Privacy Policy
Effective Date: January 1, 2026|Last Updated: January 1, 2026
Quick Summary
- ✓We collect only what's needed to run your budget app
- ✓We NEVER sell your data or show you ads
- ✓Your bank login is NEVER stored on our servers
- ✓You can download or delete your data anytime
- ✓We use strong encryption to protect everything
- Questions? Email privacy@budgetspotlightapp.com
1. Introduction
This policy explains what information we collect, how we use it, and how we keep it safe. When we say "we" or "us," we mean Budget Spotlight.
By using Budget Spotlight, you agree to this policy.
2. Information We Collect
2.1 Account Information
| Data Type | Purpose | Required |
|---|---|---|
| Email address | Account authentication, password resets, security alerts | Yes |
| Full name | Personalization, household member identification | No |
| Date of birth | Age verification, compliance | No |
| Profile avatar | Personalization (selected from preset options) | No |
| Timezone | Display times in your local timezone | No |
| Locale | Language and formatting preferences | No |
2.2 Financial Information
| Data Type | Purpose | Required |
|---|---|---|
| Accounts | Names, types (checking, savings, credit card, etc.), balances, currencies | Yes (to use app) |
| Account details | Credit limits, APR, minimum payments, payment due dates (for debt accounts) | No |
| Transactions | Dates, amounts, descriptions, merchant names, categories | Yes (to use app) |
| Piggy Banks (Budgets) | Category names, allocated amounts, spent amounts, monthly allocations | Yes (to use app) |
| Piggy Groups | Budget category organization | No |
| Budget transfers | Transfers between budget categories | No |
| Households | Multi-user budget sharing, member roles (owner, admin, member, viewer) | No |
| Import settings | Saved CSV column mappings per bank/institution | No |
| Import history | File names, row counts, import dates (for troubleshooting) | Automatic |
- Entered manually by you
- Imported via secure file upload (CSV, OFX, QFX, QBO, QIF formats)
2.3 Security Information
| Data Type | Purpose | Retention |
|---|---|---|
| Password | We scramble your password before storing. Even we cannot read it. | Account lifetime |
| MFA secrets | Two-factor authentication | Until MFA disabled |
| MFA backup codes | Account recovery | Until used or regenerated |
| Session tokens | Keep you logged in securely | Until logout or expiry |
2.4 Automatically Collected Information
| Data Type | Purpose | Retention |
|---|---|---|
| IP address | Security, fraud prevention, audit logging | 3 years |
| Device fingerprint | Session management, suspicious login detection | Session lifetime |
| Device name | Display which devices are logged in | Session lifetime |
| Trusted device status | Remember devices you've verified | Until trust expires |
| User agent | Device identification, session display | Session lifetime |
| Timestamps | Audit trail, last activity tracking | 3 years |
2.5 Subscription Information (Premium Users)
| Data Type | Purpose | Retention |
|---|---|---|
| Stripe customer ID | Payment processing | Account lifetime |
| Stripe subscription ID | Link to your subscription | Account lifetime |
| Subscription tier | Feature access (Free/Premium) | Account lifetime |
| Subscription status | Billing state (active, canceled, etc.) | Account lifetime |
| Billing period end | When your current billing cycle ends | Account lifetime |
Note: Payment card details are processed and stored by Stripe. We never see or store your full card number.
3. How We Use Your Information
3.1 We Use Your Information To:
- Provide the service - Store and display your financial data, calculate budgets
- Secure your account - Authenticate logins, detect suspicious activity, enforce MFA
- Enable collaboration - Allow household members to share budgets
- Communicate with you - Password resets, security alerts, account notifications
- Process payments - Manage Premium subscriptions via Stripe
- Comply with law - Maintain audit logs for legal and regulatory requirements
- Improve the service - Analyze aggregated, anonymized usage patterns
3.2 We Never Use Your Information To:
- ❌ Sell your data - We do not sell personal information to third parties
- ❌ Show targeted ads - We do not display advertising
- ❌ Share with data brokers - Your financial data stays private
- ❌ Profile you for marketing - No behavioral tracking for marketing purposes
4. Legal Basis for Processing (GDPR)
For users in the European Economic Area (EEA), we process your data under these legal bases:
| Legal Basis | Data Processed | Purpose |
|---|---|---|
| Contract Performance | Account data, financial data | Providing the service you signed up for |
| Legitimate Interests | IP addresses, device info, audit logs | Security, fraud prevention |
| Legal Obligation | Audit logs | SOC 2 compliance, regulatory requirements |
| Consent | Optional profile data | Personalization features |
5. Data Sharing & Third Parties
5.1 Service Providers
We share data with these trusted service providers who help us operate Budget Spotlight:
| Provider | Purpose | Data Shared | Privacy Policy |
|---|---|---|---|
| Supabase | Database, authentication, storage | All app data (encrypted) | supabase.com/privacy |
| Stripe | Payment processing | Email, subscription data | stripe.com/privacy |
| Vercel | Application hosting | Server request logs | vercel.com/privacy |
| Apple | Sign in with Apple | Apple user ID (if you use Apple login) | apple.com/privacy |
| Sign in with Google | Google user ID (if you use Google login) | google.com/privacy |
These companies have signed agreements to protect your data and only use it as we direct.
5.2 Future Bank Integrations
When we launch automatic bank synchronization, we may integrate with:
- SimpleFIN / MX - Bank account transaction synchronization
- Plaid - Secure bank account linking via OAuth
Key protections for bank integrations:
- Your bank credentials are never stored on our servers
- Credentials go directly to the secure aggregation service
- You can disconnect any bank connection at any time
- Bank connections require re-authorization every 12 months
5.3 Household Members
When you join or create a household:
- Other household members can see shared financial data (accounts, transactions, budgets)
- Your email and name are visible to household members
- Household owners can manage member access and roles
Household roles and what they can see:
| Role | Can View | Can Edit | Can Manage Members |
|---|---|---|---|
| Owner | Everything | Everything | Yes |
| Admin | Everything | Everything | Yes (except owner) |
| Member | Everything | Assigned budgets only | No |
| Viewer | Everything | Nothing | No |
5.4 Legal Disclosures
We may disclose your information if required by:
- Valid legal process (subpoena, court order)
- Government request with proper legal authority
- To protect our rights, property, or safety
- To prevent fraud or illegal activity
We will notify you of legal requests unless prohibited by law.
6. Data Security
We implement industry-standard security measures to protect your information:
6.1 Technical Safeguards
| Measure | What This Means |
|---|---|
| Encryption at rest | Your data is encrypted while stored (via Supabase infrastructure, SOC 2 compliant) |
| Encryption in transit | Your data is encrypted while traveling over the internet (TLS 1.2+) |
| Password security | Your password is scrambled before storage - even we cannot read it |
| Two-step login | Optional second verification step with backup codes if you lose your phone |
| Data isolation | Our database only shows you your own data |
| Session security | Secure cookies that websites cannot steal, plus device tracking |
6.2 Account Protection
| Measure | Implementation |
|---|---|
| Account lockout | Progressive lockout after 5 failed login attempts |
| Session controls | View and revoke active sessions |
| Re-authentication | Required for sensitive operations (password change, account deletion) |
| Audit logging | All security-relevant actions are logged |
6.3 Incident Response
We maintain documented incident response procedures as required by SOC 2 compliance.
If a data breach affects your personal information:
- For European residents (GDPR): We will notify you and authorities within 72 hours.
- For California residents (CCPA): We will notify you as quickly as possible.
- For all users: We will explain what data was affected and what steps you can take.
Found a security issue? Report it to security@budgetspotlightapp.com. We respond within 48 hours.
7. Your Privacy Rights
7.1 Rights for All Users
| Right | How to Exercise |
|---|---|
| Access your data | Settings → Account → Export Data |
| Correct your data | Settings → Profile |
| Delete your account | Settings → Account → Delete Account |
| View active sessions | Settings → Sessions |
| Revoke sessions | Settings → Sessions → Revoke |
| Enable/disable MFA | Settings → Security |
7.2 California Residents (CCPA)
Under the California Consumer Privacy Act, you have the right to:
- Know what personal information we collect and why
- Delete your personal information
- Opt-out of sale - We do not sell personal information
- Non-discrimination - We will not discriminate against you for exercising your rights
Sensitive Personal Information: Your financial data (account balances, transactions, budgets) is considered sensitive under CCPA. We only use it to provide the budget management service. You can limit its use by deleting your account.
To exercise your rights: Use the in-app controls in Settings, or email privacy@budgetspotlightapp.com
7.3 European Residents (GDPR)
Under the General Data Protection Regulation, you have the right to:
- Access - Get a copy of your data
- Fix mistakes - Correct wrong information about you
- Delete - Ask us to delete your data
- Download - Export your data in JSON format to take elsewhere
- Say no - Stop us from using your data for certain purposes
- Limit use - Ask us to use your data less
- Withdraw consent - Take back your permission at any time
Data Protection Authority: You can complain to your local data protection authority if you're unhappy with how we handle your data.
To exercise your rights: Use the in-app controls in Settings, or email privacy@budgetspotlightapp.com
7.4 Automated Decision-Making
We do not currently use automated decision-making or profiling that produces legal or significant effects on you. If we add features like AI-based transaction categorization in the future, we will update this policy.
8. Data Retention
8.1 Retention Periods
| Data Type | Retention Period | Reason |
|---|---|---|
| Account data | Until account deletion | Service provision |
| Financial data | Until account deletion | Service provision |
| Deleted transactions | 30 days (restorable) | Allow undo mistakes |
| Audit logs | 3 years from creation | SOC 2 compliance |
| Session data | Until logout or 30-day expiry | Security |
| MFA backup codes | Until used or regenerated | Account recovery |
8.2 Account Deletion
When you delete your account:
- Email is anonymized (e.g.,
deleted-abc123@deleted.local) - Name and personal details are cleared
- Avatar is removed
- All active sessions are revoked
- MFA backup codes are deleted
- Audit logs are retained (anonymized, for compliance)
- Financial data in shared households is preserved for other members but unlinked from your identity
Account deletion is permanent and cannot be undone.
9. Cookies & Local Storage
9.1 What We Use
| Type | Purpose | Can Opt Out? |
|---|---|---|
| Authentication cookies | Keep you logged in | No (required) |
| Session cookies | CSRF protection, security | No (required) |
| Theme preference | Light/dark mode (localStorage) | N/A (local only) |
| Sidebar state | UI preference (localStorage) | N/A (local only) |
9.2 What We Don't Use
- ❌ Analytics tracking cookies
- ❌ Advertising cookies
- ❌ Third-party tracking pixels
- ❌ Social media tracking
10. Children's Privacy
Budget Spotlight is intended for users 18 years of age or older.
We do not knowingly collect data from children under 18. If you believe a minor has shared information with us, email privacy@budgetspotlightapp.com. We will delete it promptly.
11. International Data Transfers
11.1 Data Location
Your data is stored on Supabase servers located in the United States.
11.2 International Users
If you are outside the United States:
- Your data will be transferred to and stored in the United States
- We use legal agreements approved by European regulators to protect your data
- By using Budget Spotlight, you consent to this transfer
12. Changes to This Policy
We may update this Privacy Policy from time to time. When we make changes:
- Minor changes: Updated on this page with a new "Last Updated" date
- Material changes: Email notification to your registered email address
We encourage you to review this policy periodically.
13. Contact Us
If you have questions about this Privacy Policy or wish to exercise your privacy rights:
Email: privacy@budgetspotlightapp.com
Subject Line: Privacy Inquiry
For GDPR-related inquiries, you may also contact your local data protection authority.
Document Version: 1.1 | Effective: January 1, 2026