Privacy policy

Mio is an automated agent that helps you find the lowest final price on the things you buy and the services you hire. To do that we collect a small amount of information you give us, plus the outcomes of actions Mio takes on your behalf. We use it only to run the service. We do not sell personal information. You can ask us to show you what we hold, correct it, or delete it.

Mio is operated by the entity behind the Mio agent (mioagent.app). For privacy questions, complaints, or to exercise any of the rights described below, contact [email protected]. We will respond within 30 days.

We only collect what is necessary to provide the service. The categories below cover everything Mio holds about you.

• Account identity. If you sign in with Clerk, we receive your name and email from the auth provider. Until you sign in, you are tracked by a guest cookie value generated in your browser; we never link that cookie to your real identity.
• Personal Economic Vault. Your postcode, the cashback portals you have connected, the loyalty programs you hold, and self-declared eligibility flags (for example student, defence, Costco). You enter these yourself; you can clear or change any of them at any time.
• Search and comparison data. The products you search for, the comparison pages Mio computes for you, and the True Final Price breakdowns that result.
• Service request data. When you ask Mio to collect quotes for a service (Real Negotiation Engine), we collect the job description, location, scope, timing, and the name and email you ask Mio to use when contacting providers.
• Outbound and inbound message audit trail. Every email or form submission Mio sends on your behalf, plus the replies from retailers and providers, is recorded with timestamps, message identifiers, the parsed outcome, and the full body of the message. This is the legal record of the authorised-agent relationship and is required by Section 5.10 of our Product Specification.
• Authorisation context. When you click a button that authorises Mio to act (Get matched price, Submit quote request, Update vault), we record the timestamp, your IP address, your user-agent, and the consent text shown to you at that moment. This protects both you and Mio if the action is later questioned.
• Service provider information. If you sign up to receive Mio-routed quote requests, we collect your business name, contact name, email, mobile number (optional), trade type, service area, capacity, discount commitment, and self-declared licence number.
• Verification codes. One-time verification codes sent to your email are held only as a SHA-256 hash, never the plaintext, and are deleted after use or expiry.
• Operational telemetry. Anonymised event metrics (counts, latency, error rates) used to keep the service running reliably and to report aggregated traction numbers to investors. Event records do not contain the content of your messages.

We do not collect sensitive information (as defined by the Privacy Act) such as health data, racial or ethnic origin, political opinions, religious beliefs, sexual orientation, or biometric information.

Each piece of information has a purpose tied to running the service. We do not use it for anything else without your consent.

• Vault entries feed the True Final Price calculation so the comparison page reflects what you can actually pay.
• Search and comparison data lets us produce the breakdown panel and improve the comparison engine over time.
• The audit trail is the legal record that Mio acted on your authorised instruction, and the source of truth if a retailer or provider questions an interaction.
• Service request data is shared only with the providers you ask Mio to contact, plus the disclosure footer Mio attaches to its outbound messages.
• Authorisation context (timestamp, IP, user-agent, consent text) is held to demonstrate that you specifically authorised an action at a specific moment.
• Operational telemetry is held in aggregate form and used to keep the service reliable and to report investor metrics.

Personal information is disclosed only as described below. Mio does not sell personal information.

• Retailers when you click Get matched price. Mio sends an email or fills a contact form using the name and email you provided, with a mandatory disclosure footer identifying Mio as your authorised agent and naming the authorisation reference.
• Service providers when you submit a quote request. Mio shares the job description, location, scope, timing, and your contact details with the providers you authorise Mio to contact.
• Service vendors that operate parts of the infrastructure: Postmark (transactional email delivery and inbound webhook), OpenAI (large-language-model processing of email composition and reply parsing), Clerk (authentication when you sign in), DigitalOcean (Australian Sydney region hosting and managed Postgres). These vendors act on Mio's instructions only and are not permitted to use your information for their own purposes. OpenAI is located in the United States; all other infrastructure for the Australian service runs in DigitalOcean's Sydney (SYD1) region.
• Government bodies or law enforcement only if compelled by law (for example a valid warrant or court order) and only to the extent required.

The OpenAI processing referenced above involves disclosure of email body text and structured fields to systems located in the United States, solely so the language-model service can produce structured output back to Mio. We do not retain the text in third-party systems beyond the request lifecycle. By using Mio you consent to this overseas disclosure for the purpose of running the service. All other personal information for the Australian service is held in Australia (Sydney region).

Mio uses large language models to compose outbound emails on your behalf and to parse retailer and provider replies into structured fields. The composed email and the parsed outcome are decisions produced with significant use of an automated system. Specifically:

• GPT-5 / GPT-5-mini / GPT-5-nano are used for email composition, reply parsing, and validator checks before any message leaves Mio.
• Every Mio-sent message passes an automated validator that blocks false stock claims, mismatched model numbers, and any message missing the disclosure footer.
• The True Final Price you see on the comparison page is computed deterministically from data sources Mio consults; the breakdown panel shows every contributing layer transparently.
• You always see the breakdown before you authorise a Get matched price or quote-request action. You can choose not to proceed.

If you would like a human review of any automated decision Mio made on your behalf, email [email protected]. We will respond within 30 days with the inputs that produced the decision and a human review of the outcome.

Retention periods reflect the purpose of each category.

• Vault entries are kept while your account is active. You can clear or delete any entry at any time.
• Search and comparison data is kept while your account is active so historical comparisons remain visible to you. You can ask us to delete your history at any time.
• Audit trail rows for messages Mio sent on your behalf are retained for seven years. This matches the practical retention guidance under Australian record-keeping norms for actions taken on a customer's authority.
• Authorisation context (IP, user-agent, consent text) is retained alongside the audit row it supports.
• Verification code hashes are deleted as soon as the code is consumed or has expired.
• Operational telemetry is held in aggregate form for as long as it is operationally useful and is anonymised at the source.

You have the following rights at any time. Email [email protected] to exercise any of them.

• Access. Ask us for a copy of the personal information we hold about you. We will respond within 30 days. There is no fee.
• Correction. Ask us to correct anything we hold that is inaccurate, out of date, incomplete, irrelevant, or misleading.
• Deletion. Ask us to delete personal information we hold about you that is not subject to a legal retention requirement.
• Withdraw consent. Stop using a feature, or remove an entry from your vault, at any time.
• Complain. Lodge a complaint with the Office of the Australian Information Commissioner (OAIC) if you believe we have mishandled your information. We ask that you contact us first so we can attempt to resolve the issue.

We hold personal information in managed Postgres databases in DigitalOcean's Sydney region with encryption in transit and at rest. Verification codes are stored as one-way hashes and never in plaintext. Access to the production environment is limited to the operators who run the service. Outbound email is sent over authenticated, signed channels (SPF, DKIM, DMARC).

Mio is not directed at children. We do not knowingly collect information from anyone under 18. If you believe a child has given us information, contact us and we will delete it.

We update this policy whenever the way Mio handles personal information changes. The "Last updated" date at the top reflects the latest version. Material changes are summarised in a banner on the homepage for at least 30 days before they take effect.

If we have not resolved your privacy complaint to your satisfaction, you can contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.