Privacy Policy

Account information: When you sign up, we collect your email address and, optionally, your full name.

Transaction data: Financial records you manually enter, including amounts, categories, descriptions, and dates.

Bank connection data: If you connect a bank account via Stripe Financial Connections, we receive and store a reference to your connected account (account ID, institution name, and last 4 digits). We do not store full account numbers or credentials.

Payment information: Subscription billing is handled by Stripe. We store your Stripe customer ID and subscription status but never have access to your full card number, CVV, or billing details — those are held exclusively by Stripe.

Usage data: Standard server logs including IP address, browser type, pages visited, and timestamps, used for security and debugging.

We use the information we collect to:

• Provide, operate, and improve the CashFlow Pro service
• Display your financial dashboard, charts, and transaction history
• Power AI-generated financial insights using anonymized financial context
• Process subscription payments and manage your billing through Stripe
• Send transactional emails (account confirmation, billing receipts)
• Detect and prevent fraud or unauthorized access
• Respond to your support requests

We do not sell your personal data to third parties. We do not use your financial data for advertising.

When you choose to connect your bank account, we use Stripe Financial Connections — a service provided by Stripe, Inc. Stripe directly accesses your bank data through a secure, read-only connection using bank-grade encryption.

We receive from Stripe: your institution name, the last 4 digits of your account number, and a tokenized account identifier. We use this to display your connected bank on your dashboard.

Stripe’s handling of your bank data is governed by the Stripe Privacy Policy and the Stripe Financial Connections Terms.

Subscription payments are processed by Stripe, Inc. When you subscribe, your payment method details are submitted directly to Stripe and never pass through our servers.

We store only the Stripe-issued customer ID and subscription status in our database, which allows us to verify your access level and manage your account. All card data is stored and secured by Stripe in accordance with PCI-DSS standards.

Your account and financial data is stored in Supabase, a managed PostgreSQL database platform hosted on AWS. All data is encrypted at rest and in transit using TLS.

We enforce row-level security (RLS) policies so that each user can only access their own data — even at the database query level. Supabase’s data handling practices are described in the Supabase Privacy Policy.

We share your data only with the following third-party service providers, strictly as needed to operate the service:

• Stripe — payment processing and bank connections
• Supabase — database and authentication
• Anthropic — AI financial insights (financial context is sent without personally identifiable information)
• Vercel — application hosting

We do not share your data with advertisers, data brokers, or any other parties.

We retain your account and transaction data for as long as your account is active. If you delete your account, we will permanently delete your data within 30 days, except where retention is required by law.

You have the right to:

• Access the personal data we hold about you
• Correct inaccurate or incomplete data
• Delete your account and associated data
• Export your transaction data
• Disconnect your bank connection at any time

To exercise any of these rights, contact us at support@cashflowproapp.com.

We use only essential cookies required for authentication (managed by Supabase) and session management. We do not use tracking or advertising cookies.

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by posting a notice in the app. Continued use of CashFlow Pro after changes constitutes acceptance of the updated policy.

If you have questions or concerns about this Privacy Policy or how we handle your data, please contact us at:

support@cashflowproapp.com