← Back

Privacy Policy

Effective: May 1, 2026 | GDPR compliant

1. Data Controller

CMS SupaTrak s.r.o.
IČO: 28659121
Železárenská 636/4, Hulváky, 709 00 Ostrava
Email: privacy@mendoapp.eu

2. Data We Process

CategoryDataPurpose
RegistrationName, email, password (hash)Account creation
Repairer profileCompany, address, specializationMarketplace listing
DiagnosticsAppliance photosAI fault analysis
LocationGPS (with consent)Finding repairers
CommunicationChat messagesCustomer–repairer chat
PaymentsPayment data (Stripe)Payment processing
TechnicalIP, device, languageSecurity & localization

3. Legal Basis

4. AI Photo Processing

Photos processed by AI (Google Gemini 2.5 Flash), transmitted encrypted (TLS 1.3), not used for training, retained 90 days.

5. Third-Party Data Sharing

RecipientPurposeCountry
Supabase (PostgreSQL)Database, authEU (Frankfurt)
Google Cloud (Gemini AI)AI diagnosticsEU
StripePaymentsEU/US (SCC)
Firebase (FCM)Push notificationsEU/US (SCC)

6. Data Retention

7. Your Rights (GDPR)

To exercise your rights, contact us at privacy@mendoapp.eu. We will respond within 30 days.

8. Cookies

Only technically necessary cookies. No analytics/advertising cookies without consent.

9. Supervisory Authority

You have the right to file a complaint with a supervisory authority in your country.

10. Contact

CMS SupaTrak s.r.o.
Železárenská 636/4, Hulváky, 709 00 Ostrava
IČO: 28659121
Email: privacy@mendoapp.eu