Family Budget Tracker

Privacy Policy

Last Updated: January 23, 2026

1. Introduction

Family Budget Tracker ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal and financial data.

2. Data We Collect

2.1 Account Information

  • Email address (for login and communication)
  • Password (encrypted and never stored in plain text)
  • Subscription status and payment information (processed by Stripe)

2.2 Financial Data (You Provide)

  • Transaction details (dates, descriptions, amounts, categories)
  • Account names and balances
  • Budget limits and savings goals
  • Bank statements (if you use AI upload feature)

2.3 Usage Data

  • Number of accounts, categories, and transactions created
  • Number of statements uploaded
  • Feature usage statistics (for service improvement)
  • Login timestamps and IP addresses (for security)

3. How We Use Your Data

  • Provide the Service: Store and display your budget data
  • AI Processing: Extract transactions from uploaded statements (Premium only)
  • Improve the Service: Analyze usage patterns to fix bugs and add features
  • Communication: Send important updates, security alerts, and subscription notifications
  • Billing: Process subscription payments via Stripe
🚫 What We DON'T Do
  • We do NOT sell your data to third parties
  • We do NOT use your data for advertising
  • We do NOT share your identifiable financial data with anyone (except as required by law)

Note on Anonymized Intelligence: To improve categorization for all users, we maintain a Global Merchant Cache. This only stores the mapping of Merchant Name → Category (e.g., "Tesco → Groceries"). All personal metadata (amounts, dates, card numbers, user IDs) is stripped away before this mapping leaves your private database.

4. AI-Powered Statement Processing (Premium Feature)

If you use the AI statement upload feature, your bank statement is processed using Google Gemini AI.

4.1 What Data is Sent to Google Gemini

  • Your full PDF bank statement (including account numbers, balances, transactions)
  • We use "Vision First" technology for maximum accuracy (95%+)

4.2 Google's Data Protection

  • ✅ Google does NOT store your statement after processing
  • ✅ Google does NOT train AI models on your data (paid API guarantee)
  • ✅ Google does NOT share your data with third parties
  • ✅ Processing is GDPR compliant

4.3 Data Retention

  • Original PDF: Deleted immediately after processing
  • Extracted transactions: Stored in your account until you delete them
  • Cloudflare R2: Secure, temporary storage during processing only (GDPR compliant)

For full details: AI Statement Processing Disclosure

5. Third-Party Services

5.1 Google Gemini AI

  • Purpose: Extract transactions from bank statements
  • Data shared: PDF bank statements (Premium users only)
  • Data retention: Not stored (immediate processing only)
  • Privacy policy: Google Cloud Privacy Notice

5.2 Cloudflare R2

  • Purpose: Secure, temporary file storage during statement processing and encrypted backups
  • Data shared: Encrypted PDF files and encrypted database backups
  • Data retention: Statements are deleted after processing (typically within minutes). Backups are retained for 30 days.
  • Privacy policy: Cloudflare Privacy Policy

5.3 Neon Database

  • Purpose: Primary data storage for your financial records and account settings
  • Data shared: All application data (encrypted at rest)
  • Data retention: Retained while account is active
  • Privacy policy: Neon Privacy Policy

5.3 Stripe

  • Purpose: Payment processing for subscriptions
  • Data shared: Email address, payment information
  • Data retention: Stored by Stripe for billing purposes
  • Privacy policy: Stripe Privacy Policy

5.4 Google Drive API

  • Purpose: Automatic statement fetching via Magic Drop
  • Data shared: Access to a single, user-specified folder
  • Data retention: Files are processed and optionally archived/trashed in your Drive
  • Privacy policy: Google Privacy Policy

6. Data Security

  • Encryption at Rest: All data is stored using industry-standard AES-256 encryption. Our primary sub-processors (Neon and Cloudflare) enforce encryption at rest by default.
  • Encryption in Transit: All communication between your device and our servers is secured via TLS 1.2+ (HTTPS).
  • Sub-processor Compliance: We select partners that adhere to strict security frameworks, including SOC 2 Type II and ISO 27001.
  • Password Protection: Passwords are hashed using PBKDF2 with a SHA256 salt (industry standard).
  • Access Control: We implement least-privilege access. Only automated system processes ever touch your raw financial data.
  • Regular Backups: Full database backups are performed daily and stored with 256-bit encryption in Cloudflare R2.

7. Admin Access & Transparency

What the App Owner Can See:

  • ✅ Your email address and subscription status
  • ✅ Number of statements uploaded, accounts created, etc.
  • ✅ System usage statistics (for debugging)

What the App Owner CANNOT See:

  • ❌ Your transaction details (descriptions, amounts)
  • ❌ Account balances or financial data
  • ❌ Statement content or PDFs

The admin dashboard is intentionally designed to protect your privacy while allowing service monitoring and support.

8. Your Rights (GDPR & GDPR)

  • Right to Access: Request a copy of your data
  • Right to Rectification: Correct inaccurate data
  • Right to Erasure: Delete your account and all data
  • Right to Data Portability: Export your data (Premium feature)
  • Right to Object: Opt-out of AI processing (use manual entry)

To exercise these rights, visit Settings or contact us at [email protected]

9. Account Deletion

You can delete your account at any time from Settings → Delete Account.

What Gets Deleted:

  • All transactions, categories, and accounts
  • All uploaded statements and extracted data
  • All savings goals and budgets
  • Your email and personal information
  • Your Stripe subscription (automatically canceled)

What We Keep (Anonymized):

  • Aggregated usage statistics (e.g., "A user uploaded 5 statements in December 2025")
  • No personally identifiable information is retained

Delete My Account

10. Cookies & Tracking

We use minimal cookies for:

  • Authentication: Keep you logged in
  • Session Management: Remember your preferences

We do NOT use third-party tracking cookies or analytics (e.g., Google Analytics).

11. Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect data from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the app. Continued use after changes constitutes acceptance.

13. Contact Us

If you have questions about this Privacy Policy or how we handle your data:

Related Pages:

Back to Dashboard