Privacy Policy – Spendalyst

The short version: your financial data belongs to you. We collect only what we need to show you where your money goes, and we never sell it.

Last updated: April 2026

What we collect and why

We collect four categories of data, each for a specific purpose:

Account information

Your email address, display name, and avatar.

Purpose: To create and manage your account, send you weekly coaching emails and important account notifications.

Retention: Kept while your account is active. Permanently deleted within 30 days of account deletion.

Financial data (via Plaid)

Transaction descriptions, amounts, dates, categories, merchant names, account names, account types, and account masks (last 4 digits) from connected bank accounts.

Purpose: To categorize your spending, generate insights, calculate your Money Health Score, and produce weekly coaching recommendations.

Retention: Kept while your account is active. Permanently deleted within 30 days of account deletion. Plaid access tokens are revoked immediately upon disconnection or deletion.

Usage analytics (via PostHog)

Pages visited, features used, session duration, and device type.

Purpose: To understand which features are helpful and where people get stuck, so we can improve the product.

Retention: Anonymized analytics are retained indefinitely. Identified user data is deleted when your account is deleted.

Payment data (via Stripe)

Subscription status, plan type, and billing dates. Stripe handles your credit card number — we never see or store it.

Purpose: To manage your subscription and process payments.

Retention: Billing history is retained for 7 years for tax and legal compliance, even after account deletion. No financial data is included in billing records.

Who we share data with

We share data only with the services that make Spendalyst work. Here is the complete list:

Plaid Inc. — Connects your bank accounts and retrieves transaction data. Your bank credentials are entered directly into Plaid's secure interface. We never see them. Plaid's privacy policy
Supabase (via Lovable Cloud) — Stores your account data and transaction records on encrypted infrastructure in the United States.
Stripe — Processes payments and manages subscriptions. SOC 2 Type II certified. Stripe's privacy policy
PostHog — Collects anonymized product analytics. PostHog's privacy policy
Resend — Sends transactional emails (welcome emails, weekly coaching, account notifications).

We do not sell, rent, or share your financial data with advertisers, data brokers, or any other third parties. Our business model is the subscription — not your data.

How we protect your data

256-bit AES encryption at rest and TLS 1.3 in transit
Plaid access tokens stored in a write-only secure vault — never exposed to the client
Read-only bank access — we cannot move your money
Row-level security on all database tables ensuring users can only access their own data
Built on SOC 2 certified infrastructure

Your rights

You can exercise any of these rights from your Settings page or by emailing us:

Access — Download a complete copy of all data we hold about you (JSON format) from Settings
Correction — Update your profile information at any time
Deletion — Permanently delete your account and all associated data from Settings
Disconnection — Disconnect your bank accounts at any time, stopping future data syncing immediately
Portability — Export your transaction data in CSV or JSON format
Opt-out — Turn off non-essential emails and notifications from Settings

Changes to this policy

If we make material changes, we will notify you by email before they take effect. Continued use after changes constitutes acceptance.

Contact

For privacy questions or to exercise your rights, email privacy@spendalyst.com.

Version history

April 2026 — Expanded data retention details, added version history, named all third-party providers explicitly.
January 2026 — Added Plaid Production disclosures and detailed data collection categories.
December 2025 — Initial privacy policy.