Privacy & Security

What we access

• Gmail: Read-only access to scan financial emails (bank alerts, receipts, statements). We cannot send, delete, or modify your emails.
• No passwords stored: We use Google OAuth. Your Google password never touches our servers.
• Optional SMS: If you set up iOS Shortcuts, bank SMS is forwarded. This is entirely optional and user-initiated.

How we protect it

• Row-Level Security: Your data is isolated at the database level. Even if our application code had a bug, it physically cannot return another user's data.
• Encrypted tokens: Your Gmail access tokens are encrypted at rest using AES-256.
• No third-party analytics: We do not use Google Analytics, Mixpanel, or any tracking that sells your data.
• HTTPS everywhere: All data in transit is encrypted.

What we can NOT do

• We cannot move your money
• We cannot access your bank login credentials
• We cannot send emails from your account
• We cannot see other users' data
• We cannot sell your data (we charge a subscription instead)

Your rights

• Delete everything: One tap in Settings permanently erases all your data. No soft-delete. Actually gone.
• Export your data: Download all your transactions as JSON anytime. Your data belongs to you.
• Revoke access: Remove SpentOn from your Google account at any time. We lose all email access immediately.

Infrastructure

• Database: Supabase (Postgres) with row-level security
• Hosting: Vercel (frontend) + Railway (background processing)
• AI processing: Transaction categorization uses LLMs via secure API. No financial data is used for model training.
• Region: Data stored in cloud infrastructure

Contact

For privacy concerns, data deletion requests, or security reports:
support@spenton.app