Back to Home

Privacy Policy

Effective Date: June 4, 2025
Last Updated: June 15, 2025

1. INTRODUCTION

We respect your privacy. This Privacy Policy explains how we collect, use, and protect your information when you use our mobile application ("App").

2. INFORMATION WE COLLECT

2.1 Account Information

  • Email address: Used for account creation and authentication
  • Password: Stored securely using industry-standard encryption

2.2 Analytics Information

We use Google Analytics to understand how visitors interact with our website. This service collects:

  • Usage Data: Pages visited, time spent on pages, bounce rate
  • Device Information: Browser type, operating system, screen resolution
  • Geographic Data: Country and city (based on IP address)
  • Traffic Sources: How you arrived at our website

Google Analytics uses cookies and similar tracking technologies. You can learn more about Google's data practices at https://policies.google.com/privacy.

2.2 Financial Information (Stored Locally Only)

The following data is stored ONLY on your device and never transmitted to our servers:

  • Income information
  • Expense categories and amounts
  • Asset values
  • Debt/liability information
  • Financial scenario planning data

2.3 Automatically Collected Information

We do not intentionally collect personal analytics data from your use of the App. However:

  • Development tools may collect anonymous usage statistics for development purposes only
  • No crash reports are collected
  • No device fingerprinting or tracking is performed
  • No personal usage data is transmitted from the App

3. HOW WE USE YOUR INFORMATION

3.1 Account Information

Your email and password are used solely to:

  • Create and maintain your account
  • Enable sign-in functionality
  • Reset your password if requested

3.2 Financial Information

Your financial data is:

  • Processed locally on your device
  • Used only for calculations and projections
  • Never transmitted to our servers
  • Never shared with third parties
  • Completely under your control

3.3 Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process personal data based on:

  • Contract Performance: Processing account data to provide our services
  • Legitimate Interests: Analytics to improve our website and services
  • Consent: Marketing communications (when you opt-in)
  • Legal Obligations: Compliance with applicable laws

4. DATA STORAGE AND SECURITY

4.1 Server Storage

  • Only your email and encrypted password are stored on our servers
  • We use Supabase for secure authentication
  • All server communications use HTTPS encryption

4.2 Local Storage

  • All financial data is stored locally using your device's secure storage
  • Data is not backed up to cloud services by the App
  • You control all local data through your device settings

4.3 Security Measures

  • Passwords are encrypted using industry-standard bcrypt hashing
  • We use secure authentication tokens
  • No financial data is ever transmitted over networks

5. DATA SHARING AND DISCLOSURE

❌ We do NOT:

  • Sell your personal information
  • Share your data with third parties for marketing
  • Allow advertising networks to access your data
  • Transfer your financial information to anyone

⚠️ We may disclose information only if:

  • Required by law or legal process
  • Necessary to protect our rights or safety
  • You explicitly consent to the disclosure

6. YOUR RIGHTS AND CHOICES

6.1 Access and Control

You can:

  • View all your data within the App
  • Edit or delete any financial information
  • Delete your account at any time
  • Opt out of analytics tracking (see Section 6.5)

6.2 Data Deletion

  • Local data: Delete the App to remove all financial data
  • Account data: Contact us to permanently delete your email and password from our servers

6.3 Data Portability

Currently, we do not offer data export functionality. All data can be viewed within the App.

6.4 GDPR Rights (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under GDPR:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at privacy@caniaffordthis.app

6.5 Cookie Preferences

You can control cookies and tracking technologies through:

7. CHILDREN'S PRIVACY

The App is not intended for children under 13. We do not knowingly collect information from children under 13. If you believe we have collected such information, please contact us for immediate deletion.

8. THIRD-PARTY SERVICES

8.1 Current Third-Party Services

  • Supabase: Used only for authentication (stores email and password)
  • Google Analytics: Used for website analytics (see Section 2.2 for details)

8.2 Limited Third-Party Integration

We do NOT use:

  • Financial data aggregation services (like Plaid)
  • Personal analytics or tracking services
  • Advertising networks
  • Social media integrations

We may use:

  • Development and build tools that collect anonymous usage statistics
  • Standard app development infrastructure services

9. DATA RETENTION

  • Account data: Retained until you request deletion
  • Financial data: Stored only on your device; deleted when App is uninstalled
  • Deleted account data: Permanently removed within 30 days of deletion request

10. CHANGES TO THIS POLICY

We may update this Privacy Policy to reflect changes in our practices or for legal reasons. We will notify you of material changes by:

  • Updating the "Last Updated" date
  • Displaying a notice in the App
  • Sending an email (for significant changes)

11. CALIFORNIA PRIVACY RIGHTS

California residents have additional rights under CCPA:

  • Right to know what personal information we collect
  • Right to delete personal information
  • Right to opt-out of sale (we do not sell personal information)
  • Right to non-discrimination

To exercise these rights, contact us using the information below.

12. INTERNATIONAL USERS

The App is intended for use in the United States. If you access the App from outside the US, you understand that your information will be processed in the US.

13. CONTACT US

For privacy-related questions or to exercise your rights:

Email: support@caniaffordthis.app

For account deletion requests, please email us with the subject line "Account Deletion Request" from the email address associated with your account.

14. PRIVACY PRACTICES SUMMARY

✅ What We Do:

  • Store only email and password on servers
  • Keep all financial data on your device
  • Use encryption for all stored passwords
  • Allow complete data deletion
  • Use standard development tools that may collect anonymous usage statistics

❌ What We Don't Do:

  • Access your bank accounts
  • Share or sell your personal data
  • Store financial information on servers
  • Use personal tracking or targeted analytics
  • Display advertisements

By using the App, you acknowledge that you have read and understood this Privacy Policy.