Privacy Policy
Your financial data belongs to you. This policy explains how we collect, use, and protect your information when you use LedgerLens.
No resale
We do not sell your financial data or use it to fund ad targeting.
Statement-first
LedgerLens works from documents you upload, not bank login credentials.
Your controls
Export or delete your documents and parsed data when the review is done.
Privacy at a Glance
Before diving into the full policy, here are the commitments that matter most:
- We never sell your financial data. Period.
- We never access your bank login credentials. You upload documents directly.
- All data is encrypted at rest and in transit using industry-standard protocols.
- Each account is fully isolated from other users through tenant-level separation.
- You can export or delete your data at any time from your account settings.
- We use Stripe and PayPal to process payments. We never store your full card number.
- We do not use your financial data to train AI models.
Information We Collect
We collect different types of information depending on how you interact with LedgerLens. Here is a breakdown by category:
Account Information
- Name, email address, and password (hashed, never stored in plain text)
- Industry or profession (optional, provided during registration)
- Account preferences and settings
Financial Data
- Transaction details extracted from uploaded bank statements (dates, amounts, descriptions, categories)
- Budget configurations and spending goals you create
- Net worth entries and asset/liability tracking data
- Bill schedules and alert preferences
Uploaded Documents
- Bank statement PDFs and receipts you upload for processing
- Extracted text and structured data from those documents
- Document metadata (file name, upload date, page count)
Payment Information
- Billing plan selection (Starter, Plus, or Pro) and billing interval
- Payment method type (credit card, debit card, PayPal)
- Stripe or PayPal customer and subscription identifiers
- We do not store full credit card numbers, CVVs, or bank account numbers
Usage and Device Data
- Pages visited, features used, and interaction patterns within LedgerLens
- Browser type, operating system, and device information
- IP address and approximate geographic location
- Referral source (how you found LedgerLens)
How We Collect Information
Directly from you: When you create an account, fill out your profile, upload bank statements, configure budgets, or contact support.
Through document processing: When you upload a bank statement PDF, our system uses automated text extraction (OCR) and parsing to identify transactions, dates, amounts, and descriptions. This processing happens on our servers and the extracted data is stored in your account. See the Automated Processing section for more details.
Automatically: When you use LedgerLens, we collect standard usage data through server logs and essential cookies. We do not use third-party tracking pixels or advertising cookies.
From payment processors: When you subscribe to a paid plan, Stripe or PayPal sends us confirmation of your subscription status, payment method type, and billing identifiers. They do not send us your full card number.
How We Use Your Information
We use your information for the following purposes:
Provide and operate LedgerLens
Process your documents, display your financial data, generate reports, and deliver the features you use.
Authenticate and secure your account
Verify your identity, manage sessions with JWT tokens, enforce role-based access controls, and detect unauthorized access attempts.
Process payments
Manage your subscription, process upgrades and downgrades, and handle billing through Stripe or PayPal.
Send service communications
Deliver bill reminders, alert notifications, account security notices, and subscription updates you have opted into.
Improve our service
Analyze aggregate, anonymized usage patterns to identify bugs, improve performance, and prioritize new features. We do not use your financial data for this purpose.
Comply with legal obligations
Respond to lawful requests from government authorities, enforce our Terms of Service, and protect against fraud or security threats.
We do not use your financial data for advertising, profiling, credit scoring, or any purpose other than providing you with the LedgerLens service.
Third-Party Services
We use the following third-party services to operate LedgerLens. Each has access only to the data necessary to perform its function.
| Provider | Purpose | Data Accessed |
|---|---|---|
| Stripe | Payment processing | Email, plan selection, payment method |
| PayPal | Alternative payment processing | Email, plan selection, PayPal account |
| Cloud hosting provider | Infrastructure and data storage | All data (encrypted at rest) |
| Email delivery service | Transactional emails | Email address, name |
We do not use third-party analytics services that track individual users across websites. We do not embed third-party advertising or social media tracking pixels.
Data Security
Protecting your financial data is foundational to how we build and operate LedgerLens. Here are the measures we have in place:
Encryption
All data is encrypted in transit (TLS 1.2+) and at rest (AES-256). Uploaded documents are stored in encrypted object storage.
Tenant Isolation
Each user's data is logically isolated through row-level tenant scoping. One user can never access another user's data.
Authentication
JWT-based authentication with refresh token rotation. Sessions expire automatically and tokens are invalidated on logout.
Access Control
Role-based access control (RBAC) restricts data access by user role. Administrative actions are logged in an audit trail.
No Credential Storage
Unlike services that connect to your bank, LedgerLens processes documents you upload. We never ask for or store your bank login credentials.
Incident Response
We maintain an incident response plan and will notify affected users within 72 hours of discovering a confirmed data breach.
Data Retention
We retain your data for as long as your account is active or as needed to provide you with our services. Specific retention periods:
| Data Type | Retention Period |
|---|---|
| Account information | Until account deletion |
| Financial data (transactions, budgets) | Until account deletion |
| Uploaded documents | Until you delete them or delete your account |
| Payment and billing records | 7 years after last transaction (legal requirement) |
| Server and access logs | 90 days |
| Cached data (Redis) | Time-limited, typically minutes to hours |
When you delete your account, we remove your personal and financial data within 30 days. Some data may persist in encrypted backups for up to 90 days before being permanently purged. Data required for legal compliance (such as billing records) is retained for the legally mandated period.
Your Rights and Choices
Regardless of where you live, we provide all LedgerLens users with the following rights:
Access your data
View all personal and financial data we hold about you, directly in your account dashboard.
Export your data
Download your transactions, budgets, and financial data in CSV, JSON, or PDF format at any time.
Delete your data
Delete individual documents, transactions, or your entire account from your account settings.
Correct your data
Edit or update any information in your account, including transaction categories and personal details.
Manage notifications
Control which alerts and communications you receive from your notification preferences.
Withdraw consent
Where we rely on your consent for processing, you can withdraw it at any time.
For California Residents (CCPA/CPRA)
Under the California Consumer Privacy Act, you have the right to know what personal information we collect, request its deletion, and opt out of its sale. As stated above, we do not sell your personal information.
Your financial data is classified as “sensitive personal information” under CPRA. We use it solely to provide the LedgerLens service. You may exercise your rights by contacting us at privacy@ledgerlens.app. We will respond within 45 days.
We honor Global Privacy Control (GPC) signals as a valid opt-out request.
For European Users (GDPR)
If you are in the European Economic Area, you have additional rights under the General Data Protection Regulation, including the right to data portability, the right to restrict processing, and the right to lodge a complaint with your local data protection authority.
Our lawful basis for processing your financial data is the performance of our contract with you (providing the LedgerLens service). For usage analytics, our lawful basis is legitimate interest. You may contact us at privacy@ledgerlens.app for any GDPR-related requests. We will respond within 30 days.
Automated Processing and AI Disclosure
LedgerLens uses automated processing to extract data from the bank statement PDFs you upload. Here is how it works:
What happens: When you upload a bank statement, our system uses optical character recognition (OCR) and text parsing algorithms to identify and extract transaction data including dates, amounts, descriptions, and running balances.
What we extract: Transaction dates, amounts, merchant/payee descriptions, and partially masked account identifiers visible on the statement.
What we do not do: We do not use your financial data to train machine learning models. We do not make automated decisions that produce legal or similarly significant effects on you. We do not sell insights derived from your data.
Your control: You can review all extracted data in your dashboard, correct any inaccuracies, and delete individual documents along with all their parsed data at any time.
Automated features such as transaction categorization use pattern matching on your data within your account only. Feature availability may vary by plan, and manual categorization can override these suggestions at any time.
Payment Processing
All payment processing is handled by our third-party payment partners. LedgerLens does not directly collect, store, or process your credit card numbers or bank account details for payments.
Stripe: Handles credit and debit card payments. Stripe is PCI-DSS Level 1 certified. Stripe Privacy Policy
PayPal: Available as an alternative payment method. PayPal Privacy Policy
Starter vs. paid plans: Data collection practices are the same regardless of your plan. The Starter plan is not subsidized by additional data collection or sharing.
Children's Privacy
LedgerLens is not directed to children under the age of 16. We do not knowingly collect personal information from anyone under 16. If we become aware that we have inadvertently collected data from a child under 16, we will delete that information promptly. If you believe a child under 16 has provided us with personal information, please contact us at privacy@ledgerlens.app.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make changes:
- We will update the “Last updated” date at the top of this page.
- For material changes, we will notify you by email and through an in-app notification.
- We will provide at least 30 days' notice before material changes take effect.
- Continued use of LedgerLens after the effective date constitutes acceptance of the updated policy.
Contact Us
If you have questions about this Privacy Policy, want to exercise your rights, or have a concern about how we handle your data, reach out to us:
Email: privacy@ledgerlens.app
Response time: We aim to respond to all privacy-related inquiries within 30 days.
If you are not satisfied with our response, you may have the right to lodge a complaint with your local data protection authority.
Have questions? We are happy to help.