Privacy Policy
Last updated: May 11, 2026 · Applies to Missn for iPhone and iPad (macOS app coming soon).
This Privacy Policy explains how Missn ("we", "our", "us") collects, uses, stores, and shares personal data when you use the Missn app on iPhone and iPad. We comply with the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and Apple's App Store privacy requirements.
1. Controller
The controller responsible for processing your personal data within the meaning of Art. 4 No. 7 GDPR is:
2. Scope
This policy covers the Missn iOS and iPadOS application, including its companion Apple Watch app, home-screen widgets, and Share Extension. The Missn for macOS application is in development and not yet available; once released, this policy will be updated to reflect any macOS-specific processing.
This policy does not cover the public marketing website at missn.ai beyond stating that the site does not use tracking cookies or third-party analytics.
3. What Data We Process
Missn is designed to minimise data collection. The data we process depends on which features you use.
3.1 Account & Mailbox Data
When you connect an email account (Google, Microsoft, iCloud, or any IMAP/SMTP server), Missn authorises access to that mailbox through our processor Nylas (see section 5). We receive and process:
- Your email address and display name from the connected mailbox
- Messages, threads, attachments, drafts, and folder structure of the connected mailbox
- Calendar events from connected accounts
- OAuth tokens or, for IMAP accounts, app-specific passwords (stored encrypted on your device in the iOS Keychain and on Nylas servers)
3.2 Calendar & Contacts (Apple Frameworks)
- Apple Calendar (EventKit): If you grant calendar access, Missn reads and writes events on the iOS calendars you have configured. This data stays on your device and on Apple's iCloud (if iCloud Calendar is enabled in iOS Settings).
- Contacts: If you grant contacts access, Missn reads contact names and email addresses solely to autocomplete recipients when you compose a message. Contact data is never uploaded to our servers.
3.3 Push Notifications
If you allow notifications, Apple issues an APNs (Apple Push Notification service) device token. We store this token together with your account identifier on our backend (api.missn.app) to deliver notifications about new email, calendar reminders, and Off-Duty Mode status. We do not use Firebase or any third-party push provider.
3.4 Subscription & Purchase Data
If you purchase a Missn Pro or Business subscription, the purchase is processed by Apple via In-App Purchase. We use RevenueCat (see section 5) to verify the receipt and determine your entitlement. We receive a pseudonymous Apple identifier and the subscription status (active / cancelled / expired). We do not receive your name, billing address, or payment details — those stay with Apple.
3.5 App Settings & Off-Duty Configuration
Preferences such as theme, signature, swipe actions, font size, and Off-Duty schedule are stored locally and, with your iCloud account, synced via Apple CloudKit (private database). Off-Duty schedules are additionally sent to api.missn.app so we can suppress server-side push delivery while you are off-duty.
3.6 Diagnostics
If you opt in to share diagnostics with Apple via iOS Settings → Privacy → Analytics, crash reports may be shared with us in anonymised form via Xcode Organizer. We do not run third-party crash reporters, advertising SDKs, or user-behaviour analytics.
3.7 AI Features
Daily briefings, email summaries, draft replies, and auto-categorisation use Apple Intelligence's on-device Foundation Models. Email contents processed by these features do not leave your device and are not sent to OpenAI, Anthropic, Google, or any other cloud AI provider.
4. Purposes & Legal Bases
| Purpose | Legal basis (GDPR Art. 6) |
|---|---|
| Display and manage your mailbox / calendar | Art. 6(1)(b) — performance of the contract |
| Push notifications for new mail / events | Art. 6(1)(a) — consent (granted via iOS permission prompt) |
| Access to Apple Calendar & Contacts | Art. 6(1)(a) — consent (granted via iOS permission prompt) |
| Subscription verification | Art. 6(1)(b) — performance of the contract |
| Off-Duty server-side notification gating | Art. 6(1)(b) — performance of the contract |
| Aggregated crash diagnostics | Art. 6(1)(f) — legitimate interest in improving stability |
5. Sub-Processors
We use the following processors to provide the service. With each processor we have entered into a Data Processing Agreement under Art. 28 GDPR.
| Processor | Purpose | Location | Transfer safeguard |
|---|---|---|---|
| Nylas Inc. | Unified mailbox & calendar API (we use the EU instance at api.eu.nylas.com) |
Hosting in Frankfurt, Germany; parent company in the USA | EU SCCs + supplementary measures |
| Apple Inc. | App distribution, Apple Push Notification service (APNs), CloudKit settings sync, EventKit, Apple Intelligence | EU & USA | EU SCCs (Apple) — see Apple Privacy |
| RevenueCat Inc. | Subscription receipt verification & entitlement | USA | EU SCCs — see RevenueCat Privacy |
| Google LLC (only if you connect a Google mailbox) | OAuth, Gmail and Google Calendar APIs (accessed through Nylas) | USA / EU | Subject to Google's Privacy Policy |
| Microsoft Corp. (only if you connect a Microsoft mailbox) | OAuth, Outlook / Microsoft 365 APIs (accessed through Nylas) | EU / USA | Subject to the Microsoft Privacy Statement |
We host our own backend at api.missn.app in an OpenShift cluster located in Germany. Backend storage uses PostgreSQL with encryption at rest and TLS for all client connections.
6. International Data Transfers
Where we transfer personal data to a country outside the European Economic Area (EEA), we rely on the European Commission's Standard Contractual Clauses (Art. 46 GDPR) plus, where relevant, supplementary measures (encryption in transit, access controls, EU-region hosting). Mailbox data routed via Nylas stays within the EU.
7. Storage Duration
- On your device: Cached email, calendar, and app preferences remain until you uninstall the app or disconnect the relevant account.
- On our backend: Push tokens and Off-Duty configuration are deleted 90 days after the device stops checking in. Subscription receipts are retained for as long as German tax law requires (up to 10 years per § 147 AO) in aggregated form.
- At Nylas: Mailbox data is retained for as long as the account remains connected. When you disconnect a mailbox, the corresponding grant is deleted at Nylas within 30 days.
8. Your Rights (GDPR Art. 15–22)
You have the following rights regarding your personal data:
- Right of access (Art. 15)
- Right to rectification (Art. 16)
- Right to erasure (Art. 17) — "right to be forgotten"
- Right to restriction of processing (Art. 18)
- Right to data portability (Art. 20)
- Right to object (Art. 21), in particular against processing based on legitimate interest
- Right to withdraw consent at any time (Art. 7(3)), without affecting the lawfulness of prior processing
To exercise these rights, email jan@missn.ai. You can also disconnect any mailbox and delete all local data at any time directly within the app: Settings → Accounts → Disconnect; uninstalling the app removes the local cache entirely.
You have the right to lodge a complaint with a supervisory authority. For users in North Rhine-Westphalia (Germany), the competent authority is:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW)
Kavalleriestr. 2–4
40213 Düsseldorf
Germany
9. Children's Privacy
Missn is not directed to children under the age of 16. We do not knowingly collect data from children under 16. If you are a parent and believe your child has provided data to us, please contact jan@missn.ai and we will delete it.
10. Apple App Store "Data Used to Track You"
Missn does not track you across apps or websites owned by other companies. No Apple App Tracking Transparency (ATT) prompt is shown because we do not engage in cross-app tracking. The data we collect is used only to provide and operate the app, as described above.
11. Security
- All network traffic uses TLS 1.2 or higher.
- OAuth tokens, IMAP credentials, and API keys are stored in the iOS Keychain on your device.
- Our backend uses encrypted PostgreSQL storage, role-based access control, and is hosted in Germany.
- We never log mailbox content on our backend; only metadata required for push delivery is processed.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated through the app and reflected in the "Last updated" date. Continued use of Missn after a change indicates acceptance of the updated policy.
13. Contact
For any privacy-related questions, requests, or complaints:
Email: jan@missn.ai
Postal: Jan Koch, Pestalozzistr. 71, 50767 Cologne, Germany