Privacy Policy

FinSight — Personal Finance Tracker

Last updated: 10 March 2026 | Version 3.1

FinSight ("the App", "we", "us", "our") is a personal finance management application built as a Progressive Web App (PWA) and available on Google Play as a Trusted Web Activity (TWA). We are committed to protecting the privacy and security of our users ("you", "your"). This Privacy Policy explains how we handle data in compliance with Google Play's User Data policy, the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the Children's Online Privacy Protection Act (COPPA).

  Key Principle: All your financial data is stored exclusively on your device. We do not operate user account systems, databases, or backend servers that store personal data. Our infrastructure consists solely of a stateless Cloudflare Worker proxy with logging disabled by design.

1. Information We Collect

1.1 Data Stored On-Device Only (Not Collected by Us)

The following data is stored exclusively in your browser's localStorage on your device. This data never leaves your device except when you explicitly opt in to specific features described in Section 2. Per Google Play's Data Safety guidelines, on-device-only data is not considered "collected" by us.

Bank account transactions (imported from CSV/PDF/JSON files)
Credit card statements and spending data
Investment holdings and portfolio data
Loans, EMIs, and lending records
Budget plans and net worth history
Receipt images and scanned data
Stock evaluations and screener results
App settings and preferences

1.2 Data We Do NOT Collect

We explicitly do not collect, store, process, or transmit:

✗ Personal identifiers (name, email, phone, address, date of birth)
✗ Financial account numbers, card numbers, or banking credentials
✗ Device identifiers, advertising IDs, or hardware fingerprints
✗ Location data (approximate or precise)
✗ Contacts, calendar, photos, microphone, or camera data
✗ Browsing history, search history, or app usage analytics
✗ Crash logs, diagnostics, or performance telemetry
✗ Cookies for tracking, advertising, or behavioural profiling

1.3 No User Accounts

The App does not require or support user account creation. There are no login credentials, no email verification, and no user registration. All data is anonymous and local.

2. Data Transmitted to Third-Party Services

When you use certain optional or automatic features, limited non-personal data may be transmitted to third-party services. All transmissions use HTTPS encryption in transit.

2.1 AI-Powered Analysis Features User-Initiated

When you explicitly choose to use AI features, the App sends anonymised, non-identifiable data through our Cloudflare Worker proxy to AI providers. You are presented with a disclosure in the App before any AI feature is activated.

Feature	Data Transmitted	Data NOT Transmitted	Provider
Portfolio Analysis	Anonymous allocation percentages only (e.g. "40% equity, 30% debt"), risk profile label	No stock tickers, amounts, balances, or personal identifiers	Groq (Llama 3.1) with Google Gemini fallback
Pick of the Day	Publicly available market data: stock symbols, prices, moving averages, PE ratios, volume	No user portfolio data, no personal information	Groq (Llama 3.1) with Google Gemini fallback
Card Recommendations	Anonymous spending category percentages (e.g. "Groceries: 15%, Fuel: 8%")	No merchant names, transaction amounts, or card numbers	Groq (Llama 3.1) with Google Gemini fallback
Statement Parsing	Auto-redacted statement text — card/account numbers, names, and email addresses are programmatically stripped before transmission	No raw financial credentials or unredacted PII	Anthropic Claude (user provides own API key)

Important: AI features are entirely optional. The App functions fully offline with rule-based analysis. AI responses are used solely for in-app display and are not stored on any server.

In-App Disclosure: Before any AI feature transmits data off your device for the first time, the App presents a prominent disclosure modal explaining exactly what data will be sent, what will never be sent, and links to this Privacy Policy. You must explicitly consent before AI features are activated. You can revoke consent at any time by clearing app data.

2.2 Market Data Automatic

To display live stock prices and market information, the App automatically fetches publicly available financial data:

Service	Purpose	Data Sent	Personal Data
Yahoo Finance (via our proxy)	Stock prices, market movers, technical indicators for Top Movers and Pick of the Day features	Predefined stock ticker symbols only	None
ExchangeRate-API / Open ER API	Live currency conversion rates	Currency code only (e.g. "INR")	None

2.3 Zerodha Kite Connect User-Initiated

You may optionally connect your Zerodha brokerage account using the Kite Connect API to import your portfolio holdings. This integration requires you to provide your own Kite Connect API key and secret.

What is accessed: Investment holdings and mutual fund holdings from your Zerodha account
How it works: Authentication uses Zerodha's OAuth flow. Our Cloudflare Worker acts as a stateless pass-through CORS proxy — it forwards requests and does not store, log, or retain any credentials or portfolio data
User control: You can disconnect at any time from Settings. Removing your API key immediately stops all data access. Stored tokens are deleted from your device
Data storage: Fetched holdings are stored only in your browser's localStorage on your device

2.4 Content Delivery Networks (CDN) Automatic

The App loads the following standard open-source libraries from public CDNs for core functionality:

Google Fonts (fonts.googleapis.com) — Typography. Subject to Google's Privacy Policy
Chart.js (cdnjs.cloudflare.com) — Charts and graphs
PDF.js (cdnjs.cloudflare.com) — In-browser PDF parsing
Tesseract.js (cdn.jsdelivr.net) — On-device OCR engine for receipt scanning. All OCR processing happens locally in your browser; no images or text are transmitted externally

CDN requests are standard HTTP/HTTPS resource fetches. No personal, financial, or user-specific data is included in these requests.

2.5 Cloudflare Worker Proxy

API requests to AI services, Yahoo Finance, and Kite Connect are routed through a Cloudflare Worker (finsight-proxy.finsight-api.workers.dev). This proxy:

Is stateless — it processes requests in memory and does not persist any data
Has observability/logging explicitly disabled in its configuration
Does not store API keys, request bodies, response bodies, IP addresses, or any user data
Is subject to Cloudflare's Privacy Policy for infrastructure-level operational metrics

3. Google Play Data Safety Declaration

The following reflects our declarations in the Google Play Data Safety section, aligned with Google's 14 data categories.

Data Collection & Sharing Summary

LocationNot collected

Personal info (name, email, phone, address)Not collected

Financial info (payment info, purchase history)Not collected

Health and fitnessNot collected

MessagesNot collected

Photos and videosNot collected

Audio filesNot collected

Files and docsNot collected *

CalendarNot collected

ContactsNot collected

App activityNot collected

Web browsing historyNot collected

App info and performanceNot collected

Device or other IDsNot collected

* Files (CSV/PDF/JSON) are processed entirely on-device in the browser. If you opt in to Claude AI parsing, redacted text (not the file itself) is sent to the AI provider as described in Section 2.1.

Security Practices

Data encrypted in transit✓ Yes (HTTPS/TLS)

Data encrypted at restOn-device (browser storage)

You can request data deletion✓ Yes (Settings > Clear All Data)

Data shared with third partiesNo **

** When you opt in to AI features, anonymised non-personal data (not user data) is sent to AI providers for processing. No personal or financial data is shared.

4. Data Security Measures

On-device storage: All financial data remains in your browser's localStorage. No external servers store your data.
PIN Lock: Optional app-level protection using a salted SHA-256 hash. The PIN is never stored in plain text and never transmitted.
Encryption in transit: All external communications use HTTPS/TLS encryption.
PII auto-redaction: When using Claude AI for statement parsing, card numbers, account numbers, names, and email addresses are programmatically stripped before any data leaves your device.
No tracking: No analytics scripts, no advertising SDKs, no fingerprinting, no cookies.
Stateless proxy: Our Cloudflare Worker processes requests in memory with zero persistence and logging disabled.
Service Worker: Used for offline caching of static application files (HTML, CSS, JS, fonts) only. It does not cache, access, or transmit any user or financial data.

5. Data Retention & Deletion

5.1 On-Device Data

All data persists in your browser's localStorage until you choose to delete it. We have no access to this data and cannot retain or recover it.

5.2 How to Delete Your Data

In-App: Settings > Clear All Data — instantly removes all stored financial data, evaluations, budgets, and preferences
Browser-level: Clear site data for the App's domain in your browser settings
Uninstall: Removing the App (PWA or TWA) removes all associated localStorage data

Since no data is stored on our servers, deletion is immediate, complete, and irreversible. There is no server-side data to request deletion of.

5.3 AI Processing Data

Data sent to AI providers (Groq, Gemini, Claude) is processed in real-time and not retained by us. Refer to each provider's privacy policy for their data handling practices:

6. Your Rights

Depending on your jurisdiction, you may have the following rights under applicable data protection laws (including GDPR and CCPA):

Right to Access: All your data is stored on your device and is fully accessible to you at all times within the App.
Right to Deletion: You can delete all data at any time via Settings > Clear All Data.
Right to Portability: Your data is stored in standard JSON format in browser localStorage and can be accessed directly.
Right to Restrict Processing: AI features are optional and can be avoided entirely. The App does not process data on remote servers.
Right to Object: Since we do not collect or process personal data on our servers, there is no profiling or automated decision-making to object to.
Right to Non-Discrimination: The App's full functionality is available regardless of privacy choices.

7. Third-Party Services & Their Policies

The App integrates with the following third-party services. Their use of any data they receive is governed by their respective privacy policies:

Service	Purpose	Privacy Policy
Cloudflare	Worker proxy, CDN, Pages hosting	cloudflare.com/privacypolicy
Groq	AI analysis (Llama 3.1)	groq.com/privacy-policy
Google (Gemini)	AI analysis fallback	policies.google.com/privacy
Anthropic (Claude)	Optional PDF statement parsing	anthropic.com/privacy
Yahoo Finance	Market data and stock prices	legal.yahoo.com/privacy
Zerodha (Kite Connect)	Optional portfolio import	zerodha.com/privacy-policy
Google Fonts	UI typography	policies.google.com/privacy

8. Permissions

The App requests no special device permissions. Specifically:

✗ No location access
✗ No camera or microphone access
✗ No contacts or calendar access
✗ No storage/file system access (files are accessed via browser file picker only)
✗ No background data collection
✗ No SMS or phone access

File uploads (bank statements, receipts) use the standard browser file picker and are processed entirely on-device.

9. Children's Privacy (COPPA Compliance)

The App is not directed at, designed for, or intended to attract children under the age of 13. We do not knowingly collect personal information from children under 13. Since the App does not collect personal data from any user, there is no risk of inadvertent collection from children.

If you are a parent or guardian and believe your child has used the App in a manner that concerns you, please contact us at the address below and we will address it promptly.

10. International Users

The App is available globally. Since all data is stored on your device, no data is transferred across international borders by us. When you opt in to AI features, data may be processed by AI providers whose servers may be located in different jurisdictions. Please refer to each provider's privacy policy (Section 7) for details on their data processing locations.

11. AI-Generated Content Disclaimer

The App uses AI services to provide educational financial analysis, including portfolio insights, stock screening ("Pick of the Day"), and credit card recommendations. All AI-generated content is:

For educational and informational purposes only
Not financial, investment, or trading advice
Generated by third-party AI models and may contain inaccuracies
Not a substitute for professional financial advice from a qualified advisor

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in the App's features, legal requirements, or our practices. When we make changes:

The "Last updated" date at the top of this page will be revised
For material changes, we will provide notice within the App
Continued use of the App after changes constitutes acceptance of the revised policy

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or the App's data practices, please contact us:

Email: finsight.app@proton.me
Developer: FinSight App

We will respond to privacy-related inquiries within 30 days.