Privacy Policy

fundsvisor ("we", "us", "our") is committed to protecting your personal data. This Privacy Policy explains what data we collect, why we collect it, how we use and store it, and the rights you have in relation to it.

This policy applies to all users of the fundsvisor platform. By creating an account or using our Service, you acknowledge that you have read and understood this policy.

Account data. When you register, we collect your name, email address, and password (stored as a salted hash — we never store your plain-text password).

Financial data. Data you voluntarily enter into the Service, including transactions, income records, expenses, invoice details, contacts, and account balances. This data is stored securely and used only to provide the Service to you.

Profile and preference data. Display name, avatar image, currency preference, date format, and notification preferences.

Payment data. We do not collect or store your payment card details. All payment processing is handled by Paddle.com (see Section 5). We receive a subscription status and plan identifier from Paddle to manage your access level.

Usage and technical data. IP address, browser type, operating system, referring URLs, pages visited, and general usage patterns. This data is collected through server logs and is used for security monitoring and service improvement.

Analytics data (consent-based). If you accept analytics cookies via our cookie consent banner, Google Analytics 4 collects anonymised usage data including pages visited, time on page, referring URLs, approximate geographic location (country/region level), device and browser type, and aggregated engagement metrics. We do not send any financial data, account contents, or directly-identifying information to Google Analytics. If you decline or have not yet chosen, no analytics cookies are set and no analytics data is collected. See Section 7 for details.

Communications. If you contact us for support, we retain those communications to resolve your query and improve our support quality.

• To create and manage your account and provide access to the Service.
• To process and manage your subscription via our payment processor Paddle.
• To send transactional emails: email verification OTPs, password reset codes, invoice delivery, and billing receipts.
• To send service-related notifications (e.g. account activity alerts) based on your notification preferences.
• To respond to your support requests and enquiries.
• To monitor for and prevent fraud, abuse, and security incidents.
• To analyse aggregate, anonymised usage patterns via Google Analytics 4 to improve the Service — only when you have explicitly accepted analytics cookies.
• To comply with legal obligations.

We do not use your financial data for advertising, profiling, or any purpose other than providing the Service to you. We do not sell your personal data to any third party.

If you are located in the European Economic Area or United Kingdom, we process your personal data under the following legal bases:

• Contract: processing necessary to provide the Service you have signed up for.
• Legitimate interests: security monitoring, fraud prevention, and service improvement — where these do not override your rights.
• Legal obligation: where required to comply with applicable law.
• Consent: where you have given specific consent (e.g. optional marketing communications).

Billing and payment processing for paid subscriptions is handled by Paddle.com ("Paddle"), who acts as our Merchant of Record. When you subscribe to a paid plan, you provide your payment information directly to Paddle. fundsvisor never receives or stores your card number, bank account details, or other sensitive payment information.

Paddle may collect and process personal data about you (including your name, email, billing address, and payment information) in accordance with their own Privacy Policy. We encourage you to review Paddle's privacy practices. Paddle is an independent data controller for the data they process.

We share personal data with third-party service providers only to the extent necessary to operate the Service:

• Paddle (paddle.com) — payment processing and subscription management (Merchant of Record).
• RevenueCat (revenuecat.com) — mobile subscription state of record; mirrors Apple App Store and Google Play purchase events so your plan is consistent across web and mobile.
• Amazon Web Services (AWS Lightsail) — cloud hosting and object storage for file attachments.
• Transactional email provider — delivery of OTP codes, invoice emails, and billing receipts.
• Google LLC (Google Analytics 4) — anonymised website usage analytics. Only active when you have explicitly accepted analytics cookies via our consent banner; no data is sent if you decline. See Section 7.
• Slack Technologies (slack.com) — internal operational alerts to our team about subscription lifecycle events and new support tickets. We share only your tenant ID, plan code, anonymised amounts, and (for support tickets) the subject and message you submitted; we do not share your email, name, financial data, or other account contents in these alerts.
• Google (Firebase Cloud Messaging) — delivery of push notifications to your devices, if you have enabled them.

All service providers are contractually required to handle your data only as instructed by us and in accordance with applicable data protection law. We do not share your data with advertisers or data brokers.

Strictly necessary (always active). These are required for the Service to function and do not require consent:

• Session token (localStorage): keeps you logged in between browser sessions. Contains an encrypted authentication token.
• Theme preference (localStorage): remembers whether you prefer light or dark mode.
• Cookie consent record (localStorage, key 'cookie-consent'): stores your accept/decline choice along with the timestamp so we don't ask again on every visit.
• Currency and region preferences (server-side, on your user profile).

Optional — analytics (only with your consent). Set only after you click "Accept" on the cookie consent banner:

• Google Analytics 4 cookies (_ga, _ga_*): measure aggregate site usage — pageviews, time on page, referring source, and conversion events such as successful subscriptions. Used purely for product analytics. Never set if you click 'Reject' or have not yet chosen.

How our consent flow works. When you first visit the site we show a consent banner with equal-weight "Accept" and "Reject" options. We use Google's Consent Mode v2 with a default-denied state, which means Google Analytics loads in a cookieless, non-identifying mode until you accept — no analytics cookies are written and no identifying data is sent. If you accept, gtag switches to its normal tracking behaviour. If you reject (or simply close the banner), nothing changes from the default and no analytics data is collected.

How to withdraw consent. You can change your mind at any time by clicking "Cookie settings" in the footer at the bottom of any page. This re-opens the banner and clears any prior choice. After rejecting, any existing analytics cookies in your browser become inert (we no longer read or send them) and no new ones are written. You can also clear cookies directly from your browser settings.

Third-party cookies during checkout. Paddle may set cookies on the checkout overlay when you make a purchase, governed by their own cookie policy. These are necessary for the checkout to function and are unrelated to our analytics.

We retain your personal data for as long as your account is active. If you delete your account, we will purge your personal and financial data within 30 days, except where we are required by law to retain it for longer (for example, billing records may be retained for up to 7 years to comply with accounting and tax obligations).

Server log data (IP addresses, usage events) is retained for up to 90 days for security purposes, then automatically deleted.

We take reasonable technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure:

• All data is transmitted over HTTPS/TLS.
• Passwords are hashed using a strong one-way algorithm — we cannot retrieve your plain-text password.
• Financial data is stored on encrypted infrastructure.
• Access to production systems is restricted to authorised personnel only.
• Two-factor authentication (TOTP) is available for your account.

No method of transmission or storage is 100% secure. In the unlikely event of a data breach that affects your rights and freedoms, we will notify you and the relevant supervisory authority as required by law.

Your data may be processed in countries outside your country of residence, including the United States. Specifically:

• Amazon Web Services (AWS) — application hosting and file storage.
• Google LLC (Google Analytics) — anonymised website analytics, only if you have consented.
• Slack Technologies — internal operational alerts to our team.
• Paddle — payment processing (Paddle has both EU and US presence; data location follows Paddle's own infrastructure).

Where such transfers occur, we rely on appropriate safeguards such as Standard Contractual Clauses approved by the European Commission, the UK International Data Transfer Addendum where applicable, and the EU–US Data Privacy Framework for participating processors.

Depending on your location, you may have the following rights regarding your personal data:

• Access: request a copy of the personal data we hold about you.
• Rectification: request correction of inaccurate or incomplete data.
• Erasure: request deletion of your personal data ('right to be forgotten').
• Restriction: request that we limit how we process your data in certain circumstances.
• Portability: receive your data in a structured, machine-readable format.
• Objection: object to processing based on legitimate interests.
• Withdraw consent: where processing is based on your consent, you may withdraw it at any time.

To exercise any of these rights, email us at [email protected]. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection supervisory authority.

You can export your transaction and invoice data at any time from Settings → Data Export, and delete your account from Settings → Security. To withdraw analytics consent, click "Cookie settings" in the page footer.

The Service is not directed at or intended for use by individuals under the age of 18. We do not knowingly collect personal data from anyone under 18. If we become aware that we hold data about a person under 18, we will delete it promptly.

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and/or by placing a prominent notice on the Service. The updated policy will take effect 30 days after the notification date. Continued use of the Service after that date constitutes your acceptance of the updated policy.

For any questions, requests, or concerns about this Privacy Policy or how we handle your data, please contact us at:

Email: [email protected]