Privacy Policy

Last Updated: January 24, 2026

1. Introduction

CathSpend ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal information when you use our budget tracking application.

2. Information We Collect

2.1 Account Information

  • Email address (for authentication and communication)
  • Display name (optional, for personalization)
  • Profile photo (if using Google Sign-In)

2.2 Financial Data

  • Transaction details (merchant, amount, category, date, notes)
  • Budget settings (monthly budget amount, currency)
  • User preferences (timezone, date format)

2.3 Payment Information

Payment information is processed and stored by Stripe. We do not store your credit card numbers or payment credentials. We only receive a subscription status from Stripe.

2.4 Usage Data

  • Analytics via Firebase Analytics (page views, feature usage)
  • Device information (browser type, screen size)
  • IP address (for security and fraud prevention)

3. How We Use Your Information

  • Provide Services: Track transactions, calculate budgets, generate insights
  • Communication: Send weekly email reports (Pro users), account notifications
  • Improve Product: Analyze usage patterns via Firebase Analytics
  • Security: Detect and prevent fraud, unauthorized access
  • Legal Compliance: Comply with legal obligations and enforce Terms

4. Third-Party Services

We use the following third-party services:

Firebase (Google)

Authentication, database, analytics

Firebase Privacy Policy

Stripe

Payment processing

Stripe Privacy Policy

Resend

Email delivery (weekly reports)

Resend Privacy Policy

Clearbit

Merchant logo fetching

Clearbit Privacy Policy

5. Data Security

  • All data is encrypted in transit (HTTPS/TLS)
  • Data at rest is encrypted by Firebase Firestore
  • Access controls limit who can view your data
  • Regular security audits and updates

6. Your Rights

You have the following rights regarding your data:

  • Access: Export your data anytime via Settings → Export Data
  • Correction: Edit transactions and profile information directly in the app
  • Deletion: Delete your account via Settings → Account → Delete Account
  • Portability: Download your data in CSV or JSON format
  • Opt-Out: Unsubscribe from emails via link in email footer

7. Cookies

We use essential cookies for authentication (Firebase Auth) and analytics cookies (Firebase Analytics) to improve our service. You can disable analytics cookies in your browser settings.

8. Data Retention

  • Active accounts: Data retained indefinitely
  • Deleted accounts: Data permanently deleted within 30 days
  • Guest sessions: Data stored in browser only (localStorage)

9. Children's Privacy

CathSpend is not intended for users under 18. We do not knowingly collect information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification.

11. Contact Us

For privacy questions or requests, contact us at: privacy@cathspend.com