Privacy Policy

How we collect, use, and protect your personal data. Mitad operates in accordance with Law 19,628 and its amendments.

Last updated: 2026-05-25

This document is preliminary and has not yet been reviewed by a lawyer. Final legal text coming soon. For questions, email us at hola@mitad.cl.

1. Data we collect

We collect the data necessary to operate the service: email address, Chilean RUT, full name, phone number, bank account for payouts, and platform usage data (groups, payments, vault accesses).

  • Identity data: name, email, RUT, phone number.
  • Financial data: bank account for payouts (group owners only).
  • Usage data: group history, payments, vault accesses, and notifications.

2. How we use your data

We use your data exclusively to operate the service: verify identity, process payments, manage memberships, send group notifications, and comply with legal obligations. We do not sell your data to third parties.

3. Service operation

To provide the service we work with the following data processors, each with their own privacy policies: Supabase (database and authentication, hosted on AWS), Flow (card payment processing in Chile), Resend (transactional email delivery), Cloudflare Turnstile (anti-bot protection on forms).

4. Third parties and processors

The listed processors only receive the minimum data necessary for their function. Mitad does not share your data with advertisers or third parties outside the operational scope of the service.

  • Supabase: authentication and database (AWS us-east-1 / eu-central-1).
  • Flow: card payment processing in Chile.
  • Resend: transactional and notification email delivery.
  • Cloudflare Turnstile: anti-bot protection with no behavioral tracking.

5. Your rights (Law 19,628)

Under Chile's Privacy Protection Law (Law 19,628), you have the right to access, rectify, cancel, and object to the processing of your personal data. You can exercise these rights by writing to hola@mitad.cl.

  • Access: obtain confirmation and a copy of the data we hold about you.
  • Rectification: correct inaccurate or incomplete data.
  • Cancellation: request deletion of your data when no longer needed.
  • Objection: object to processing in justified cases.

6. Retention and deletion

We retain your data while your account is active or while necessary to comply with legal obligations. When you request account deletion, we remove personal data within 30 business days, except where legally required to retain it.

7. Security

We apply reasonable technical and organizational measures to protect your data: AES-256 encryption for credentials, HTTPS connections, OTP authentication, and limited team access. We will notify you immediately in the event of a security incident.

8. Contact

To exercise your rights or ask about this policy, write to us at hola@mitad.cl. We respond within the timeframes established by law.

Questions and rights requests: hola@mitad.cl