Privacy Notice

This Privacy Notice describes how MoneyYogi LLC, a Texas limited liability company ("MoneyYogi", "we"), collects and uses personal information when you use the MoneyYogi service. MoneyYogi LLC is the data controller for the personal information described here.

1. Information we collect

• Account information — name, email, password hash, profile preferences.
• Linked financial data — account balances, transaction history, and institution metadata received read-only from Plaid when you connect a bank.
• Manual entries — accounts, transactions, budgets, goals, tags, and notes you create.
• AI conversations — prompts you send to the in-app chat and the responses generated, along with the minimum context needed to answer.
• Usage data — log data, device identifiers, IP address, and feature interactions.
• Support communications — messages you send to us.

2. How we use it

• To create and operate your account and provide the service.
• To organize and display your financial picture.
• To power AI features (chat, categorization assistance, skills).
• To improve the product, debug issues, and prevent fraud and abuse.
• To respond to support requests.
• To send service-related communications.

3. Legal bases (where applicable)

We process your information to perform our contract with you, to comply with legal obligations, on the basis of our legitimate interests (security, product improvement), and with your consent where required.

4. AI features

When you use MoneyYogi's AI chat or categorization features, your prompts and the relevant context needed to answer (for example a date range, a category, or a small set of transactions) are sent to our AI gateway, which routes the request to a large language model provider (currently Google's Gemini family of models). We use these providers strictly to generate a response to your request:

• Your data is not used to train third-party AI models.
• Prompts and responses are retained briefly in service logs for debugging, safety, and abuse review, then purged on a rolling basis.
• AI output may be inaccurate or out of date and is not financial, investment, legal, or tax advice.
• Please do not paste content into the chat that you do not want processed by a large language model.

5. Shared workspaces (Spaces)

MoneyYogi organizes data into Spaces (e.g. a Personal space and one or more Business spaces). Data inside a Space is visible to every member of that Space according to their role — owner, editor, or viewer. The Space owner controls billing, membership, and deletion of the Space. Inviting a member grants them access to that Space's financial data; removing a member revokes it going forward.

6. Sharing

We share information with the following categories of sub-processors and recipients:

• Paddle.com Inc. — Merchant of Record for sales, subscription management, payments, tax compliance, and invoicing.
• Plaid — to enable read-only connections to your financial institutions.
• Lovable Cloud — hosting, database, authentication, and file storage.
• Lovable AI Gateway / Google (Gemini) — to generate AI responses on your behalf as described above.
• Lovable Email — transactional email delivery (verification, password reset, invitations, receipts).
• Professional advisors and authorities — where required by law.

We do not sell personal information and do not share it for cross-context behavioral advertising.

7. Security

We use appropriate technical and organizational measures including TLS in transit, AES-256 encryption at rest for sensitive financial fields, least-privilege access controls, optional two-factor authentication, and audit logging.

8. Retention

• Active accounts — we retain your data for as long as your account is active.
• After deletion — soft-deleted data is purged from production within approximately 30 days.
• Financial records — we may retain certain transaction and billing records for up to 7 years to comply with tax, accounting, and audit obligations.
• Service logs — retained for approximately 90 days for security and debugging.

9. Children's privacy

MoneyYogi is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us personal information, contact us and we will delete it.

10. Your rights

Depending on where you live, you may have the right to access, correct, delete, restrict, or port your personal information, and to object to certain processing or withdraw consent. Contact us through the app or by email to exercise these rights. EU/UK users may also lodge a complaint with their supervisory authority.

11. U.S. state privacy rights

California residents (CCPA/CPRA): you have the right to know what personal information we collect, to request deletion or correction, to limit the use of sensitive personal information, and to opt out of any "sale" or "sharing" of personal information. We do not sell personal information and do not share it for cross-context behavioral advertising.

Texas residents (TDPSA) and residents of other U.S. states with comprehensive privacy laws have analogous rights to access, correct, delete, and port their information, and to opt out of targeted advertising and sale (neither of which we do).

12. International transfers

Where personal data is transferred outside your country, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

13. Cookies

We use cookies and similar technologies that are essential to provide the service (e.g. authentication). Where required, we will request consent for non-essential analytics or marketing cookies.

14. Contact

MoneyYogi LLC — privacy questions can be sent to josh@moneyyogi.app or through in-app support.