Privacy Policy

Introduction

Finthy (“we”, “our”, or “us”) is committed to protecting your privacy and ensuring the security of your personal and financial information. This Privacy Policy explains how we collect, use, share, and protect your information when you use our financial dashboard platform and related services.

Information We Collect

Personal Information

• Account Information: Name, email address, phone number, and password
• Identity Verification: Government-issued ID, address verification documents
• Profile Information: Country of residence, preferred language, timezone

Financial Information

• Bank Account Data: Account numbers, balances, transaction history
• Transaction Details: Merchant information, amounts, dates, categories
• Financial Goals: Budgets, savings targets, financial preferences

Technical Information

• Device Information: IP address, browser type, operating system
• Usage Data: How you interact with our platform, features used
• Cookies: Session cookies, preference cookies, analytics cookies

How We Use Your Information

Primary Services

• Account Management: Creating and maintaining your Finthy account
• Financial Analytics: Providing insights, budgeting tools, and spending analysis
• Transaction Processing: Categorizing and organizing your financial data
• Multi-Currency Support: Converting and displaying balances in different currencies

Communication

• Service Updates: Important notifications about your account or our services
• Support: Responding to your questions and providing customer assistance
• Marketing: Sending relevant offers and updates (with your consent)

Security & Compliance

• Fraud Prevention: Monitoring for suspicious activities
• Legal Compliance: Meeting regulatory requirements in Mexico, Chile, and Brazil
• Service Improvement: Analyzing usage patterns to enhance our platform

How We Share Your Information

We DO NOT sell your personal or financial information to third parties.

Service Providers

• Banking Partners: Secure connections to retrieve your financial data
• Technology Partners: Cloud hosting, data analytics, and security services
• Payment Processors: Processing subscription payments securely

Legal Requirements

• Government Requests: When required by law or court order
• Safety & Security: To protect against fraud or security threats
• Business Transfers: In case of merger, acquisition, or sale of assets

Data Security

Encryption

• Data in Transit: All data transmitted using TLS 1.3 encryption
• Data at Rest: Financial data encrypted using AES-256 encryption
• Platform Security: Secure token-based authentication with banking partners

Access Controls

• Employee Access: Strict need-to-know basis with regular audits
• User Authentication: Multi-factor authentication options available
• Session Management: Automatic logout and session security

Security Monitoring

• 24/7 Monitoring: Continuous security monitoring and threat detection
• Regular Audits: Quarterly security assessments and penetration testing
• Incident Response: Immediate response to any security incidents

Your Rights and Choices

Account Control

• Data Access: View and download your personal and financial data
• Data Correction: Update or correct inaccurate information
• Account Deletion: Delete your account and associated data

Privacy Controls

• Marketing Preferences: Opt-out of marketing communications
• Cookie Settings: Control non-essential cookies
• Data Sharing: Limit how we share your information

Regional Rights

Depending on your location, you may have additional rights under local privacy laws such as LGPD (Brazil) or other applicable regulations in your jurisdiction.

Data Retention

• Active Accounts: Data retained while your account is active
• Inactive Accounts: Data retained for 7 years after account closure
• Transaction Data: Financial transaction data retained for 10 years for compliance
• Marketing Data: Removed immediately upon opt-out request

International Transfers

Your data may be processed in servers located in different countries. We ensure appropriate safeguards are in place for international data transfers, including:

• Adequacy Decisions: Transfers to countries with adequate data protection
• Standard Contractual Clauses: Legal protections for international transfers
• Encryption: All international transfers are encrypted

Cookies and Tracking

Essential Cookies

• Authentication: Keeping you logged in securely
• Security: Protecting against fraud and attacks
• Functionality: Remembering your preferences and settings

Analytics Cookies

• Usage Analytics: Understanding how our platform is used
• Performance Monitoring: Identifying and fixing technical issues
• Feature Usage: Measuring the effectiveness of new features

Third-Party Services

• Google Analytics: Website usage analytics (anonymized)
• Customer Support: Chat and support tools
• Payment Processing: Secure payment processing services

Changes to This Policy

We may update this Privacy Policy from time to time. We will:

• Notify Users: Send email notifications for material changes
• Update Date: Reflect the last updated date at the top of this policy
• Continued Use: Your continued use indicates acceptance of changes

Contact Us

If you have questions about this Privacy Policy or our privacy practices:

Email: [email protected]
Address: [To be provided]
Data Protection Officer: [email protected]

For country-specific privacy inquiries:

• Mexico: [email protected]
• Chile: [email protected]
• Brazil: [email protected]

This Privacy Policy is available in English, Spanish, and Portuguese. In case of conflicts between translations, the English version shall prevail.