Your privacy, respected.

monnian is operated by Asenno Oy, a company registered in Finland. Asenno Oy is the data controller responsible for the personal data described in this policy.

For anything related to your data or this policy, reach us at info@monnian.com.

Only what the product needs to work.

• Account information you provide: name, email address, company name, billing address.
• Usage data generated as you work: pages visited, features used, timestamps.
• Technical data your browser shares: IP address and device type.

Payment information is handled by Stripe. Your full card number never touches our servers.

Every piece of data has a purpose.

• Account data keeps you signed in and your workspace running. Legal basis: contractual necessity.
• Usage data shows which features matter and where things break. Legal basis: legitimate interest.
• Technical data keeps the platform secure. Legal basis: legitimate interest.
• Financial records are retained where required by law. Legal basis: legal obligation.

We don't sell your data. We don't share it with advertisers. We don't build profiles for third parties. Your data powers your account. Nothing else.

Your data is encrypted at rest and in transit. Access to production systems is tightly controlled and logged. Backups are encrypted.

Your data is retained for as long as your account is active. When you close your account, it's permanently removed within 30 days.

Essential cookies keep you signed in and remember your preferences. That's all.

No analytics cookies. No advertising cookies. No tracking pixels. Our analytics are server-side and don't identify individual users. The product works with these essential cookies alone.

A small number of trusted services help run monnian:

• Stripe Payment processing
• Amazon Web Services Infrastructure and email delivery
• Anthropic AI inference for intelligent features
• OpenAI AI inference for intelligent features

Each provider operates under a data processing agreement. They receive only the minimum data their service requires. AI providers process data solely to generate responses on your behalf — they do not use your data to train their models.

These rights apply to every user, regardless of location. You can:

• Access your data and request a complete copy of what we hold.
• Correct inaccurate information.
• Delete your data or close your account entirely.
• Export your data in a portable format.
• Object to specific processing activities.
• Restrict how your data is processed.
• Withdraw consent where consent is the legal basis.

As a Finnish company, monnian operates under the EU General Data Protection Regulation. You also have the right to lodge a complaint with a supervisory authority. In Finland, that's the Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto).

All requests are handled within 30 days.

monnian is a Finnish company. Your data is stored in our managed database with encryption keys specific to your workspace's region. EU workspace encryption keys are managed in the EU to support data residency requirements.

Where data is processed outside the EU — for example, when AI inference providers handle a request — Standard Contractual Clauses and, where applicable, supplementary technical safeguards are in place to ensure your data receives the same level of protection required by the GDPR.

When this policy changes, the revised version is posted here with a new effective date. For significant changes, you'll hear from us by email before they take effect.

Questions about your privacy or this policy: