Privacy Policy

Riscas Fidalgas is the controller of your personal data when you use CashflowFrame.

If you have questions or requests related to privacy, you can contact us at [email protected].

We collect information that you provide directly to us when you create an account, use the app, or contact us.

We also collect certain technical information automatically when you access the Service.

Account information

When you create an account, we collect information such as your name or display name, email address, password, and subscription plan details.

We may store your language preference, region, and other profile settings you choose.

Workspace and financial data

To provide the Service, we store the data you enter into CashflowFrame, such as transactions, budgets, recurring items, accounts, assets, categories, labels, and people or pets linked to transactions.

This information is used to calculate balances, cash flow projections, budgets, reports, and similar app features.

We do not connect directly to your bank accounts unless explicitly and clearly presented through a separate, consented integration (if and when such integrations are added).

Collaboration and workspace data

If you use shared workspaces, we process information about invitations, the members of each workspace, and their roles.

Workspace owners can see the members and their assigned permissions, but not the private account information of each member outside that workspace.

Payment and subscription information

Subscriptions and payments are generally processed by app store providers (such as Apple App Store and Google Play Store).

We may receive limited information about your subscription status, such as the type of plan, renewal date, and region, but we do not store your full payment card details.

Usage and device information

We may collect information about how you use the Service, including features accessed, screens viewed, and interaction patterns.

We may also collect device information such as device type, operating system version, app version, language, and approximate region.

This information helps us improve performance, troubleshoot issues, and understand how the Service is used.

Support and communication

If you contact us for support or feedback, we may collect your email address, message content, and any additional information you choose to provide.

We use this information to respond to your requests and improve the Service.

We use the information we collect for the following purposes:

To provide and maintain the Service

Operate core features such as workspaces, transactions, budgets, reports, and collaboration.

Sync your data across devices and keep your workspaces up to date.

To personalize your experience

Remember your settings, language, and preferences.

Show relevant views, widgets, and financial summaries based on your data and choices.

To improve and develop the Service

Analyze usage patterns to understand which features are most helpful.

Debug issues, enhance performance, and plan new features and improvements.

To communicate with you

Send important notices about your account, subscription, security, or changes to our Terms or this Privacy Policy.

Respond to your questions, feedback, and support requests.

For security and legal compliance

Protect the Service, our users, and our infrastructure from abuse, fraud, or security threats.

Comply with legal obligations, enforce our terms, and respond to lawful requests from authorities when required.

If you are in the European Economic Area or the United Kingdom, we process your personal data under the following legal bases:

1. Performance of a contract: when processing is necessary to provide the Service you requested, such as creating your account and syncing your data.

2. Legitimate interests: when we process data to improve the Service, maintain security, or prevent abuse, balanced against your rights and expectations.

3. Legal obligations: when processing is required by applicable law or to respond to lawful requests.

4. Consent: when required, for example, for certain analytics or communications, and where you can withdraw consent at any time.

Our website and web-based components of the Service may use cookies or similar technologies to remember your preferences and understand how the site is used.

You can control cookies through your browser settings and, where required by law, through consent banners on our website.

In the mobile apps, we may use privacy-friendly analytics and error reporting tools to improve stability and performance.

We do not sell your personal financial data to third parties.

We share information only in limited circumstances, described below.

Service providers

We may share information with trusted service providers who help us operate the Service, such as hosting providers, analytics, error monitoring, and email delivery.

These providers are bound by contractual obligations to protect your data and use it only for our specified purposes.

Collaboration and workspaces

If you join a shared workspace, certain information in that workspace is visible to other members according to the permissions set by the workspace owner.

Workspace members may see relevant financial information stored in that workspace, but not data from your separate, private workspaces.

Legal requirements and protection

We may disclose information if we believe it is reasonably necessary to comply with applicable law, regulation, legal process, or governmental request.

We may also disclose information to enforce our terms, protect the security or integrity of the Service, or protect the rights, property, or safety of our users or others.

Business transfers

If we are involved in a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction.

We will take reasonable steps to ensure that any new entity continues to protect your data consistent with this Privacy Policy.

We retain your personal data for as long as your account is active and as needed to provide the Service.

If you cancel your subscription or delete your account, we will delete or anonymize your personal data within a reasonable period, subject to technical and legal constraints.

We may retain certain information in backups for a limited time to ensure continuity and recovery, and as required by law or for legitimate business purposes such as resolving disputes or enforcing our terms.

We implement technical and organizational measures designed to protect your information against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.

No system is completely secure, and we cannot guarantee absolute security, but we work continuously to improve our safeguards and follow industry-aligned best practices.

You can help protect your account by choosing a strong password, keeping it confidential, and enabling device-level security features.

Your information may be processed and stored in countries other than your country of residence, including countries that may have different data protection laws.

When we transfer personal data internationally, we take steps to ensure an appropriate level of protection, such as using standard contractual clauses or other lawful transfer mechanisms where required.

Depending on your location and applicable law, you may have rights regarding your personal data, such as:

1. Access: request a copy of the personal data we hold about you.

2. Rectification: request correction of inaccurate or incomplete data.

3. Erasure: request deletion of your data in certain circumstances.

4. Restriction: request that we restrict processing of your data in certain cases.

5. Portability: request a machine-readable copy of your data that you have provided.

6. Objection: object to certain types of processing, including processing based on legitimate interests or direct marketing.

7. Withdrawal of consent: when processing is based on consent, you can withdraw it at any time without affecting the lawfulness of processing before withdrawal.

How to exercise your rights

You can exercise many of these rights directly in the app or by contacting us at [email protected].

We may need to verify your identity before responding to certain requests.

You also have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.

CashflowFrame is not directed to children under the age of 16, and we do not knowingly collect personal data from children under this age.

If we learn that we have collected personal data from a child without appropriate consent, we will take steps to delete that information.

If you believe a child has provided us with personal data, please contact us at [email protected].

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements.

When we make material changes, we will notify you through the app, by email, or by other appropriate means.

The updated Privacy Policy will be effective as of the date indicated at the top. Your continued use of the Service after changes become effective means you accept the revised policy.

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, you can contact us at:

Riscas Fidalgas

Email: [email protected]