Privacy Policy

Effective Date: September 2, 2025

Your Privacy Matters

CashDuezy (“we”, “us”, or “our”) is committed to protecting your privacy. This Policy explains what information we collect, how we use it, and your rights under laws such as GDPR (EU), CCPA (California), and other applicable worldwide privacy frameworks. By using our Service, you agree to the practices described here.

1. Information We Collect

• Account Information: Email, password, and optional profile details when you register.
• Subscription Data: Services you track in CashDuezy (names, costs, billing cycles, categories).
• Payment Information: Handled securely by Stripe. We do not store full credit card numbers.
• Bank Data (Optional): If you connect accounts via Plaid, Plaid may share account and transaction details with us to identify recurring subscriptions. We never see your login credentials.
• Usage & Device Data: IP address, browser, OS, interactions with the Service, and cookies.

2. How We Use Your Information

• Provide, personalize, and improve the Service
• Send subscription reminders and account notifications
• Process payments and manage billing
• Analyze usage trends and improve performance
• Ensure security, prevent fraud, and enforce our Terms
• Comply with legal obligations and financial regulations

3. How We Share Information

• Service Providers: Hosting, email delivery, analytics, and customer support platforms.
• Stripe: For payment processing. Card data goes directly to Stripe.
• Plaid: For optional bank connections. Data shared is limited to identifying subscriptions.
• Legal & Safety: To comply with laws, enforce Terms, or respond to lawful requests.
• Business Transfers: If we merge, sell, or are acquired, your data may transfer as part of that transaction.
• With Your Consent: If we ever share beyond these purposes, we’ll ask first.

4. Cookies & Tracking

We use cookies to keep you logged in, remember preferences (like dark mode), and measure site usage. You may block cookies in your browser, though some features may not work properly.

5. Data Security

We protect your data with encryption (TLS in transit, AES at rest), secure hosting, and strict access controls. Payments are PCI-DSS compliant via Stripe. Plaid connections are encrypted and secure. No method of transmission is 100% secure, but we take all reasonable steps to protect your information.

6. Data Retention

We keep your information as long as your account is active. You may delete your account at any time, and we will erase or anonymize your data except where retention is required by law (e.g., payment records).

7. Your Rights

• Access the personal data we hold about you
• Request corrections or updates
• Delete your account and data (“Right to be Forgotten”)
• Export your data (portability)
• Opt-out of marketing emails anytime
• California & EU users: additional rights under CCPA and GDPR apply

8. International Transfers

CashDuezy is based in the U.S. By using our Service, you consent to the transfer and processing of your data in the U.S. and other countries where we operate. We rely on safeguards such as Standard Contractual Clauses (SCCs) for EU data transfers.

9. Children’s Privacy

Our Service is not directed to children under 18. We do not knowingly collect data from children under 13. If we learn we have, we’ll delete it promptly.

10. Changes to this Policy

We may update this Privacy Policy from time to time. If changes are significant, we will notify you via email or in-app notice. Continued use after updates means you accept the revised Policy.

11. Contact Us

Questions? Email us at support@cashduezy.com.