Privacy Policy

We use the information we collect to:

• Provide, maintain, and improve the BudgetLens Service
• Sync and categorize your bank transactions automatically
• Generate AI-powered budget insights and financial advice
• Process payments and manage your subscription
• Send you important service notifications (not marketing, unless you opt in)
• Detect and prevent fraud, abuse, and security incidents
• Comply with legal obligations

We do not sell your personal data. We do not share your financial data with advertisers or data brokers.

Your data is stored securely using Supabase, a cloud database provider with SOC 2 Type 2 compliance. All data is encrypted at rest (AES-256) and in transit (TLS 1.2+).

Bank access tokens from Plaid are stored in our database using additional application-level encryption. Your actual bank credentials are never stored by BudgetLens.

While we implement industry-standard security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

• Active accounts: We retain your data for as long as your account is active.
• Receipt images: Processed immediately and not retained beyond 24 hours.
• Deleted accounts: Upon account deletion, your personal data is permanently deleted within 30 days. Anonymized aggregate data may be retained for analytics.
• Bank connections: Disconnecting a bank account revokes Plaid access and removes the access token from our systems.

We share your information only in these limited circumstances:

• Service providers: Plaid (banking), Stripe (payments), Supabase (database), Anthropic (AI processing), Vercel (hosting). Each is bound by their own privacy policy and data processing agreements.
• Legal requirements: If required by law, court order, or governmental authority.
• Business transfers: In the event of a merger or acquisition, your data may be transferred. We will notify you before this occurs.
• With your consent: Any other sharing will only happen with your explicit consent.

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate data.
• Deletion: Request deletion of your account and associated data.
• Portability: Export your transaction data in CSV format from the Reports page.
• Opt-out: Disconnect bank accounts at any time from the Accounts page.
• Revoke access: Delete your account from Settings → Delete Account.

To exercise any of these rights, contact us at privacy@budgetlens.app. We will respond within 30 days.

BudgetLens is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us immediately and we will delete it.

The mileage tracker feature uses your device's GPS location only when you explicitly start a trip. Location data is used solely to record trip distance and start/end addresses. You can disable location access at any time in your device settings, which will disable automatic mileage tracking.

BudgetLens uses AI (powered by Anthropic's Claude) to provide financial insights, categorize transactions, and scan receipts. When you use the AI Advisor:

• Your financial summary (spending totals, budget status) is sent to the AI model to generate responses.
• We do not send your full transaction history or bank account numbers to the AI.
• AI conversations are not stored permanently and are not used to train AI models.

We use session cookies to keep you logged in and store your preferences. We do not use third-party advertising cookies or tracking pixels. You can control cookie settings in your browser, though disabling cookies may affect app functionality.

BudgetLens is based in the United States. If you access the Service from outside the US, your data will be transferred to and processed in the United States. By using the Service, you consent to this transfer.

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected and how it is used
• Right to delete personal information
• Right to opt out of the sale of personal information (we do not sell data)
• Right to non-discrimination for exercising your rights

To submit a request, email privacy@budgetlens.app.

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by posting a prominent notice in the app. The "Last updated" date at the top of this page indicates when it was last revised. Continued use of the Service after changes constitutes acceptance of the updated policy.

If you have questions, concerns, or requests regarding this Privacy Policy, contact us at: