fingyd

← Back to Home

Privacy Policy

Last updated: 1/22/2026

Your Privacy Matters: This Privacy Policy explains how we collect, use, protect, and process your personal data. We are committed to protecting your privacy and being transparent about our data practices.

1. Introduction and Scope

fingyd ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains:

  • What personal data we collect and why
  • How we use and process your data
  • How we protect your data
  • Your rights regarding your personal data
  • Our data processing agreements and practices

By using fingyd, you consent to the data practices described in this Privacy Policy. If you do not agree, please do not use our Service.

2. Information We Collect

Personal Information: When you sign in with Google, we collect:

  • Name and email address (from your Google account)
  • Profile picture (if available)
  • Account creation and last login timestamps

Financial Information: You voluntarily provide:

  • Income details (salary, bonuses, other income)
  • Expense breakdowns (housing, food, healthcare, etc.)
  • Asset information (savings, investments, properties)
  • Liability information (loans, debts)
  • Future financial goals and expenses
  • Demographic information (age, city, marital status, dependents)

Usage Information: We automatically collect:

  • Pages visited and features used
  • Time spent on the Service
  • Device information (browser type, operating system)
  • IP address (anonymized where possible)
  • Error logs and performance data

3. How We Use Your Information

We use your information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our financial planning tools and calculations
  • Account Management: To create and manage your account, authenticate you, and provide customer support
  • Calculations: To process your financial data and generate projections, simulations, and reports
  • Communication: To send you important service updates, security alerts, and respond to your inquiries
  • Analytics: To understand how users interact with our Service and improve user experience (using anonymized data)
  • Security: To detect, prevent, and address fraud, security issues, and technical problems
  • Legal Compliance: To comply with legal obligations and respond to lawful requests

We do NOT: Sell your personal data to third parties, use your financial data for advertising, or share your specific financial information with other users.

4. Data Processing Agreement (DPA)

Legal Basis for Processing: We process your personal data based on:

  • Consent: You provide explicit consent by accepting this Privacy Policy and using our Service
  • Contract Performance: Processing is necessary to provide the Service you requested
  • Legitimate Interests: To improve our Service, ensure security, and prevent fraud
  • Legal Obligations: To comply with applicable laws and regulations

Data Processing Principles: We adhere to the following principles:

  • Lawfulness: We only process data for specified, explicit, and legitimate purposes
  • Minimization: We collect only the data necessary for our stated purposes
  • Accuracy: We take reasonable steps to ensure data accuracy and update it when needed
  • Storage Limitation: We retain data only as long as necessary for the stated purposes
  • Integrity and Confidentiality: We implement appropriate security measures to protect your data
  • Accountability: We maintain records of our data processing activities

Data Retention: We retain your personal data:

  • While your account is active and for 30 days after account deletion (for recovery purposes)
  • As required by law (e.g., financial records may be retained longer for tax/legal compliance)
  • Anonymized, aggregated data may be retained indefinitely for analytics

Third-Party Processors: We may use trusted third-party service providers to process your data:

  • Cloud Hosting: For secure data storage and Service delivery
  • Authentication: Google OAuth for secure sign-in
  • Analytics: For understanding Service usage (anonymized data)
  • Email Services: For sending important notifications

All third-party processors are contractually bound to:

  • Process data only as instructed by us
  • Implement appropriate security measures
  • Not use your data for their own purposes
  • Comply with applicable data protection laws

5. Data Security

We implement comprehensive security measures to protect your data:

  • Encryption: Data in transit (HTTPS/TLS) and data at rest (encrypted storage)
  • Access Controls: Strict access controls and authentication requirements
  • Security Monitoring: Continuous monitoring for security threats and vulnerabilities
  • Regular Updates: Keeping systems and software up-to-date with security patches
  • Employee Training: Staff trained on data protection and security best practices
  • Backup Systems: Regular backups with secure storage

Important: While we implement industry-standard security measures, no system is 100% secure. You should also take steps to protect your account (e.g., using a strong password, not sharing credentials).

In the event of a data breach that may affect your personal data, we will notify you and relevant authorities as required by law.

6. Data Sharing and Disclosure

We do NOT sell, rent, or trade your personal data. We may share your data only in these circumstances:

  • Service Providers: With trusted third-party processors who help us operate the Service (under strict contracts)
  • Legal Requirements: When required by law, court order, or government regulation
  • Protection of Rights: To protect our rights, property, or safety, or that of our users
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users)
  • With Your Consent: When you explicitly authorize us to share your data

Anonymized Data: We may share anonymized, aggregated data that cannot identify you for research, analytics, or business purposes.

7. Your Rights and Choices

You have the following rights regarding your personal data:

  • Access: Request a copy of your personal data we hold
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your personal data ("right to be forgotten")
  • Restriction: Request limitation of processing in certain circumstances
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time (where processing is based on consent)
  • Lodge Complaint: File a complaint with your local data protection authority

To exercise these rights, contact us through the Service or use the account deletion feature. We will respond within 30 days (or as required by local law).

Account Deletion: You can delete your account at any time. Upon deletion, we will delete your personal data within 30 days, except where retention is required by law.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Maintain your session and authenticate you
  • Remember your preferences and settings
  • Analyze Service usage and improve performance
  • Ensure security and prevent fraud

You can control cookies through your browser settings. However, disabling cookies may limit Service functionality. We do not use cookies for advertising or tracking across other websites.

9. International Data Transfers

Your data may be processed and stored in countries other than your own. When we transfer data internationally, we ensure:

  • Adequate data protection measures are in place
  • Appropriate safeguards are implemented (e.g., Standard Contractual Clauses)
  • Compliance with applicable data protection laws

By using our Service, you consent to the transfer of your data to countries that may have different data protection laws than your country of residence.

10. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will delete it immediately. If you believe we have collected data from a child, please contact us.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will:

  • Notify you of material changes via email or Service notification
  • Update the "Last updated" date at the top of this page
  • Provide a summary of significant changes

Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy. If you do not agree, you must stop using the Service and delete your account.

12. Data Protection Officer and Contact

For questions, concerns, or to exercise your rights regarding your personal data, please contact us:

  • Through the Service's contact features
  • Via email (if contact email is provided)
  • Through your account settings

We will respond to your inquiries within 30 days (or as required by applicable law).

13. Governing Law

This Privacy Policy is governed by applicable data protection laws, including but not limited to GDPR (where applicable), and local data protection regulations. We are committed to complying with all applicable data protection requirements.