Built in Europe

Built in Europe,
hosted in Europe.

Mirlo runs on European infrastructure from day one — not as a marketing afterthought. Every third-party service we use was chosen with EU data residency as a priority.

Where your data lives

Every service that touches your data is listed below, along with its location and role.

Database, Auth & StorageIreland, EU

Powered by Supabase on AWS eu-west-1 (Dublin). Your account, connections, posts, messages, and media are stored here. Supabase operates under EU data processing agreements.

SMS verification (OTP)Netherlands, EU

Handled by CM.com, headquartered in Breda, the Netherlands. We chose CM.com specifically for its EU infrastructure and direct carrier connections in the Netherlands and broader Europe.

Push notificationsExpo (US relay)

Push notifications are delivered via Expo's push service, which relays them through Apple (APNs) or Google (FCM). The notification payload is minimal — just a signal that something happened. No message content is included.

App distributionApple App Store

Like every iOS app, Mirlo is distributed through Apple's App Store. Apple processes the download transaction but does not have access to your Mirlo account data or content.

What this means for you

GDPR applies — fully

Because Mirlo is based in the Netherlands and all data is stored within the EU, the General Data Protection Regulation (GDPR) applies in full. You have the right to access your data, correct it, export it, and permanently delete it — all from within the app.

EU law governs your data

Because Mirlo is a Dutch business and your data lives in Ireland, it falls squarely under EU jurisdiction. Any lawful data request must go through EU legal channels — the same strong framework that applies to every business operating within the European Union.

Who can access your data

Only you, and Mirlo's team. Supabase has technical access to the infrastructure as the hosting provider, under a data processing agreement. No one else. There is no advertising platform and no data broker. Your personal content is never shared with third parties.

Your rights

Access, correction, and deletion

You can view and update your profile directly in the app. To delete your account and all associated data, go to Settings → Delete account. Deletion is permanent after a 7-day grace period.

Data portability and other requests

To request a copy of your data or exercise any other GDPR right, contact us at support@mirlo.social. We will respond within 30 days.

Lodge a complaint

If you believe we are processing your data unlawfully, you have the right to lodge a complaint with the Dutch data protection authority: Autoriteit Persoonsgegevens.

Questions about your data or privacy?

support@mirlo.social · Mirlo Social, The Netherlands