Privacy Policy

We collect the email and name you sign up with, the financial transactions and budgets you enter, and basic anonymous usage data. We don’t sell your data to anyone. We don’t connect to your bank — every transaction in Aurum is one you typed in or pasted from a CSV. Payments go through Stripe, so we never see your card number. You can export or delete your account from in-app settings or by emailing us.

Account information. Your email address, the name you provide, and a password hash (we never store your password in plain text). If you sign in with Google, we also receive the basic profile information Google sends — name, email, and a profile-image URL.

Transaction data you enter. Aurum stores the financial information you choose to record: transaction descriptions, amounts, dates, categories, vendors, and any optional notes. Aurum does not connect to your bank, brokerage, or any open-banking provider — every record exists because you typed it in or pasted it.

Payment information. If you subscribe, our payment processor Stripe collects and stores your card details directly. We never see or store your full card number. Stripe sends us a token and limited metadata (last four digits of the card, brand, billing country) so we can show your billing summary in the app.

Usage data. When you use Aurum, our analytics tool PostHog records anonymous events — pages visited, features used, and approximate location derived from your IP address. We reverse-proxy this through our own domain so it isn’t blocked by ad-blockers, but we’ve configured PostHog to mask sensitive form fields and to honor opt-out signals.

Cookies. Aurum uses essential cookies for authentication (so you stay signed in) and a small number of first-party analytics cookies set by PostHog through our reverse proxy. We don’t use third-party advertising cookies or behavioral retargeting.

We use the information described above to:

• Provide and operate the Service — render your data, calculate budgets, and run integrations.
• Authenticate your account and protect it from unauthorized access.
• Process subscription payments through Stripe and maintain billing records.
• Communicate with you about your account, including payment receipts and important changes to the Service.
• Improve the Service through aggregated, anonymous usage analysis.
• Comply with legal obligations and enforce our Terms.

We don’t use your transaction data to train machine-learning models, build advertising profiles, or sell to third parties. If we ever want to use your data for something materially new, we’ll ask you first.

Aurum runs on a small set of trusted service providers. We share only what each provider needs to do its job, under written contracts that prohibit secondary use of your data.

Stripe — Payment processing.
We send: your email, the subscription plan you chose, and the amount to charge. Stripe collects your card details directly. Stripe is PCI DSS Level 1 certified. stripe.com/privacy

Supabase — Database, authentication, file storage.
We host your account, transactions, budgets, and any uploaded files in Supabase’s managed Postgres database. Supabase is SOC 2 Type II audited and applies row-level security on every table. supabase.com/privacy

Vercel — Application hosting.
Vercel serves the Aurum application. Server logs may include IP address, user agent, and request paths. Vercel acts as a data processor under our agreement with them. vercel.com/legal/privacy-policy

Brandfetch — Vendor logos.
When you enter a transaction, we may look up a brand logo so the app can display it. This works in two parts:

• Server-side lookup. We send the merchant string you’ve entered (the vendor field if set, otherwise the description) to Brandfetch’s search API. Before sending, we strip common bank-feed noise — POS codes, store numbers, US state suffixes, and trailing reference fragments — so a string like “WHOLE FOODS MARKET #123 PORTLAND OR” goes out as “WHOLE FOODS MARKET”. We do not send the transaction amount, date, transaction ID, your account ID, or any other identifier. We don’t sanitize free-form text beyond the patterns above, so anything you type in the merchant field is sent as-is.
• Client-side image load. When the app displays a vendor logo, your browser loads the image directly from Brandfetch’s CDN at cdn.brandfetch.io. As with any third-party-hosted image (Google Fonts, Stripe’s scripts, etc.), Brandfetch’s servers receive standard HTTP request data — your IP address, browser user agent, and the referring page URL — but no information about the underlying transaction.

Brandfetch’s privacy policy applies to the data they receive in both cases: brandfetch.com/privacy

PostHog — Anonymous product analytics.
PostHog records anonymous events about how the Service is used. We’ve configured masking on form fields and reverse-proxy traffic through our domain so we don’t share your data with third-party tracking domains. posthog.com/privacy

We may also disclose information when required by law (such as in response to a valid legal process), to investigate fraud or security incidents, or in connection with a business transfer (such as a merger or acquisition). If we’re ever acquired, we’ll notify you so you can delete your account before the transfer if you choose.

Aurum is operated from Canada. Your data may be stored or processed in Canada or the United States, depending on the provider:

• Supabase hosts our database in a region we select. As of the effective date of this policy, our primary region is in North America.
• Stripe processes payments through a network of regional data centers, primarily in the United States.
• Vercel serves traffic from a global edge network; static content is replicated close to your location.

By using the Service, you consent to your information being processed in these locations, which may have different data-protection laws than your country of residence. Aurum currently serves customers in the United States and Canada. We don’t intentionally accept users from the EU, UK, or EEA — if you reach the Service from one of those regions, please don’t register an account.

Active accounts: we keep your data for as long as your account is active so the Service works as expected.

Closed accounts: when you delete your account, we permanently remove your personal data within 30 days, except where we’re required to retain certain records — for example, billing records that we keep for tax purposes for the period required by Canadian law.

Backups: deleted data may persist in encrypted backups for up to 60 days before rolling off, but it’s no longer accessible through the Service.

Depending on where you live, you may have the following rights:

• Access — get a copy of the personal information we hold about you.
• Correction — ask us to correct inaccurate information.
• Deletion — ask us to delete your account and the data we hold about you, subject to legal retention obligations.
• Portability — export your data in a structured, commonly used format.
• Withdraw consent — where we process your data based on consent, you may withdraw that consent at any time.

You can exercise most of these rights yourself from in-app settings: export your data, edit your profile, and delete your account. For anything else, email support@aurumwealth.io and we’ll respond within 30 days.

If you’re a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, “CCPA”), gives you additional rights regarding your personal information.

Categories of personal information we collect. In the past 12 months we’ve collected: identifiers (email, name); commercial information (subscription plan, billing history); internet or other electronic activity (anonymous usage events, IP address); inferences (none — we don’t profile users); and the content you choose to enter into the Service (transactions, budgets, notes).

We do not sell or share your personal information. Aurum doesn’t sell personal information for monetary or other valuable consideration, and we don’t share personal information for cross-context behavioral advertising. We never have, and we don’t intend to.

You have the right to:

• Know what personal information we collect, use, and disclose.
• Delete personal information we’ve collected from you, subject to limited exceptions.
• Correct inaccurate personal information.
• Opt out of sale or sharing for cross-context behavioral advertising. We don’t do either, but you can confirm this in writing if you want.
• Limit use of sensitive personal information. We don’t use sensitive personal information for purposes beyond providing the Service.
• Non-discrimination. We won’t treat you differently for exercising any of these rights.

To exercise a CCPA right, email support@aurumwealth.io with the subject line “CCPA request”. We’ll respond within the timelines required by law (typically 45 days, with one possible 45-day extension). We may need to verify your identity before fulfilling your request — usually by confirming you control the email address on the account.

You may designate an authorized agent to make a request on your behalf. We’ll require proof of the agent’s authorization and may also confirm the request directly with you.

Aurum isn’t directed to children under 13, and we don’t knowingly collect personal information from children under 13. If you believe a child has provided us personal information, email support@aurumwealth.io and we’ll delete it promptly.

We use industry-standard practices to protect the data you trust us with:

• All traffic is encrypted in transit using TLS 1.2 or higher.
• Data is encrypted at rest in Supabase using AES-256.
• Authentication is handled by Supabase Auth with hashed passwords and support for one-time codes.
• Every database table has row-level security policies, so a user can only access their own rows even if a query mistakenly tries otherwise.
• Card data is handled exclusively by Stripe, which is PCI DSS Level 1. Aurum does not see or store full card numbers.
• We log access to administrative tooling and review those logs for unusual activity.

No system is completely secure. If we ever experience a breach that affects your data, we’ll notify you and the relevant authorities as required by applicable law.

The fastest way to delete your account is in-app: visit Settings → Account → Delete account. You’ll be asked to confirm. The deletion is processed within 30 days and is irreversible.

If you can’t access in-app settings, email support@aurumwealth.io from the address on the account. We may ask you to verify ownership before processing.

Cancelling a subscription is different from deleting an account — see our Refund & Cancellation Policy for details.

We may update this Privacy Policy from time to time. If a change is material, we’ll notify you by email or in-app at least 14 days before it takes effect. We’ll always update the “Last updated” date at the top of this page.

Questions about this Privacy Policy or how we handle your data? Reach us at:

• Email: support@aurumwealth.io
• Operator: Bennet Ngan, operating as Aurum
• Address: [REGISTERED ADDRESS]