VibeWallet
Privacy & Security

Privacy Policy

Your privacy is fundamental to how we operate. This policy explains how VibeWallet collects, uses, and protects your personal and financial information.

Last updated: January 15, 2024

Bank-Grade Encryption

All data encrypted with 256-bit AES encryption in transit and at rest

No Data Selling

We never sell, rent, or share your personal data with third parties

Your Control

Full control over your data with export and deletion options

Information We Collect

Financial Data

  • Receipt Information: Merchant names, transaction amounts, dates, and categories from receipts you scan
  • Transaction History: Your manual transaction entries and imported bank data (with your consent)
  • Wallet Information: Payment method details you choose to track (card names, not full numbers)
  • Budget & Goals: Your financial goals, budgets, and spending categories

Account Information

  • Profile Data: Name, email address, profile picture
  • Authentication: Secure login credentials (passwords are hashed and never stored in plain text)
  • Preferences: App settings, notification preferences, and theme choices

Usage Information

  • App Usage: Features used, time spent, and interaction patterns (anonymized)
  • Device Information: Device type, operating system, and app version
  • AI Performance: Accuracy metrics for receipt scanning and forecasting (anonymized)

How We Use Your Information

Core App Functionality

  • • Process receipt images using AI for data extraction
  • • Generate cash flow forecasts based on your spending patterns
  • • Create scenario planning analyses for financial decisions
  • • Provide personalized budget insights and recommendations

Service Improvement

  • • Improve AI accuracy for receipt scanning and categorization
  • • Enhance forecasting algorithms based on aggregated usage patterns
  • • Develop new features based on user needs and feedback
  • • Ensure app security and prevent fraudulent activity

Communication

  • • Send important account and security notifications
  • • Provide customer support and respond to inquiries
  • • Share product updates and new feature announcements (with consent)
  • • Send monthly financial insights and tips (optional)

How We Protect Your Data

Encryption & Security

  • End-to-End Encryption: All financial data encrypted with 256-bit AES encryption
  • Secure Transmission: TLS 1.3 encryption for all data transmission
  • Data Centers: SOC 2 Type II certified data centers with 24/7 monitoring
  • Access Controls: Multi-factor authentication and role-based access for our team

AI Data Processing

  • Local Processing: Receipt images processed securely and deleted after extraction
  • Anonymized Analytics: AI training uses anonymized, aggregated data only
  • No Human Review: Your financial data is never manually reviewed by our team
  • Secure Models: AI models run in isolated, encrypted environments

Data Sharing & Third Parties

We Never Sell Your Data

VibeWallet will never sell, rent, or share your personal or financial data with third parties for marketing purposes.

Limited Sharing Scenarios

  • Service Providers: Encrypted data with vetted cloud infrastructure providers (AWS, Google Cloud)
  • Legal Requirements: Only when required by law or court order
  • Security Threats: To prevent fraud or protect user safety
  • Business Transfer: In case of merger or acquisition (with user notification)

Your Privacy Rights

Access & Control

  • • View all data we have about you
  • • Export your data in standard formats
  • • Correct inaccurate information
  • • Delete your account and all data

Communication Preferences

  • • Opt out of marketing emails
  • • Control notification settings
  • • Choose data sharing preferences
  • • Manage cookie preferences

GDPR & CCPA Rights

  • • Right to be informed
  • • Right to access
  • • Right to rectification
  • • Right to erasure
  • • Right to restrict processing
  • • Right to data portability

Contact Us

Email: privacy@vibewallet.com
Response time: Within 30 days

Data Retention

We retain your data only as long as necessary to provide our services and comply with legal obligations:

  • Active Accounts: Data retained while your account is active
  • Inactive Accounts: Data deleted after 2 years of inactivity
  • Account Deletion: All data permanently deleted within 30 days of account closure
  • Legal Requirements: Some data may be retained longer if required by law

International Data Transfers

VibeWallet operates globally, and your data may be processed in countries other than your own. We ensure adequate protection through:

  • Adequacy Decisions: Transfers only to countries with adequate data protection
  • Standard Contractual Clauses: EU-approved contractual safeguards
  • Certification Programs: Compliance with international privacy frameworks
  • Encryption: All data encrypted during transfer and storage

Children's Privacy

VibeWallet is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information promptly.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do:

  • • We'll notify you via email and in-app notification
  • • The updated policy will be posted on our website
  • • The "Last Updated" date will be revised
  • • Continued use of our service constitutes acceptance of changes

For significant changes affecting your rights, we'll seek your explicit consent before implementing them.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Privacy Team

Email: privacy@vibewallet.com
Response time: Within 30 days

Data Protection Officer

Email: dpo@vibewallet.com
For GDPR-related inquiries