Privacy Policy

Last Updated: January 4, 2026

🔒 Privacy First

At Mandem, your privacy and safety are paramount. We built this platform with end-to-end encryption, minimal data collection, and complete user control. We will never sell your data, and we take extraordinary measures to protect your identity when you post anonymously.

This Privacy Policy explains how Mandem ("we," "us," "our") collects, uses, shares, and protects your personal information when you use our mobile application and services (the "Service").

1. Information We Collect

We collect information to provide, improve, and protect our Service. Here's what we collect and why:

1.1 Information You Provide Directly

Data Type	Examples	Purpose
Account Information	Email, phone number, username, password, date of birth	Account creation, authentication, age verification
Profile Information	Display name, profile photo, bio, location (optional)	Personalization, community connection
Check-in Data	Daily emotional check-ins, mood ratings, journal entries	Personal wellness tracking, insights
Communications	Messages, posts, comments, group chats	Core platform functionality, community support
User Preferences	Notification settings, privacy controls, app preferences	Service customization

1.2 Information Collected Automatically

When you use Mandem, we automatically collect:

Device Information: Device type, operating system, unique device identifiers, mobile network information
Usage Data: Features used, time spent in app, session frequency, interactions with content
Log Data: IP address, access times, crashes, performance data
Location Data: Approximate location (city/region) based on IP address if you enable location services (always optional)
Cookies & Similar Technologies: We use these for authentication, preferences, and analytics

1.3 Information from Third Parties

Social Login: If you sign in via Apple, Google, or other providers, we receive basic profile information (name, email)
Payment Processors: Subscription information from App Store or Google Play (we don't store payment card details)
Analytics Providers: Aggregated, anonymized usage statistics

2. How We Use Your Information

We use your information to:

2.1 Provide & Improve the Service

Create and maintain your account
Enable daily check-ins and emotional wellness tracking
Facilitate group chats and community connections
Display real-time online presence
Allow anonymous posting with identity protection
Personalize your experience and recommendations
Develop new features and improve existing ones

2.2 Safety & Security

Detect and prevent fraud, abuse, and violations of Terms of Service
Moderate content to maintain community safety
Verify user identity and prevent fake accounts
Protect against malicious, deceptive, or illegal activity
Respond to crisis situations when legally required

2.3 Communication

Send you important service updates and notifications
Respond to your questions and support requests
Send optional promotional messages (you can opt out anytime)
Notify you about features you might find helpful

2.4 Legal Compliance

Comply with applicable laws, regulations, and legal processes
Enforce our Terms of Service and other policies
Protect rights, property, and safety of Mandem, our users, or others

3. How We Share Your Information

We will never sell your personal information. Period. We only share your data in limited circumstances outlined below.

3.1 Within the Mandem Community

Public Profile: Your display name, profile photo, and bio are visible to other users
Group Chats: Messages shared in groups are visible to all group members
Anonymous Posts: Content is visible to the community, but your identity is protected
Online Status: Your online/away status is visible when you enable this feature

3.2 Service Providers

We share data with trusted third-party service providers who help us operate, including:

Cloud Hosting: AWS, Google Cloud (encrypted data storage)
Analytics: Firebase, Mixpanel (anonymized usage data)
Customer Support: Zendesk, Intercom
Payment Processing: Apple App Store, Google Play Store
Email & Notifications: SendGrid, Twilio

All service providers are bound by strict confidentiality agreements and can only use your data to provide services to us.

3.3 Legal Requirements

We may disclose information if required by law or in response to:

Valid legal requests (subpoenas, court orders, search warrants)
Emergency situations involving danger of death or serious physical injury
Violations of our Terms of Service or illegal activity
Protection of our rights, property, or safety

3.4 Business Transfers

If Mandem is acquired, merged, or sells assets, your information may be transferred as part of that transaction. We will notify you via email and in-app before your information is transferred and becomes subject to a different privacy policy.

3.5 With Your Consent

We may share your information for any other purpose with your explicit consent.

4. Anonymous Posts & Privacy Protection

🔐 How Anonymous Posts Work

When you post anonymously on Mandem, we use advanced privacy protection techniques:

Identity Stripping: Your username, profile photo, and account identifiers are removed from the post
Metadata Removal: We strip metadata that could identify you (timestamps are generalized, e.g., "2 hours ago")
IP Obfuscation: Your IP address is not stored with anonymous posts
Separate Storage: Anonymous content is stored separately from your account data

Important: While we protect your identity from other users, Mandem can identify anonymous post authors internally for safety and moderation purposes (e.g., if content violates Terms of Service or in response to valid legal requests).

5. Data Security

We implement industry-leading security measures to protect your information:

5.1 Encryption

End-to-End Encryption: Private messages are encrypted so only you and recipients can read them
Data in Transit: All data sent between your device and our servers uses TLS 1.3 encryption
Data at Rest: All stored data is encrypted using AES-256 encryption

5.2 Security Practices

Regular security audits and penetration testing
Two-factor authentication (2FA) available for all accounts
Secure password requirements and hashing (bcrypt)
Role-based access controls for our team
Automated monitoring for suspicious activity
Regular security training for employees

No system is 100% secure. While we employ best-in-class security, no data transmission or storage can be guaranteed completely secure. We encourage you to use strong passwords and enable 2FA.

6. Your Privacy Rights & Controls

You have significant control over your data. Here are your rights:

Access Your Data

Request a copy of all personal data we have about you in a portable format.

Correct Information

Update or correct inaccurate information in your profile settings anytime.

Delete Your Data

Request full account deletion. Most data is removed immediately; some may be retained as required by law.

Export Your Data

Download your check-ins, posts, and messages in a standard format.

Control Sharing

Manage privacy settings, including online status visibility and profile information.

Opt Out

Unsubscribe from promotional emails and adjust notification preferences anytime.

6.1 How to Exercise Your Rights

In-App Settings: Most controls are available in Settings → Privacy & Security
Email Request: Contact privacy@mandem.app for data requests
Response Time: We respond to verified requests within 30 days

6.2 California Privacy Rights (CCPA)

If you're a California resident, you have additional rights:

Know what personal information we collect, use, and share
Delete personal information (with certain exceptions)
Opt out of the "sale" of personal information (we don't sell data)
Non-discrimination for exercising your rights

6.3 European Privacy Rights (GDPR)

If you're in the EU/EEA, you have rights including:

Access, rectification, erasure, and data portability
Restriction of processing and object to processing
Withdraw consent at any time
Lodge a complaint with your local data protection authority

7. Data Retention

We retain your information only as long as necessary:

Active Accounts: We retain your data while your account is active
After Deletion: Most data is deleted within 30 days; some may be retained for legal compliance (e.g., financial records for 7 years)
Anonymous Posts: May remain after account deletion (cannot be linked back to you)
Backups: Deleted data may persist in backups for up to 90 days before permanent removal
Legal Holds: Data may be retained longer if required by law or legal proceedings

8. Children's Privacy

Mandem is not intended for anyone under 18 years of age. We do not knowingly collect information from children. If you're a parent and believe your child has provided us with information, please contact us at privacy@mandem.app and we will delete it immediately.

9. International Data Transfers

Mandem is based in the United States. If you access our Service from outside the US, your information may be transferred to, stored, and processed in the US or other countries where our service providers operate.

We use standard contractual clauses and other legal mechanisms to ensure your data receives adequate protection when transferred internationally.

10. Third-Party Links & Services

Our Service may contain links to third-party websites, apps, or services (e.g., crisis hotlines, mental health resources). We are not responsible for the privacy practices of these third parties. Please review their privacy policies separately.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. When we make material changes, we will:

Update the "Last Updated" date at the top
Notify you via email or in-app notification
Post a prominent notice in the app
For significant changes, we may require you to accept the new policy

We encourage you to review this Privacy Policy periodically. Continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal information:

Privacy Team

Email: privacy@mandem.app

Support: support@mandem.app

Data Protection Officer: dpo@mandem.app

Mailing Address:
Mandem, Inc.
Attn: Privacy Team
[Your Physical Address]
[City, State ZIP Code]

💙 Our Commitment to You

Your trust is everything to us. We built Mandem to be a safe space for men to be vulnerable, seek support, and grow together. We will always prioritize your privacy, security, and wellbeing above all else. Thank you for being part of this community.