Privacy & Terms

We collect only the information necessary to provide you with financial insights:

• Account Information: Name, email address, and preferred currency.
• Transaction Data: Merchant names, dates, amounts, categories, and descriptions that you import from your bank and credit card statements.
• Usage Data: Anonymous analytics about how you interact with our application to improve user experience.

How we use Artificial Intelligence:

SpendHub utilizes Google Gemini (via Vertex AI/Google AI Studio) to analyze your spending habits.

• When you request an "AI Insight," specific transaction data (Date, Merchant, Amount, Category) is sent to the Google Gemini API.
• This data is securely pseudonymized before processing. We do not share your direct personal identifiers (like your email address) with the AI model context.
• We do not share your personal identifiers with the AI model context.
• According to Google's API policies, data sent via the API is not used to train their public models.

Service Stability & Usage Limits

To ensure a high quality of service for all users and prevent automated abuse, the following Fair Use Policy applies to all plans:

• Power Plan AI Usage: "Unlimited" AI Chat access is defined as up to 500 messages per billing month. This ceiling is designed to accommodate human power-users while preventing bot-driven API exhaustion.
• Excessive Usage: Users who consistently reach these ceilings or exhibit automated behavior may have their response times throttled or be requested to upgrade to an Enterprise volume.
• Quota Reset: All usage quotas reset on the first day of each calendar month.

We use Google Firebase for authentication and database services.

• Database: Your data is stored in Cloud Firestore, secured by robust access rules that ensure only you can access your own data.
• Authentication: Passwords are never stored in plain text. We use Firebase Authentication which employs industry-standard hashing.
• Payment Security: We do not store your credit card or billing details on our servers. All payments are processed securely via Stripe, a PCI-compliant payment provider.
• Encryption: All data is encrypted in transit (HTTPS) and at rest within Google Cloud's infrastructure.

SpendHub is hosted on Google Cloud infrastructure. Your primary account and transaction data are stored on servers located in the United Kingdom (europe-west2).

While your primary data remains in the UK, some processing (such as AI analysis via Google Gemini or payment processing via Stripe) may involve data transfers to servers in other regions. We ensure that any such transfers are protected by appropriate safeguards, including Standard Contractual Clauses or the UK Extension to the EU-US Data Privacy Framework, to ensure your information remains protected to a standard equivalent to the UK GDPR.

You have full control over your data under the UK Data Protection Act 2018:

• Right to Access: You can view all your uploaded transactions on the Dashboard and Transaction List.
• Right to Rectification: You can edit merchant names and descriptions at any time.
• Right to Erasure: You can delete specific transactions or categories via the "Maintenance" tab. To delete your entire account and permanently erase all your data, please contact us at support@spendhub.ai.

If you are based in the United Kingdom and have any concerns about our use of your personal data, you have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues.

We use Google Analytics to understand website traffic. This may set cookies on your device. You can opt-out of non-essential tracking via the cookie consent banner presented upon your first visit.