Privacy Policy
Effective 2025-06-24 · finzodotmoney@gmail.com
Finzo ("we", "us") operates the Finzo iOS app and finzo.money. This policy explains what we collect, why, and your choices. By using Finzo you agree to this policy and our Terms of Service.
What Finzo is
Finzo is a personal spend-tracking app for iPhone users in India. You connect bank debit SMS alerts to Finzo using Apple Shortcuts. We parse amount, merchant, date, and bank from those alerts to show spending insights. Finzo is not a bank and does not initiate payments.
Information we collect
- Account: email address, name (if provided), and authentication data via Supabase Auth.
- Transactions: parsed fields from debit SMS you route to Finzo — amount, merchant name, category, bank, payment type, timestamp. We do not store your full SMS inbox.
- Preferences: category overrides, merchant nicknames, budgets, app settings (appearance, notifications).
- Usage & diagnostics: in-app actions (e.g. screen views, setup steps) via PostHog; crash/error reports to help fix bugs.
- Finzo AI: questions you ask and derived spending context sent to our servers; OpenAI processes questions to generate answers from your transaction data only.
- Legal consent: timestamp when you accept Terms and Privacy at signup.
What we do not collect
- Bank login credentials, UPI PIN, or card numbers
- Non-debit personal messages, contacts, photos, or location history
- Credit card statements (unless your bank sends them as debit-style SMS we parse)
How we use information
- Display and categorize your spending in the app
- Sync data across sessions and devices signed into your account
- Power Finzo AI answers from your own transactions
- Send account emails (sign-in codes, password reset) via our email provider
- Improve reliability, fraud prevention, and product analytics
- Comply with law and enforce our terms
Where data is stored
Data is stored in Supabase (PostgreSQL) with encryption in transit (TLS). Our infrastructure providers may process data in regions they operate. We do not sell your personal information.
Third-party services
- Supabase — authentication and database
- Resend — transactional email
- PostHog — product analytics (bucketed spend signals, no raw SMS)
- OpenAI — Finzo AI responses (your question + spending context)
- Apple Shortcuts — runs on your device; Apple’s privacy policy applies to Shortcuts itself
Retention
We keep your data while your account is active. When you delete your account, we remove your profile and associated transaction data from our systems. Backups may persist for a limited period before rotation.
Your choices
- Stop forwarding SMS anytime by disabling or deleting the Shortcuts automation
- Delete your account in Profile → Account
- Contact us to request access or correction: finzodotmoney@gmail.com
Children
Finzo is not directed at users under 18. We do not knowingly collect data from children.
Changes
We may update this policy. We will post the new date at the top. Continued use after changes means you accept the updated policy.
Contact
Questions: finzodotmoney@gmail.com