Privacy Policy

Last updated: March 26, 2026Terms of Service

Privacy Policy

1. Introduction

Finable ("Finable", "we", "our") takes your privacy seriously. This Privacy Policy explains what personal data we collect, how we use it, and how we protect it when you use the Finable mobile application and finable.app website.

2. Data We Collect

We collect the following categories of personal data when you use Finable.

2.1 Account Information

  • Email address (registration and login)
  • Name (optional)
  • WhatsApp phone number (WhatsApp bot feature, optional)

2.2 Financial Data

  • Income and expense transactions
  • Debt and bill information
  • Savings goals
  • Account balances
  • Receipt and invoice images (deleted after analysis)

2.3 Device and Usage Data

  • Device type and operating system
  • App usage statistics (anonymous)
  • Error reports

2.4 WhatsApp Messages

  • Messages, photos, voice notes, and PDF files you share via the WhatsApp bot to record your financial transactions

3. How We Use Your Data

  • Providing the core app functionality
  • AI-powered receipt and audio analysis
  • Delivering financial insights and recommendations
  • Automatic transaction recording via WhatsApp
  • Sending proactive reminders and notifications
  • Improving Finable
  • Fulfilling legal obligations

4. Data Sharing

We do not sell your personal data.

Sharing only occurs with the service providers listed below.

Service Providers

  • OpenAI — Receipt, audio, and text analysis (GPT-4.1, Whisper)
  • Meta (WhatsApp Cloud API) — WhatsApp bot communication
  • RevenueCat — Subscription management
  • Amazon Web Services (AWS) — Data storage and infrastructure
  • Expo — Push notification service
  • PostHog — Anonymous usage analytics

Legal Requirements

  • Data may be shared with authorities when required by court order or legal regulation.

5. Data Security

  • All data is transmitted via SSL/TLS encryption
  • Passwords are hashed with bcrypt and never stored as plain text
  • JWT tokens are managed securely
  • Secure storage on AWS infrastructure
  • Regular security updates are applied

6. Data Retention

  • Account data: While the account is active
  • Transaction history: While the account is active
  • Receipt images: 90 days after analysis
  • WhatsApp conversation history: 24 hours (Redis, auto-deleted)
  • After account deletion: All data deleted within 30 days

7. Your Rights (GDPR / KVKK)

  • Right of access: Request a copy of your data
  • Right to rectification: Request correction of inaccurate data
  • Right to erasure: Request deletion of your data
  • Right to portability: Receive your data in a machine-readable format
  • Right to object: Object to data processing

8. Children’s Privacy

Finable is not directed at children under 13 years old, and we do not knowingly collect personal data from them.

9. Cookies and Analytics

Our website uses privacy-focused analytics (PostHog, EU servers). We collect only anonymous usage data that does not contain personal information.

10. Third-Party Links

Our app or website may contain links to third-party sites. We are not responsible for their privacy practices.

11. Policy Changes

You will be notified by email or in-app notification when we make significant changes to this policy.

The current version is always available at finable.app/privacy.

12. Contact

Data Controller: Finable

Email: hello@flofinance.app

Website: finable.app