Hi @donquijote22 The images are stored in an object store, and the object location stored in our primary data store. There’s no particular reason for us to build a way for Mondo staff to view the receipts so we’ve not done that, but on the other hand we’ve not gone to any effort to encrypt it with keys we don’t have.
Privacy is something we take seriously, but we’re not building and operating a system where we disavow access to data you’ve generated, like say, an encrypted mail or messaging company.
The data you generate by making transactions, or upload to Mondo will only be accessible to Mondo and you, and if you use a 3rd party application that uses our API, that 3rd party.
It’s still early days and we’re still thinking hard about how to provide great experiences and great security and privacy. Things like fine grained privacy controls and fine grained access controls are on our todo list.
Personally i’m excited about the possibilities of granting API apps limited access to my account to do things like:
“App X will be able to see your Monthly incoming and Monthly outgoings, App X will not be able to see individual transactions” etc…
Let us know what you’d like to see.