Privacy Policy
MyMinute is a mindfulness app. We collect only what we need to make it work, we never sell your data, and you can delete your account at any time.
1. Who we are
MyMinute ("MyMinute", "we", "us", or "our") is operated by Jeremy Bray, based in Australia. You can reach us at hello@heyjeremy.com.
This Privacy Policy applies to all MyMinute platforms and explains how we collect, use, store and protect your personal information when you use:
- The MyMinute website at myminute.com.au
- The MyMinute web app at webapp.myminute.com.au
- The MyMinute app for Android (available on Google Play)
- The MyMinute app for iOS (available on the App Store)
- The MyMinute app for macOS
All of the above are collectively referred to as the "Service". The same policy applies regardless of which platform you use.
2. Information we collect
Account information — when you create a free MyMinute account we collect:
- Your email address
- A password (stored as a secure hash — we never see your plain-text password)
Session and activity data — when you use the app we record:
- Which session type you completed (e.g. Guided Breathing, Stillness Challenge, Body Scan)
- The date and time each session was completed
- Your streak count and session history
Waitlist submissions — if you submit your email on the landing page to be notified about native app launches, we store that email address for the sole purpose of sending you that notification.
Technical data — like most web services, our infrastructure may automatically log standard information such as your IP address, browser type, and pages visited. We use this only for security and to keep the Service running reliably.
We do not collect payment information, precise location data, microphone or camera input, or any health or biometric data.
3. How we use your information
- To create and maintain your account
- To sync your sessions, streaks and history across your devices
- To send you a one-time notification email when a native app (iOS, Android, Mac) you signed up for launches
- To keep the Service secure and diagnose technical issues
- To understand aggregate usage patterns so we can improve the app (using anonymised, non-identifiable data)
We do not use your data for advertising, profiling, or selling to third parties.
4. How we store your data
Your account and session data is stored securely using Supabase, an open-source backend platform. Supabase stores data in secure, encrypted databases hosted on AWS infrastructure. You can read Supabase's own privacy and security documentation at supabase.com/privacy.
Access to your data is restricted to the minimum required to operate the Service. We do not give third parties access to your personal data except as described in Section 5.
5. Third parties
We use a small number of third-party services to operate MyMinute:
- Supabase — database, authentication and storage
- Email provider — to send waitlist notification emails (we will update this policy when a specific provider is selected)
- Cloudflare — DNS, CDN and web security
These providers process data only on our behalf and under our instructions. We do not sell, rent or trade your personal information to any third party.
6. Data retention
We keep your account and session data for as long as your account is active. Waitlist email addresses are deleted once we have sent the relevant launch notification and a reasonable period has passed.
If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it by law.
7. Your rights
Depending on where you live, you may have rights including:
- Access — request a copy of the data we hold about you
- Correction — ask us to fix inaccurate information
- Deletion — request that we delete your account and personal data
- Portability — receive your data in a portable format
- Opt-out — unsubscribe from any emails we send at any time
To exercise any of these rights, email us at hello@heyjeremy.com and we will respond within 30 days.
8. Mobile app permissions
The MyMinute Android and iOS apps request only the permissions needed to deliver the core experience. Depending on the features you use, the apps may request:
- Internet access — required to sync your account, sessions and streaks via Supabase
- Device motion / accelerometer — used only by the Stillness Challenge feature to detect movement during a session. This data is processed on-device in real time and is never transmitted or stored
- Notifications — optional, only if you choose to enable reminders. You can disable these at any time in your device settings
We do not access your camera, microphone, contacts, photos, location, or any other device data. The apps do not run in the background or collect data when you are not actively using them.
9. Children and families
MyMinute is not directed at children under 13 and we do not knowingly collect personal information from anyone under 13. The Service requires account creation with an email address; users must be at least 13 years old to register.
COPPA (United States) — We comply with the US Children's Online Privacy Protection Act (COPPA). We do not knowingly collect, use, or disclose personal information from children under 13 without verified parental consent. If you are a parent or guardian and believe your child under 13 has created a MyMinute account or provided us with personal information, please contact us immediately at hello@heyjeremy.com and we will delete that information promptly.
GDPR — children in the EEA — If you are located in the European Economic Area and are below the age of digital consent in your country (16 in most EEA countries, or the age specified by local law), you must have your parent or guardian's consent before using MyMinute. We do not knowingly process the personal data of children below the applicable age of digital consent without appropriate parental or guardian consent. Parents or guardians who believe their child's data has been processed without consent should contact us at hello@heyjeremy.com and we will take steps to delete it.
If we discover that we have inadvertently collected personal information from a child below the applicable age threshold, we will take immediate steps to delete that information and terminate the associated account.
Advertising — MyMinute does not display third-party advertisements. We do not use your data for advertising or profiling purposes.
10. Security
We take reasonable technical and organisational measures to protect your data — including encrypted connections (HTTPS), hashed passwords, and access controls. No method of transmission over the internet is 100% secure, but we work to protect your information to the best of our ability.
11. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we'll update the "Last updated" date at the top of this page. For significant changes we'll make a reasonable effort to notify registered users by email.
12. Contact us
If you have any questions about this Privacy Policy or how we handle your data, please get in touch:
hello@heyjeremy.com
MyMinute.com.au