Privacy

How MONOBANK collects, uses, and protects personal information when you visit the monobank.com website or use the MONOBANK mobile application.

This Privacy Policy explains what personal information Monobank Inc. (“MONOBANK”, “we”, “our”, “us”) collects when you interact with the monobank.com website (and any of its subdomains we operate) or the MONOBANK mobile application for iOS and Android (together, the “Services”), how we use that information, and the choices you have.

This Policy applies only to the website and the app described above. Where the Services give you access to a regulated financial product — such as a payment account or card — that product is provided by an authorized partner who acts as an independent controller for the personal data they need to operate that product. The relevant partner’s own privacy notice will be presented to you separately and governs that processing.

Who is responsible for your data

MONOBANK is the controller of personal information processed through the website and through the parts of the app that we operate directly (for example, account registration with us, in-app messages from us, support, marketing, and analytics).

Our licensed partners are independent controllers for the personal data they process to provide the regulated services available through the app.

Information we collect

We only collect information we need to operate the Services and to keep them safe and useful.

Information you give us directly

  • Identifiers such as your name, email address, phone number, country of residence, and any account credentials you create.
  • Identity verification data when required to open or access an account through a licensed partner — for example, government-issued ID, a selfie or liveness check, and basic profile details. This data is collected through the partner’s verification flow and is processed by that partner.
  • Communications you send us — for example, support enquiries, contact form submissions, partnership or careers messages, and feedback.
  • Marketing preferences, such as your subscription status for product updates.

Information we collect automatically when you use the Services

  • Device and technical information such as device type, operating system and version, app version, language, time zone, and crash diagnostics.
  • Usage information such as pages or screens viewed, features used, time spent, and high-level interaction events used to understand how the Services perform.
  • Network information such as IP address and approximate location derived from it (city/region level), used for security, fraud prevention, and to determine market availability.
  • Cookies and similar technologies on the website, as described below.

We do not knowingly collect special categories of personal data (such as data about health, ethnicity, or political views) other than what is required for legally mandated identity verification carried out by a licensed partner.

How we use your information

We use personal information to:

  1. operate, maintain, and improve the website and the app;
  2. create and manage your account, where you have one;
  3. enable you to access regulated services provided by our licensed partners;
  4. communicate with you about the Services, important changes, security alerts, and support requests;
  5. send you product updates, launch information, or marketing where you have agreed to receive them, with the option to opt out at any time;
  6. monitor, prevent, detect, and investigate fraud, abuse, and security incidents;
  7. comply with legal, regulatory, and partner requirements that apply to us; and
  8. measure and improve performance, reliability, and user experience through aggregated analytics.

We do not sell your personal information, and we do not share it for cross-context behavioral advertising.

Where data protection laws such as the EU GDPR or the UK GDPR apply to your use of the Services, we rely on the following legal bases:

  • Performance of a contract — to provide the Services to you under our Terms.
  • Legitimate interests — to operate, secure, and improve the Services, and to communicate with you about them, in a way that is balanced against your rights.
  • Consent — for optional uses such as marketing communications and certain cookies, which you can withdraw at any time.
  • Legal obligation — where we are required by applicable law, regulation, or a binding order to process or retain certain data.

When we share your information

We share personal information only when needed and only with parties who are bound to handle it appropriately:

  • Licensed financial partners — to enable identity verification, account opening, card issuance, payment processing, and other regulated services made available through the app. The partner acts as a controller for the personal data needed to provide that product.
  • Service providers (processors) — for example, hosting, app distribution, error monitoring, analytics, customer support tooling, and email delivery, acting only on our instructions and under written agreements.
  • Legal, regulatory, and safety reasons — where we are required to do so by law, by a court, or by a competent authority, or where disclosure is necessary to protect the security of the Services, our rights, or the rights and safety of others.
  • Corporate transactions — if MONOBANK is involved in a merger, acquisition, financing, or sale of assets, your information may be transferred as part of that transaction, subject to appropriate confidentiality and data protection commitments.

We do not sell your personal information to third parties.

International transfers

The Services may be operated from, and supported by providers in, more than one country. Where we transfer personal data across borders, we use appropriate safeguards required by applicable law — such as standard contractual clauses or equivalent mechanisms — to protect that data.

Cookies and similar technologies

The website uses a small number of cookies and similar technologies for essential operation, security, and to understand high-level usage of the site. Where required by law, we ask for your consent to non-essential cookies before they are set, and you can change your preferences at any time through the cookie controls on the website or your browser settings.

The mobile application uses standard mobile platform identifiers and storage to operate the app, sign you in, and diagnose problems. Where required, additional in-app permissions (for example, notifications, camera for identity verification, or biometric unlock) are requested at the moment they are needed and can be changed in your device settings.

Data retention

We keep personal information only for as long as we need it for the purposes described in this Policy, or for as long as we are required to keep it under applicable law, regulation, or partner requirements. When we no longer need it, we delete or anonymize it.

Identity verification data and account records associated with regulated services are retained by the relevant licensed partner in line with their own retention obligations.

Your rights

Depending on where you live, you may have the right to:

  1. access the personal information we hold about you;
  2. ask us to correct information that is inaccurate or incomplete;
  3. ask us to delete information, subject to legal and partner-driven retention requirements;
  4. object to, or restrict, certain processing;
  5. withdraw consent where processing is based on consent;
  6. receive a copy of certain data in a portable format; and
  7. lodge a complaint with your local data protection authority.

To exercise any of these rights, contact us at hello@monobank.com. We may need to verify your identity before acting on your request. Where the data in question is held by a licensed partner as their own controller, we will help you direct the request to the right place.

Security

We use a combination of technical, organizational, and administrative measures designed to protect personal information against loss, misuse, unauthorized access, disclosure, and alteration. No system is perfectly secure, but we work to keep ours resilient and to respond promptly to any incident.

If you suspect that your account or device has been compromised, contact us at hello@monobank.com without undue delay.

Children

The Services are not directed to children under the age of majority in their jurisdiction, and we do not knowingly collect personal information from them. If you believe that a child has provided us with personal information, please contact us so we can take appropriate action.

Changes to this Policy

We may update this Policy from time to time. When we do, we will update the date at the top of this page. If a change is material, we will take reasonable steps to notify you — for example, through the website, the app, or the email address on record. Your continued use of the Services after the changes take effect means you accept the updated Policy.

Contact

Questions about this Policy or about how your information is handled can be sent to hello@monobank.com.