Maydio

Privacy Policy

Maydio respects your privacy. This policy explains what we collect, why we collect it, and your choices.

Last updated: May 31, 2026

1. Who we are

"Maydio" is the name of our personal safety mobile application and website. The Maydio mobile application and website are operated by the independent developer(s) behind the Maydio project ("we", "us", "our").

Maydio is not currently registered as a company, LLP, or other formal legal entity in India or elsewhere.

We may register a formal business entity later. If that happens, we will update this policy and our Terms of Service, and note the registered name and contact details here.

In this Privacy Policy, "Maydio", "we", "us", and "our" refer to the operator(s) of the Maydio service described above. For privacy questions or grievances, contact support@maydio.com.

2. Information we collect

  • Account information: name, email, phone number, profile photo, and password (stored in hashed form).
  • Location data (sensitive): GPS coordinates when you use SOS, live location sharing, journey tracking, or related safety features — while those features are active or as you configure. We do not continuously track your location in the background without your action to start sharing or an active SOS.
  • Safe Circle data: people you invite, relationships, and alert preferences.
  • Safety and activity data: SOS alerts, check-ins, wellness metrics, journey/activity history, and related logs needed to operate the service.
  • Device information: push notification tokens, device type, operating system, and app version for notifications, security, and troubleshooting.
  • Media you upload: images attached to alerts or your profile (stored using our cloud storage provider).
  • Website usage: basic technical logs when you visit maydio.com (e.g. IP address, browser type) for security and reliability.

3. How we use your information

  • Provide SOS alerts, location sharing, and circle notifications
  • Authenticate your account and keep the service secure
  • Send push notifications you expect (alerts, circle activity)
  • Store and deliver alert media you choose to upload
  • Improve reliability, prevent abuse, and comply with law
  • Respond to support and privacy requests

We do not sell your personal information or location history to advertisers or data brokers.

4. Legal basis and consent

Location and other safety-related data are sensitive personal data under applicable laws (including India's Digital Personal Data Protection Act, 2023). We process this data based on your consent when you create an account, enable permissions, add circle members, or use safety features.

You may withdraw consent by stopping location sharing, removing circle members, disabling notifications, or deleting your account. Withdrawing consent may limit core features.

By creating an account, you confirm you are at least 13 years old and have read this Privacy Policy and our Terms of Service.

5. Sharing with your Safe Circle

When you add someone to your Safe Circle or trigger SOS or live sharing, you direct us to share your alert and location information with those users. Circle members are independent users — not employees or agents of Maydio. You are responsible for choosing people you trust. We are not responsible for how circle members use information you share with them.

6. Other sharing and service providers

We may share data with:

  • Infrastructure providers that host our API and process data on our behalf (e.g. cloud hosting, databases such as MongoDB Atlas, file storage such as Amazon S3, message queues such as Redis cloud services).
  • Notification providers (e.g. Google Firebase Cloud Messaging) to deliver push notifications to your device.
  • Legal and safety: when required by law, court order, or to protect rights, safety, and integrity of the service.

These providers process data only to perform services for us under confidentiality and security obligations. Our providers may change over time; we will update this policy when practices materially change.

7. Data retention and deletion

We retain account and safety data while your account is active. Location and activity logs are kept for limited periods aligned with product settings and operational needs, then deleted or anonymized.

Account deletion: When you delete your account in the app or confirm a deletion request by email, we delete or anonymize personal data within 30 days, except where we must retain minimal information for legal compliance, fraud prevention, or dispute resolution. Encrypted backups may take up to 90 days to fully purge from all systems.

Deleting your account removes your profile from active use; circle members may still have seen alerts or locations shared before deletion.

8. Security

We use encryption in transit (HTTPS/TLS), access controls, and industry-standard practices for stored data. Alert and location data sent through our systems is protected in transit; data at rest is stored on secured infrastructure. This is not end-to-end encryption between your device and each circle member's device — circle members receive data necessary to view your alerts in the app.

No method of transmission over the internet is 100% secure. We work to protect your information and improve safeguards over time.

9. Your rights and choices

  • Access and update profile information in the app
  • Control location sharing and circle membership
  • Disable push notifications in device or app settings
  • Request a copy of your personal data by emailing support@maydio.com
  • Delete your account in the app (Profile → Account settings) or email support@maydio.com from your registered email

If you are in a region with additional privacy rights (including India or the EU), you may contact us to exercise applicable rights. We will respond within a reasonable time and no later than 30 days where required by law.

10. Grievance redressal (India)

If you have a concern about how we handle your personal data, contact us at support@maydio.com. We will acknowledge and address grievances within 30 days where applicable under Indian law. If we register a formal business entity, we will update this section with any required officer details.

11. Cookies and website analytics

Our marketing website (maydio.com) uses only essential technical processing needed to deliver pages securely. We do not use third-party advertising cookies on the website at this time. If we add analytics or non-essential cookies later, we will update this policy and provide choices where required.

12. Children

Maydio is intended for users aged 13 and older. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided data, contact us and we will delete it. Users aged13–17 should use the service with a parent or guardian's knowledge where local law requires.

13. International transfers

Your data may be processed in India and other countries where our service providers operate (including the United States and other regions where cloud providers host data). We take steps to ensure appropriate safeguards when data crosses borders.

14. Changes to this policy

We may update this Privacy Policy from time to time. We will post the new version on this page and update the "Last updated" date. For material changes, we may also notify you in the app or by email where appropriate. Continued use after the effective date means you accept the updated policy.

15. Contact

Privacy questions and grievances: support@maydio.com