Privacy Policy

Effective: 3 May 2026 | Last updated: 3 May 2026

Summary: We store only what you give us — transaction data and account information. We do not sell your data. You own your data and can delete it at any time.

1. Information We Collect

PaydMate collects the following information when you create an account:

Account information: Your name and email address (for authentication)
Transaction data: Descriptions, amounts, dates, and account associations for financial transactions you add
Account data: Names and balances of budget accounts you create

We do not collect bank account numbers, credit card details, or any financial credentials.

2. How We Store Your Data

Your data is stored using Firebase (Google Cloud Platform) on servers located in the United States or other Google-supported regions. Firebase provides industry-standard security including encryption in transit and at rest.

Additionally, a local copy may be stored in your browser's local storage to enable offline access and faster loading.

3. How We Use Your Data

We use your data solely to provide the PaydMate service, including:

Authenticating your account
Syncing your data across your devices
Generating AI-powered insights (if you are a premium user)
Improving our service

We do not use your financial data for advertising, profiling, or sharing with third parties for commercial purposes.

4. Data Sharing

We do not sell, trade, or rent your personal information. Your data may be shared with:

Firebase (Google): As our data storage and authentication provider, bound by their privacy policy
OpenAI (if you use AI features): Transaction summaries may be processed by OpenAI to provide AI insights — data is sent under their data processing terms
Law enforcement: If required by Australian law or valid legal process

5. Cookies and Tracking

PaydMate does not use tracking cookies, analytics trackers, or advertising pixels. We do not track your browsing behaviour outside the app.

6. Data Retention

When you delete your account, your data is retained in our systems for up to 30 days before permanent deletion. During this period you may contact us to recover your data. After 30 days, data is permanently removed from our active systems and backup storage.

7. Your Rights (Australian Privacy Act)

Under the Privacy Act 1988 (Cth) and the Australian Privacy Principles, you have the right to:

Know what personal information we collect and hold
Request access to your personal information
Request correction of inaccurate information
Request deletion of your personal information
Complain if you believe we have breached your privacy

To exercise any of these rights, contact us at [Contact email placeholder]. We will respond within 30 days.

If you are unhappy with our response, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

8. Children's Privacy

PaydMate is not intended for users under 16 years of age. We do not knowingly collect data from minors. If we become aware that data from a child under 16 has been collected, we will delete it promptly.

9. Data Security

We use Firebase Authentication and Firestore for secure data storage. All data is transmitted over HTTPS. While no online service is completely secure, we take reasonable measures to protect your data from unauthorised access, loss, or misuse.

10. Changes to this Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. We encourage you to review this page periodically.

11. Contact

For privacy concerns or data access requests:

Email: [Contact email placeholder]

PaydMate is operated by a private individual based in Australia.