Account and data

Privacy and consent

Every privacy toggle in tellmint and what it controls. The product principle: collect as little as possible, keep nothing you don't need, let you turn off the rest.

The 30-second summary

If you only have a moment:

  • Your raw audio never leaves your phone permanently. Voice files are sent to be transcribed, then dropped from our servers. The local copy stays on your device.
  • Your chat with Mint stays on your phone. It's not on our servers and it's not in your export.
  • Crash reports are on by default. Analytics and marketing are off by default. You can flip any of them at any time in Settings → More settings → Privacy Controls.
  • Your entries, profile, and Mint Memory live in Firebase / Google Cloud in Belgium so the app can sync across devices and personalize replies. Encrypted in transit with TLS 1.2+ (HTTPS, same as your bank) and at rest with AES-256 — the same encryption stack used by Notion, Day One, and Spotify. Not end-to-end encrypted, because the AI needs to read the content to organise it. You can export them or delete your account whenever you want.
  • We never sell your data and we never use it to train AI models. See Is my data used to train AI?.

If you need help with anything privacy-related, contact us — a real human reads every message.

The rest of this page is the detail behind those points.

Where to find it

Settings → More settings → Privacy Controls.

The same toggles also appear, for convenience, during onboarding, both are off by default there.

The toggles

Analytics & Improvements

  • What it does: Content-free product analytics, which screens you open, which features you use, and which settings change. Linked to your account ID so we can debug per-user issues, but never to your name or email. Used to improve the app, not to identify you.
  • Default: Off.
  • When on: Events include no transcript text and no entry content.

Crash Reports & Speed Diagnostics

  • What it does: Content-free crash traces, performance data, and a latest app/device support snapshot: app version, build number, Android version/API level, device model/manufacturer, locale, install source, and whether the install appears to be on a real device or emulator. Helps us find and fix bugs.
  • Default: On. You can turn it off any time.
  • When on: Crash and speed data is sent to Firebase Crashlytics and Performance Monitoring. The support snapshot is stored on your account only when it changes or about every 30 days.
  • When off: Tellmint stops refreshing this snapshot and asks the server to clear the last one. We do not collect IMEI, Android ID, advertising ID, serial number, MAC address, IP address, or other device identifiers for this snapshot.

Marketing Support

  • What it does: Optional install and outreach signals, such as which install link or campaign worked.
  • Default: Off.

Tap What data is collected? under Marketing Support for the compact in-app summary of these telemetry lanes and how they stay separate from your journal content.

Telemetry lanes (in plain English)

Tellmint keeps these separate on purpose:

  1. Google Analytics: completely off unless you turn on Analytics.
  2. Crashlytics + Performance: on by default so we can fix crashes quickly; you can turn them off with Crash Reports & Speed Diagnostics.
  3. Latest app/device support snapshot: one small account-level diagnostic record, refreshed only on change or about monthly, so support can see the user's app build, Android version, and phone model without waiting for a feedback report.
  4. First-party product metrics: pseudonymous, content-free signals (how many users hit a feature, not what they said). Linked to your account ID for per-user debugging, but they carry no transcript or entry content.
  5. Website server logs: Firebase Hosting request logs for tellmint.com. These are not controlled by the Analytics toggle and may include IP address, user agent, requested page, referrer, status, cache status, country/city, and timing. We use them for security, abuse prevention, uptime, debugging, and aggregate website traffic reporting. The dashboard only shows aggregate counts such as page requests, top countries, and top pages.

What never leaves your phone

  • Raw audio. Recordings are transcribed in the cloud, but the audio file is not kept in cloud storage after processing. New recordings stay on your phone in tellmint's own private app storage - not visible to other apps, and removed if you uninstall tellmint. (Recordings made by app versions before May 2026 may still be in your phone's Download/tellmint folder.) From Settings → Storage you can Export audio recordings to save copies before uninstalling, or delete them all from this device.
  • Mint Reflect chat history. Your conversations with Mint live locally on your device, they're not stored on our servers and they're not in your export.

What is stored on our servers (in the EU) to make the product work

  • Your entries: transcripts, summaries, tags, emotions, so you can search and edit them and so the app stays in sync across devices.
  • Your profile and Mint Memory. These are attached to your user record and read back only to personalize your own AI output. They're included in your data export and wiped on account deletion.
  • Usage counters needed for plan quotas.

Data residency is europe-west1 (Belgium / St. Ghislain). Data is encrypted in transit with TLS 1.2+ (HTTPS — same as your bank) and at rest with AES-256 server-side encryption, the same standards used by Notion, Day One, Spotify, and major banking platforms. It is not end-to-end encrypted, because tellmint needs server-side access to process recordings, sync entries, search, and personalize Mint. What happens with third-party AI providers and whether your text can be used for model training is covered in our full privacy policy.

What leaves your phone for AI processing

  • Voice file during transcription.
  • Entry text when we extract metadata, generate summaries, or answer chat questions.
  • Query text when you do semantic search.

Processing mostly happens in the EU (europe-west1). The primary chat model may run globally for latency reasons; the EU model is used as a fallback. GDPR policy and legal notices are at tellmint.com/privacy.

When you change an analytics or marketing toggle, the change is recorded with a timestamp. That's how we can honor your choice even if something about the legal environment changes later.

Good to know

  • Turning Analytics off doesn't break anything. Features still work; we just get less feedback.
  • Turning Crash Reports off means a harder time fixing bugs you hit. We still recommend leaving it on, but it's your call.
  • Emotion detection is separate. If you prefer no emotion analysis, the developer setting can turn it off (but it's niche, most users leave it on).
  • Accepting neither toggle is fine. Tellmint is usable with every optional telemetry off.

Plan & limits

No plan gating. Privacy controls apply on every plan.

Data or privacy requests

For anything that isn't handled by the in-app toggles, a specific deletion you want us to do on your behalf, a data-portability question, a GDPR request beyond the built-in export, contact us. Open tellmint → avatar → Settings → Contact Us, or visit tellmint.com/support.

Keep reading

ReferenceContact usAccount and dataExport your dataAccount and dataDelete your account

← Back to help center