Privacy Policy.
Effective date: 23 May 2026
We collect your email address and name when you sign up. We collect payment information via Stripe (we never see raw card numbers). We temporarily receive your PDF files for processing and do not retain them.
Uploaded bank statements are sent to Google Document AI for extraction, then processed by our reconciliation engine. They are not written to our database and are deleted immediately after processing. We retain only the parsed transaction data you choose to export.
Your email is used for account authentication, transactional notifications (billing receipts, credit alerts), and support. We do not sell your data or use it for advertising.
Supabase handles authentication and database storage under a data processing agreement. Stripe processes all payments. Google Document AI extracts text from your PDFs under an enterprise data agreement with no retention rights. PostHog collects anonymised usage analytics.
You may request deletion of your account and all associated data at any time via the Account page. EU/UK residents have additional rights under GDPR/UK GDPR — contact us at [email protected].
We use essential cookies for authentication sessions (set by Supabase). We use PostHog analytics cookies. You can dismiss the cookie notice to acknowledge this.
