Skip to main content

Privacy Policy

Effective: May 13, 2025|Last Updated: May 25, 2025

In Simple Terms

  • Privacy First : We collect only the information needed to provide and improve Mellions.
  • Your Data, Your Choices : You can view, correct or delete your data, manage your consent, or request a review of any automated decision that affects you.
  • No Selling or Renting : We never sell or rent your personal information to third parties for commercial purposes.
  • Your Cookies : Manage them at any time via our banner or your settings (see our Cookie Policy).
  • Security : Your data is encrypted, hosted with trusted providers, and protected by strict access controls.
  • Always Up to Date : This policy evolves with our services and the law.

Introduction

Welcome to Mellions (“Mellions,” “we,” “us,” or “our”). We respect your privacy and are committed to handling your personal information responsibly under Canada's PIPEDA, Québec's Law 25, and related provincial laws (e.g., Québec Consumer Protection Act, Charter of the French Language). By using our website or app, you agree to these practices. If you disagree, please do not use Mellions.

1. Information We Collect

A. Directly from You

  • Account details: names, email, passwords, provinces, language preference.
  • Profile Data: age or date of birth (for eligibility), address, phone (for support or verification).

B. Via Your Connected Financial Accounts

  • Financial Data: account numbers, balances, transaction histories, budget categories (only after you explicitly link and authorize).

C. Automatically

  • Usage & Device Data: IP, device types, OS, browser, pages/screens viewed, features used, timestamps.

D. Communications

  • Support Requests & Feedback: any information you submit via chat, email, or surveys.
  • Marketing Opt-Ins: newsletter preferences, if you choose to receive them.

We do not collect Social Insurance Numbers, biometrics, health, religious, or other highly sensitive data unless we obtain your explicit for a clearly defined purpose. We do not collect any sensitive personal information other than financial data as described. Please avoid sharing such sensitive details with us in free-text fields.

2. How We Use Your Information

We process your personal information only for purposes that are reasonable and disclosed to you:
  1. Provide & Improve Mellions:
    • Analyze your financial data to generate budgeting insights, saving tips, and interactive dashboards.
    • Aggregate and anonymize usage data to refine our AI models and user experience.
  2. Personalize Your Experience:
    • Surface tips tailored to your province, spending habits, and stated goals.
    • We use your information for profiling (e.g., AI personalization). This processing requires a separate, explicit consent which you may withdraw at any time without affecting core services.
  3. Account Management & Support:
    • Authenticate logins, help with password resets, respond to support requests.
  4. Communications:
    • Service messages (security alerts, feature updates) are mandatory.
    • Promotional emails only if you opt in; unsubscribe at any time.
  5. Legal & Security:
    • Comply with laws and respond to lawful requests (e.g., court orders).
    • Detect and prevent fraud, unauthorized access, or abuse.
  6. Research & Development:
    • Use anonymized, aggregated data internally to identify trends and develop new features.

We never sell or rent your personal information to third parties.

3. How We Share Your Information

We only disclose your data under these strict conditions:
  1. Service Providers:
    • Access is limited to what's necessary; bound by contractual confidentiality and security obligations.
    • Type of service providers:
    • Financial data aggregators.
    • Cloud Storage and IT Providers.
    • Analytics Tools.
    • Emailing Platform.
    • Payment Processor.
  2. Business Transfers:
    • In a merger, acquisition, or asset sale, we'll ensure successors honour this Policy and notify you.
  3. Legal Requirements:
    • To comply with subpoenas, court orders, or investigations by regulators (e.g., OPC, CAI).
  4. With Your Consent:
    • For features you enable (e.g., sharing a financial summary with an advisor).

We do not share your data for third-party marketing.

4. Cookies & Tracking Technologies

Some of our cookies are described in section 2 of our Cookie Policy. No advertising or third-party social media trackers are used. You can manage your choices via our cookie banner or in-app settings at any time.

5. Data Transfers

While we strive to keep your data in Canada, some service providers operate globally:
  • We conduct Privacy Impact Assessments (ÉFVP) before any cross-border transfer.
  • We execute written agreements with our service providers.
  • We implement technical and organizational security measures.

By using Mellions, you consent to such transfers under these protections.

6. Data Retention

We retain data only as long as needed for our services or to meet legal obligations:
  • Active Users: Data remains alive while your account is active.
  • Closed/Inactivity: After account deletion or 24 months of inactivity, we delete or anonymize personal data.
  • Backups & Legal Holds: Short-term backups (e.g., 30 days) and any records required for audits or legal compliance.

Anonymized data may be kept indefinitely for research and business analytics.

7. Automated Decisions

Mellions analyzes your data using algorithms to offer insights. No significant decisions are made automatically, but if you believe an automated output is in error or have concerns, you may contact us for a review.

In accordance with Québec's Law 25 (LPRPSP art. 26.2.4 ), you may object to any automated processing that produces legal or significant effects and request a human review. To exercise this right, please contact us at [email protected].

8. Your Rights & Choices

You have rights and choices on:
  • Access & Portability: Request a copy of your personal information in a common format.
  • Correction: Update inaccuracies yourself in-app or by contacting us if you cannot do it.
  • Withdraw Consent: For any optional aspect of data collection or use, you can withdraw your consent at any time (e.g., Disconnect accounts, opt out of promotions, or revoke optional consents).
  • Right to be forgotten: Ask us to erase your data (except what we're legally required to keep).
  • Object to Automated Decisions: Request human review if any future feature uses automated decision-making with significant effects.
    • As noted, Mellions doesn't make consequential decisions, but if you feel that an automated process is affecting you in a significant way, let us know. We want our AI to be helpful, not opaque or unfair.
  • Opt-Out of Marketing: The easiest way is to click "unsubscribe" in any promotional email. You can also adjust your preferences in your account or contact us.
  • Manage Cookies: Via our banner or your browser/app settings.
  • File Complaints: Contact us first, so we can try to resolve it. If unresolved, you may reach the Office of the Privacy Commissioner of Canada (OPC) or Québec's Commission d'accès à l'information (CAI).

To exercise these rights, contact our Privacy Officer at [email protected]. Some rights, like correcting your profile information or deleting your account, may also be directly managed through your Account settings within the Mellions application. Please refer to the relevant sections of the app or our support documentation for these direct actions.

9. Security Measures

We employ robust safeguards:
  • Encryption: HTTPS/TLS in transit; AES-256 at rest.
  • Access Controls: Role-based, logging of all access to personal data.
  • Infrastructure: Reputable, certified; regular patching.
  • Monitoring & Testing: Intrusion detection, periodic penetration tests, and security audits.
  • Anonymization and aggregations: process data in aggregated form when possible.
  • Incident Response: Formal breach-notification procedures to users and regulators, as required.

Your responsibilities

We also urge you to keep your data safe.

  • Use a strong and unique password.
  • Don't share it to anyone.
  • Use two-factor authentication.

10. Children's Privacy

Mellions is for users over the legal majority. We do not knowingly collect data from minors. If you believe we have inadvertently collected a minor's data, please contact us to have it removed.

11. Policy Updates

We may update this Policy to reflect legal requirements or operational changes. For material changes, we'll notify you by email or in-app banner. Continued use signifies acceptance.

12. Contact Us

Privacy Officer
[email protected]

Thank you for trusting Mellions. We take your privacy seriously and are always here to help.

Language selector for changing the website language. Current selection: English. Available languages: English, Français.
Alt + L to open language selector. Use arrow keys to navigate, Enter to select, Escape to close.