Privacy Policy

Last updated 14 June 2026

Mnac builds focused, read-only software tools that help you analyze systems you already use and surface useful findings. This policy explains, in plain terms, what we collect, why, and what we never do. It applies to mnac.io and the software we operate.

What we collect

• Your email address, when you sign in. We use passwordless magic links, so we do not store a password.
• Data you connect or upload for an analysis, for example a read-only Stripe connection or a Stripe export. We use it only to produce the result you asked for (your audit or report).
• Basic product usage, such as which pages you viewed and which actions you took, so we can fix problems and improve the product. This is standard web analytics, tied to a session, not sold.

How we access connected accounts

Our tools request read-only access, or work from an export you provide. We do not request, hold, or use write access. We never create charges, edit invoices, change subscriptions, move money, or alter any record in your connected accounts. Findings are information for you to act on, never automatic actions.

What we never do

• We never sell, rent, or trade your personal data or your connected data.
• We never use your data to train machine-learning models.
• We never share your data with third parties except the service providers below, strictly to operate the product.

Service providers we rely on

We use a small set of reputable providers to run Mnac: Stripe (to read billing data you connect, and, where you choose to pay, to process payments), Google Cloud (hosting), Resend (to send sign-in and account email), and a privacy-respecting product-analytics provider. Each receives only what it needs to do its job.

Security

Your data is encrypted in transit (TLS) and at rest. Access is limited to what is needed to operate the service. We keep analysis data only as long as needed to provide your result and then on a limited retention schedule.

Your choices

You can request access to, correction of, or deletion of your personal data at any time by emailing support@mnac.io. You can disconnect a connected account at any time, which stops any further reading of it.

Data retention & deletion

If you ask us to delete your account, we delete your personal data and connected-analysis data within a reasonable period, except where we must keep limited records to meet legal or accounting obligations.

Changes

If we make material changes to this policy, we will update the date above and, where appropriate, notify you. Continued use after a change means you accept the updated policy.

Contact

Questions about privacy? Email support@mnac.io.