Privacy Policy
Last updated: April 11, 2026
1. Introduction
SpendInsights (“we”, “us”, or “our”) is a personal finance tracking application that helps you understand and manage your spending. We are committed to protecting your personal information and being transparent about the data we collect and how we use it.
This Privacy Policy explains what information we collect, why we collect it, how it is used and stored, and the choices you have regarding your data. By using SpendInsights, you agree to the practices described here.
2. Information We Collect
Account information: When you sign up, we collect your name, email address, and password (stored as a secure hash). If you sign up via Google OAuth, we receive your name and email from Google.
Financial data: Expense entries, receipt images, budget limits, and spending categories that you create or upload within the app.
Email forwarding content: If you use our email forwarding feature, the content of emails you forward to your SpendInsights address is processed to extract transaction data (merchant, amount, date).
Usage data: Basic information about how you interact with the app, such as pages visited and features used, to help us improve the product.
Device and session data: IP address, browser type, and session tokens for authentication and security purposes.
3. How We Use Your Information
- To provide and operate the SpendInsights service
- To generate AI-powered spending insights and recommendations
- To send you weekly spending digest emails (you may opt out in Settings)
- To authenticate your account and maintain security
- To improve the product, fix bugs, and develop new features
- To respond to support requests
We do not sell your personal data to third parties. We do not use your financial data for advertising purposes.
4. Data Storage & Security
Your data is stored in a PostgreSQL database hosted on Neon, a secure serverless database platform. Data is encrypted at rest and all data in transit is protected using HTTPS/TLS.
We take reasonable technical and organisational measures to protect your data from unauthorised access, loss, or disclosure. However, no system is completely secure, and we cannot guarantee absolute security.
5. Third-Party Services
SpendInsights uses the following third-party services to operate:
- Neon — Database hosting (PostgreSQL)
- Google OAuth — Optional sign-in via Google account
- OpenAI & Anthropic — AI models used to generate spending insights; transaction data may be sent to these APIs for analysis
- Postmark — Inbound email processing for the email forwarding feature
Each of these services has its own privacy policy. We only share the minimum data necessary for each service to function.
6. Data Retention
Your data is retained for as long as your account is active. If you delete your account, your personal data and financial records will be permanently deleted within 30 days. Some anonymised, aggregated data may be retained for product analytics.
7. Your Rights
You have the right to:
- Access — Request a copy of the data we hold about you
- Correction — Update or correct inaccurate information in your account settings
- Deletion — Request deletion of your account and associated data
- Opt-out — Unsubscribe from weekly digest emails at any time via Settings
To exercise any of these rights, please contact us at the address below.
8. Cookies
SpendInsights uses session cookies to keep you logged in. These are strictly necessary for the service to function and are not used for advertising or tracking across other websites. We do not use third-party analytics cookies.
9. Children's Privacy
SpendInsights is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.
10. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page. For significant changes, we will notify you by email or via an in-app notice. Continued use of SpendInsights after changes are posted constitutes your acceptance of the revised policy.
11. Contact Us
If you have questions or concerns about this Privacy Policy or how your data is handled, please reach out to us at privacy@spendinsights.app.