Privacy Policy

Last Updated: December 15, 2025

Yax Finance ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.

1. Information We Collect

1.1 Information You Provide

• Account Information: Email address, name, and authentication credentials when you create an account
• Profile Information: Any additional information you choose to provide

1.2 Financial Information (via Plaid)

When you connect your bank accounts through Plaid, we may receive:

• Account balances and transaction history
• Account and routing numbers (masked)
• Account holder name
• Transaction descriptions, amounts, and dates
• Merchant and category information

We do not store your bank login credentials. Plaid securely handles the connection to your financial institution.

1.3 Automatically Collected Information

• Device information (device type, operating system)
• Usage data (features used, interactions)
• Error logs and performance data

2. How We Use Your Information

We use the collected information to:

• Provide expense tracking and financial management features
• Categorize and analyze your transactions
• Display account balances and spending summaries
• Send important notifications about your account
• Improve and optimize our services
• Respond to your requests and support inquiries

3. How We Store Your Information

Your data is stored securely using industry-standard practices:

• Encryption in Transit: All data transmitted between your device and our servers uses TLS 1.2 or higher
• Encryption at Rest: All stored data is encrypted at rest
• Secure Infrastructure: We use Supabase, which provides enterprise-grade security on AWS/GCP infrastructure
• Access Controls: We implement role-based access control and the principle of least privilege

4. Information Sharing

We do not sell your personal information. We may share your information with:

• Plaid: To connect and retrieve your financial account information. Plaid's use of your data is governed by their End User Privacy Policy
• Service Providers: Third-party services that help us operate our app (e.g., cloud hosting, analytics)
• Legal Requirements: When required by law or to protect our rights

5. Your Rights and Choices

You have the right to:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your data (see our Data Deletion Policy)
• Disconnect: Remove connected bank accounts at any time
• Opt-out: Unsubscribe from non-essential communications

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services. Transaction data is retained for up to 2 years to provide historical spending analysis. You may request deletion at any time.

7. Children's Privacy

Our service is not intended for users under 18 years of age. We do not knowingly collect information from children.

8. California Privacy Rights (CCPA)

California residents have additional rights including:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale of personal information (we do not sell your data)
• Right to non-discrimination for exercising privacy rights

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy in the app and updating the "Last Updated" date.

10. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: privacy@yaxfinance.com