← Back

Privacy Policy

Last updated: July 2026

What we collect

We collect the information you provide directly: your email address (for authentication), and financial data you enter (accounts, transactions, budgets, investments). We do not collect payment card numbers or banking credentials.

On our public pages (this Privacy Policy, our Terms, our landing and sign-up pages), we also collect anonymous product-analytics data: page views, click events, scroll depth, browser type, referrer, and coarse geographic region. This never identifies you personally and is separate from your account data.

How we use it

Your financial data is used solely to provide the app's features to you. We do not sell, share, or use your financial data for advertising or any purpose beyond operating the service.

Anonymous public-page analytics are used to understand how visitors find the site and whether the sign-up flow is working. These metrics never leave the aggregated dashboards of our analytics processors.

Data processors

We use the following processors to operate the service. Each is bound by a contract or terms that require them to handle your data securely and only for the purposes we specify:

  • Supabase — PostgreSQL database, authentication, and file storage. Hosted on AWS in the US East region. Holds all your account and financial data.
  • Vercel — Application hosting and CDN. Serves the app, hosts our reverse proxy, and provides basic page-view analytics (Vercel Analytics) on public pages only.
  • Resend — Email delivery (sign-up confirmation, password reset, budget alerts, incident notifications). Handles only your email address and the message body.
  • Sentry — Application error monitoring. Captures technical error data when the app crashes or throws an unexpected error. Configured to redact user identifiers and financial values from error reports.
  • PostHog — Product analytics on our public pages only (landing, sign-up, this Privacy Policy, our Terms). Never runs inside the signed-in app. All traffic is routed through our own subdomain so no third-party tracking domain sees your IP. Session recordings on public pages mask every form input.
  • Upstash — Rate-limiting on authentication endpoints. Sees only IP addresses of sign-in attempts.
  • Cloudflare — DNS, DDoS protection, and WAF rules. Sees request metadata (IP, headers, URL path) but not request content.

All data in transit is encrypted via TLS 1.3.

What we do not send to analytics

Your signed-in app pages — dashboard, accounts, transactions, budget, bills, sinking funds, investments, net worth, rentals, reports, settings — never load our analytics SDK. Zero pageviews, zero click events, zero session recordings are captured while you are logged in. Every dollar, category, bill, and holding you enter stays inside the app database, protected by row-level security so only you can access it.

Your rights

You can export all your data at any time from Settings → Export. You can permanently delete your account and all associated data from Settings → Delete account. Deletion is immediate and irreversible.

If your browser sends a Do Not Track (DNT) header, our public-page analytics is automatically disabled for your session.

Cookies

We use a single HTTP-only session cookie issued by Supabase Auth to keep you logged in. This cookie is essential for the service to function. It is not used for tracking, advertising, or profiling.

Our public-page analytics does not use cookies. It uses in-memory session state that is discarded when you close the tab — no cross-session identifier persists in your browser. Vercel Analytics uses no cookies. Sentry uses no cookies.

Data retention

Account and financial data is retained until you delete your account. Aggregated public-page analytics data is retained for 12 months at our processors' standard rolling window. Sentry error data is retained for 90 days.

Contact

Questions about this policy, requests to exercise data rights, or complaints: support@finances.raksimoni.com