moblers
← Home

Privacy policy

Last updated: April 2026

Introduction

moblers ("we", "us", "our") operates portal.moblers.com (the "Portal"). This Privacy Policy explains how we collect, use, store, and protect your personal information when you use the Portal. We are committed to protecting your privacy and handling your data responsibly.

Information we collect

  • Account information — name, email address, and company name provided during sign-up or project intake.
  • Project data — product specifications, Figma URLs, platform preferences, integration selections, compliance notes, and uploaded documents you submit through the Portal.
  • Payment information — invoice references and payment amounts recorded when your project manager confirms receipt of a wire transfer.
  • Usage data — IP address, browser type, pages visited, and timestamps collected automatically for security and analytics purposes.

How we use your information

  • To deliver the Portal service — creating estimates, managing project milestones, processing payments, and facilitating build and QA workflows.
  • To communicate with you — sending project updates, responding to inquiries, and providing support.
  • To generate AI-assisted content — your project specifications are sent to AI providers (OpenAI, Anthropic) to produce scope drafts, estimates, and starter code. Only the data necessary for generation is transmitted.
  • To improve the Portal — analyzing usage patterns to enhance features, performance, and security.

AI data processing

When you submit a project spec, selected portions are sent to third-party AI services (OpenAI for estimates, Anthropic for code generation) via their APIs. These providers process data according to their own privacy policies and data processing agreements. We do not use your project data to train AI models. AI providers may temporarily retain data for abuse monitoring per their policies.

Information sharing

  • Payment records — wire transfer references and amounts are stored in our database when your PM records a payment.
  • AI providers — OpenAI and Anthropic receive project specifications for estimate and code generation.
  • Hosting provider — Netlify hosts the Portal; Neon hosts our database. Both process data on our behalf under data processing agreements.

We do not sell your personal information to third parties. We may disclose information if required by law or to protect our rights.

Cookies and tracking

The Portal uses essential cookies for authentication (session management) and locale preferences. We do not use third-party advertising or tracking cookies.

Data retention

We retain your project data for the duration of the engagement and for a reasonable period afterward for record-keeping and legal compliance. Account information is kept as long as your account is active. You may request deletion of your data at any time (see Your Rights below).

Security of this portal

We implement industry-standard security measures for the portal itself, including encrypted connections (TLS), secure authentication, role-based access controls, audited deployment pipelines, and bounded artifact retention. Database access is restricted and encrypted in transit. While we take reasonable precautions, no method of internet transmission is 100% secure. For the security baseline of the applications moblers delivers to your end users, see the section below.

Security of the apps we build for you

We treat the apps moblers delivers to your end users with the same care as the portal data we hold on you. Every application moblers delivers ships with our application security baseline: OS-keychain-backed secret storage via flutter_secure_storage (OWASP Mobile Top 10 / M9), HTTPS-only API clients with PII-aware redaction in release builds (M3, M5, M6), automated secret scanning (gitleaks) and CVE-affected dependency scans (OSV-Scanner) on every commit to the production branch (M2), and a one-to-one mapping of every safeguard to its OWASP Mobile Top 10 control. The full baseline is published as a downloadable PDF on the portal home page so your security and compliance team can audit it independently. Regulated profiles for HIPAA, PCI, or banking workloads (biometric step-up, certificate pinning, jailbreak detection, encrypted local databases) are available on request. Responsible vulnerability reports about a delivered application can be sent to [email protected] under a 90-day coordinated disclosure window.

Your rights

  • Access — request a copy of the personal data we hold about you.
  • Correction — request correction of inaccurate or incomplete data.
  • Deletion — request deletion of your personal data, subject to legal retention requirements.
  • Portability — request your data in a structured, machine-readable format.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

Children's privacy

The Portal is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately.

Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be communicated via the Portal or email. The "Last updated" date at the top reflects the most recent revision.

Contact

Questions about this policy or your data? Contact us at [email protected].

Privacy policy