Veynor after that, we'll take it as you being okay with the update.

11. Contact

For any privacy questions, data requests, or concerns:

We will respond within 2 days.


This privacy policy applies to the Veynor iOS and Android applications and the veynor.co website.