Legal

Privacy Policy

How we collect, use, and protect your information

Last updated: January 1, 2025

1. Information We Collect

We collect information to provide and improve our AI-powered financial tracking services.

1.1 Email Data

  • Financial Transaction Emails Only: We access and process only emails related to financial transactions (bank statements, payment confirmations, receipts, subscription notifications, etc.)
  • OAuth 2.0 Authorization: We use secure Google OAuth 2.0 to access your Gmail with explicit permission
  • Automated Filtering: Our AI systems automatically identify and process only finance-related emails
  • No Personal Correspondence: We do not access, read, or store personal emails, private correspondence, or non-financial communications

1.2 Transaction Data

  • Transaction amounts, dates, and merchant information
  • Payment methods and account identifiers (last 4 digits only)
  • Spending categories and transaction descriptions
  • Delivery addresses and order details from service providers like Swiggy

1.3 Account Information

  • Email address and basic profile information from Google OAuth
  • User preferences and settings within our application
  • Usage analytics and feature interaction data

2. How We Use Your Information

We use your data solely to provide financial insights and services.

2.1 Core Services

  • Expense Tracking: Automatically categorize and track your spending across all connected accounts
  • AI Analytics: Generate insights, trends, and spending patterns using machine learning algorithms
  • Financial Insights: Provide personalized recommendations and financial health analysis
  • Query Processing: Enable natural language questions about your financial data

2.2 Service Improvement

  • Improve AI accuracy and transaction categorization
  • Develop new features and enhance user experience
  • Troubleshoot issues and provide customer support

2.3 We Do NOT

  • Sell your personal or financial data to third parties
  • Use your data for advertising or marketing to external parties
  • Share transaction details with merchants or financial institutions
  • Access your actual bank accounts or make transactions on your behalf

3. Data Storage and Security

How we protect and store your sensitive financial information.

3.1 Security Measures

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Strict access controls limit data access to authorized personnel only
  • Regular Audits: Security audits and vulnerability assessments conducted regularly
  • Infrastructure: Data stored on secure cloud infrastructure with enterprise-grade security

3.2 Data Retention

  • Transaction data retained for as long as your account is active
  • Email content processed in real-time and not permanently stored
  • Account deletion results in permanent data removal within 30 days
  • Backup data purged according to our data retention schedule

4. Third-Party Services and Trademarks

Our relationship with external services and use of company names.

4.1 Service Integration

  • We process transactions from various services including Swiggy, banks, UPI platforms, and other financial service providers
  • We are not affiliated with, endorsed by, or sponsored by these companies
  • Company names and trademarks are used solely for identification and categorization purposes
  • We do not have direct integration with these services' APIs unless explicitly stated

4.2 AI and Machine Learning

  • We use third-party AI services to process and analyze financial data
  • Your data may be processed by AI providers under strict data processing agreements
  • All AI processing maintains the same privacy and security standards

5. Your Rights and Choices

Control over your data and privacy settings.

5.1 Data Rights

Access
Request copies of your stored data
Correction
Update or correct inaccurate information
Deletion
Request permanent deletion of your account and data
Portability
Export your data in a machine-readable format
Restriction
Limit how we process your data

5.2 Gmail Access Control

  • You can revoke Gmail access at any time through your Google Account settings
  • Revoking access will stop new email processing but won't delete existing data
  • You can request complete data deletion separately

6. International Data Transfers

How we handle data across borders and jurisdictions.

Your data may be processed and stored in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses (SCCs) for data transfers
  • Adequacy decisions by relevant data protection authorities
  • Appropriate technical and organizational security measures

7. Children's Privacy

Our services are not intended for users under 18.

Our service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

8. Changes to This Privacy Policy

How we communicate updates to our privacy practices.

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date
  • Sending email notification for material changes
  • Providing in-app notifications where appropriate

9. Contact Information

How to reach us regarding privacy concerns or data requests.

We will respond to your inquiry within 30 days of receipt.

Need more information? Check out our Terms of Service or contact our support team.

← Back to Home