Privacy Policy

Last updated: December 14, 2024

1. Introduction

Welcome to Piggly ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal and financial information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website (collectively, the "Service").

By using Piggly, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Personal Information

When you create an account, we may collect:

  • Name and email address
  • Apple ID information (when using Sign in with Apple)
  • Profile preferences and settings

2.2 Financial Information

To provide our budgeting services, we collect financial data through our integration with Plaid:

  • Account balances and transaction history
  • Account and routing numbers (encrypted)
  • Institution names and account types
  • Transaction descriptions, amounts, dates, and categories

Important: We never store your bank login credentials. Authentication is handled securely by Plaid.

2.3 Usage Data

We automatically collect certain information when you use our Service:

  • Device information (type, operating system, unique identifiers)
  • App usage patterns and feature interactions
  • Error logs and crash reports
  • IP address and general location (city/region level)

2.4 Information You Provide

  • Manual transaction entries and notes
  • Budget names and spending categories
  • Support requests and feedback

3. How We Use Your Information

We use the information we collect to:

  • Provide our Service: Display your accounts, transactions, budgets, and analytics
  • Improve the app: Analyze usage patterns to enhance features and user experience
  • Personalize your experience: Customize insights, alerts, and recommendations
  • Communicate with you: Send important updates, security alerts, and support responses
  • Ensure security: Detect and prevent fraud, abuse, and unauthorized access
  • Comply with legal obligations: Meet regulatory requirements and respond to legal requests

We do not:

  • Sell your personal or financial data to third parties
  • Use your data for advertising purposes
  • Share your information with data brokers

4. How We Protect Your Information

We implement industry-leading security measures to protect your data:

  • 256-bit AES Encryption: All data is encrypted at rest and in transit using military-grade encryption
  • Secure Infrastructure: Our servers are hosted in SOC 2 Type II compliant data centers
  • Access Controls: Strict access controls limit employee access to user data
  • Regular Audits: We conduct regular security audits and penetration testing
  • Plaid Security: Financial connections are secured by Plaid's bank-level security infrastructure

While we strive to use commercially acceptable means to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

5. Third-Party Services

We work with trusted third-party services to provide our Service:

5.1 Plaid

We use Plaid to securely connect your bank accounts. Plaid's use of your information is governed by their Privacy Policy. Key points:

  • Plaid is used by major companies like Venmo, Robinhood, and Coinbase
  • Your bank credentials are stored by Plaid, not by us
  • We receive read-only access to your account information

5.2 Apple

We use Apple services for:

  • Sign in with Apple (authentication)
  • In-app purchases and subscriptions
  • Push notifications

5.3 Analytics

We may use privacy-focused analytics services to understand how users interact with our app. Any analytics data is anonymized and cannot be used to identify individual users.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide you with our Service. Specifically:

  • Account data: Retained until you delete your account
  • Transaction history: Retained until you delete your account or disconnect the linked institution
  • Usage data: Retained for up to 24 months in anonymized form
  • Support communications: Retained for up to 3 years to improve our service

When you delete your account, we will delete or anonymize your personal information within 30 days, except where retention is required by law.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate personal data
  • Deletion: Request deletion of your personal data
  • Portability: Request your data in a portable format
  • Opt-out: Opt out of certain data processing activities
  • Withdraw consent: Withdraw previously given consent

To exercise these rights, please contact us at privacy@piggly.tech. We will respond to your request within 30 days.

California Residents (CCPA)

California residents have additional rights under the California Consumer Privacy Act. We do not sell personal information. You may request disclosure of the categories and specific pieces of personal information we have collected.

European Residents (GDPR)

If you are in the European Economic Area, you have rights under the General Data Protection Regulation, including the right to lodge a complaint with a supervisory authority.

8. Children's Privacy

Our Service is not intended for individuals under the age of 13 (or 16 in certain jurisdictions). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@piggly.tech.

If we discover that we have collected personal information from a child without parental consent, we will take steps to delete that information promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will:

  • Update the "Last updated" date at the top of this policy
  • Notify you via email and/or in-app notification
  • Require your acknowledgment before continued use (for significant changes)

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to all inquiries within 30 days.