Mallo · Security

How Mallo protects your data

Mallo is built around personal reflection—so data protection matters. This page is a plain‑English overview of our security posture and the controls you have. For the legal details, see the Privacy Policy.

Key points: We use encryption in transit (HTTPS). We do not sell your personal data. You can export or delete your data from the app’s settings.

What data we handle

To provide core features (daily check-ins, persistent memory, weekly recap), Mallo may process:

Conversation content (messages you send and receive).
Memory content (things Mallo remembers to keep the thread).
Usage and purchase events (to improve the product and manage subscriptions).

Encryption & transport security

When data is transmitted between your device and our systems, we use encryption in transit (HTTPS/TLS). This helps protect data from interception while it moves across the network.

Where processing happens (providers)

Like most modern apps, we rely on a small set of providers to operate Mallo (e.g. AI response generation and subscriptions). The current list is described in our Privacy Policy and may include:

Google AI services (to generate responses).
RevenueCat (to manage subscriptions and restore purchases).
Analytics (to understand product usage and improve reliability).

Your controls

Export your data: available in the app’s Privacy/Data settings.
Delete your data: you can delete app data from the same settings area.
Ad tracking choice (iOS): when applicable, tracking respects Apple’s App Tracking Transparency prompt.

Reporting a security issue

If you believe you’ve found a security issue, please email us at tmproduction886@gmail.com with steps to reproduce and any relevant details.

Related: Privacy · Terms · Contact