Privacy Policy

Last Updated: April 2026

At SpendSage, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our application. This policy complies with the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth).

1. Information We Collect

  • Personal Data: Email address, display name, and password (securely hashed) if you register via email. If you choose to log in using a third-party provider (such as Google), we collect basic profile information provided by them, such as your email address, name, and profile picture.
  • Financial Data: Budgets, transactions, categories, and household financial snapshots that you manually input.
  • Device & Notification Data: We securely store push subscription endpoints if you opt-in to receive notifications.
  • Payment Data: We do not store your credit card information. All subscription payments are processed securely via Stripe.
  • Usage & Error Data: Basic analytics, session replays, and crash reports to help us find and fix bugs.

2. Cookies & Local Storage

We use essential cookies and local storage to operate the app. This includes:

  • Authentication Cookies: Secure tokens (managed by Supabase) to keep you logged in.
  • Preference Cookies: Storing your currently active household ID and preferred currency to ensure the app loads correctly for you.

3. Sharing Your Information

We will never sell your personal or financial data to third parties. We only share your data with trusted service providers necessary to operate and improve the app:

  • Supabase: For secure database hosting and user authentication.
  • Stripe: For secure payment processing.
  • Vercel: For secure cloud hosting and performance analytics (Speed Insights).
  • Sentry: For application monitoring, crash reporting, and session replays to diagnose errors.
  • Google: If you use Google to sign in, your authentication is processed through their secure OAuth service. We only request basic profile access and do not access your personal Google Drive, Contacts, or other private Google services.

Note: Information inputted into a "Household" will be visible to all members you explicitly invite to that household.

4. Data Security & Storage

We use administrative, technical, and physical security measures to help protect your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that no security measures are perfect or impenetrable.

5. Your Privacy Rights

Under the Privacy Act 1988, you have the right to access the personal information we hold about you and to ask that your personal information be corrected or deleted. You can delete your account and all associated data directly within the SpendSage app settings (Danger Zone).

6. Contact Us

If you have questions or comments about this Privacy Policy, please contact us at:
support@spendsage.app