← Back to app

Privacy Policy

Last updated: March 2026

My Money Jar ("we", "us", "our") is committed to protecting your personal data. This policy explains what information we collect, how we use it, and your rights.

1. Information We Collect

• Account data: your email address and a hashed version of your password (we never store your password in plain text).
• Bank statement text: when you upload a PDF, text is extracted in your browser and sent to our server for analysis. We do not store the raw PDF or the extracted text — only the structured transaction data returned by the AI.
• Transaction reports: the categorized transactions from each analysis, saved only when you explicitly click "Save Report".
• Billing data: subscription and payment details are handled entirely by Paddle. We receive only your Paddle customer ID and subscription status — we never see or store your card details.

2. How We Use Your Data

• To provide the statement analysis service.
• To authenticate you and manage your subscription.
• To store and retrieve reports you have chosen to save.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

3. AI Processing (Anthropic / Claude)

Bank statement text is sent to the Anthropic API (Claude) for transaction categorization. Anthropic processes this data under their API terms of service. Under standard API usage, Anthropic does not use API inputs and outputs to train their models. For more information see Anthropic's Privacy Policy.

4. Payments (Paddle)

Subscription payments are processed by Paddle, who acts as the Merchant of Record. Paddle handles all payment data, VAT, and billing in accordance with their own Privacy Policy.

5. Data Storage and Security

• Your data is stored in a database on our server.
• Passwords are hashed using PBKDF2-SHA512 with a unique salt.
• Sessions use HttpOnly, SameSite cookies. All state-changing requests require a CSRF token.
• We use HTTPS in production to encrypt data in transit.

6. Data Retention

Your account and saved reports are retained for as long as your account exists. You can delete individual reports at any time from within the app. To delete your account and all associated data, contact us at help@mymoneyjar.io.

7. Your Rights

Depending on your location, you may have rights to access, correct, or delete your personal data. To exercise any of these rights, please contact us at help@mymoneyjar.io.

8. Cookies

We use two first-party cookies: a session cookie for authentication and a CSRF cookie for security. We do not use tracking or advertising cookies.

9. Changes to This Policy

We may update this policy from time to time. The latest version will always be available at this URL. Continued use of the service after changes constitutes acceptance of the updated policy.

10. Contact

If you have any questions about this privacy policy, please contact us at help@mymoneyjar.io.