Privacy Policy

Last Updated: March 12, 2026 · Effective: March 12, 2026

1. Introduction

Atlas Budgeting (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Atlas Budgeting mobile application and related services (collectively, the “App”). Please read this policy carefully. By using the App, you consent to the practices described herein.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address and password hash when you create an account.
  • Subscription Data: Names, amounts, billing dates, and categories of subscriptions you add manually or that are detected automatically.
  • Preferences: Budget limits, notification preferences, and display settings.

2.2 Information Collected via Bank Connection (Plaid)

When you connect a bank account, we use Plaid Inc. to retrieve transaction history, account balances, and account metadata. We access your financial institution in read-only mode - we can never initiate transactions, transfers, or payments on your behalf. We do not receive your bank login credentials, full account numbers, or routing numbers. Plaid’s own privacy policy governs their handling of your data: plaid.com/legal/end-user-privacy-policy.

2.3 Information Collected via Email Connection (Gmail)

If you optionally connect your Gmail account, Atlas Budgeting requests read-only access to your Gmail messages using the gmail.readonly OAuth scope. We use this access exclusively to scan for subscription-related emails (e.g., billing receipts, trial notifications, price change alerts) from known subscription senders. We do not read, store, or process personal emails, attachments, or non-subscription messages. From subscription emails, we extract only: sender name, service name, billing amount, and billing date.

You can revoke Gmail access at any time at myaccount.google.com/permissions or within the App under Settings → Connected Accounts.

2.4 Information Collected Automatically

  • Usage Data: App opens, feature interactions, and screen views to improve the product. This data is anonymized and aggregated.
  • Crash Reports: Error logs and stack traces sent to Sentry for debugging. No financial data is included in crash reports.
  • Device Information: Device type, operating system version, and app version for compatibility and troubleshooting purposes.

3. Google API Services - Limited Use Disclosure

Atlas Budgeting’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We only use Gmail data to detect and display your recurring subscriptions, trials, and upcoming charges within the App.
  • We do not use Gmail data for serving advertisements or for any purpose unrelated to providing or improving the subscription-detection features of the App.
  • We do not allow humans to read your Gmail data unless (a) we have your affirmative consent, (b) it is necessary for security purposes such as investigating abuse, (c) it is necessary to comply with applicable law, or (d) our use is limited to internal operations and the data has been aggregated and anonymized.
  • We do not transfer Gmail data to third parties except (a) as necessary to provide or improve user-facing features that are prominent in the App’s user interface, (b) to comply with applicable law, or (c) as part of a merger, acquisition, or asset sale with notice to users.

4. AI-Powered Processing (Anthropic Claude)

Atlas Budgeting uses Anthropic’s Claude AI to help detect and parse subscription information from your email data. When you connect your Gmail account, limited metadata from subscription-related emails (sender name, subject line, and relevant billing excerpts) may be sent to Anthropic’s API for processing.

  • AI processing is used solely to identify subscription service names, billing amounts, billing frequency, and renewal dates from email content.
  • No full email bodies, personal messages, or attachments are sent to the AI service.
  • Anthropic does not use your data to train their AI models. Data sent to the API is processed in real-time and is not retained by Anthropic beyond the duration of the API request, in accordance with Anthropic’s Privacy Policy.
  • If you do not connect Gmail, no data is sent to Anthropic.

5. How We Use Your Information

We use the information we collect to:

  • Detect and display your active subscriptions, free trials, and upcoming charges.
  • Provide AI-powered spending insights, savings recommendations, and budget tracking.
  • Send push notifications for upcoming charges, trial expirations, price changes, and potential zombie subscriptions (with your explicit permission).
  • Generate weekly spending digests and analytics within the App.
  • Respond to your support requests and improve the App.
  • Comply with legal obligations.

We do not:

  • Sell your personal or financial data to third parties.
  • Use your data for advertising, marketing, or ad targeting.
  • Read, store, or share your personal (non-subscription) emails.
  • Share your subscription list with other users.

6. Data Sharing & Third-Party Services

We do not sell, rent, or trade your personal or financial data. We share information only with the following service providers, solely to operate the App:

  • Plaid Inc. - Bank account connectivity and read-only transaction retrieval.
  • Google (Gmail API) - Read-only email access for subscription detection, subject to Google’s Privacy Policy.
  • Anthropic (Claude AI) - AI processing of subscription email metadata for detection and parsing. Anthropic does not retain your data.
  • Supabase - Secure database hosting (PostgreSQL on AWS infrastructure with SOC 2 compliance) and authentication services.
  • Sentry - Crash reporting and error monitoring. No financial or email data is included.
  • RevenueCat - In-app subscription management. Only purchase receipt data is shared with RevenueCat.

We may also disclose information when required by law, to protect our rights, or to comply with a judicial proceeding or legal process.

7. Data Storage & Security

We take the security of your data seriously and employ industry-standard measures:

  • Encryption at rest: All stored data is encrypted using AES-256 encryption.
  • Encryption in transit: All network communications use TLS 1.2+ encryption.
  • Token security: Gmail OAuth tokens and Plaid access tokens are stored exclusively on the server side in an encrypted database table. These tokens are never accessible to the client application, never logged, and never exposed in API responses. The client only sees boolean flags (e.g., “bank connected: yes/no”).
  • Device security: Authentication session tokens are stored using the iOS Secure Enclave via expo-secure-store.
  • Access controls: All API endpoints validate JWT authentication and enforce per-user data isolation to prevent unauthorized access.

No method of electronic transmission or storage is 100% secure. We strive to use commercially acceptable means to protect your data but cannot guarantee absolute security.

8. Data Retention & Deletion

We retain your data for as long as your account is active. Upon account deletion (available in Settings → Delete Account):

  • Your account information, subscription data, transaction history, email scan results, and all associated tokens are permanently deleted within 30 days.
  • Gmail and bank connections are automatically revoked.
  • Anonymized, aggregated usage statistics (with no personal identifiers) may be retained for product improvement.
  • Records required for legal compliance may be retained for up to 7 years as required by applicable law.

9. Your Rights & Choices

You have the following rights regarding your data:

  • Access: Request a copy of the personal data we hold about you.
  • Deletion: Delete your account and all associated data at any time within the App or by contacting us.
  • Revoke Gmail access: Disconnect Gmail at any time via myaccount.google.com/permissions or within the App.
  • Revoke bank access: Disconnect your bank account within the App under Settings → Connected Accounts.
  • Notifications: Enable or disable specific notification types within the App at any time.
  • Data portability: Request an export of your data in a portable format.
  • Opt out: Opt out of non-essential data collection.

To exercise any of these rights, contact us at support@atlasbudgeting.com. We will respond within 30 days.

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: You may request that we disclose the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
  • No Sale of Data: We do not sell personal information as defined by the CCPA.

To exercise your CCPA rights, contact us at support@atlasbudgeting.com.

11. Children’s Privacy

Atlas Budgeting is not directed at individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will delete it promptly. If you believe a child under 13 has provided us with personal information, please contact us immediately.

12. International Data Transfers

Atlas Budgeting is operated from the United States. If you are located outside the United States, your information may be transferred to and processed in the United States. By using the App, you consent to such transfer and processing. We take appropriate safeguards to ensure your data is handled in accordance with this Privacy Policy.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy in the App, updating the “Last Updated” date above, and where appropriate, sending a push notification or email. Your continued use of the App after changes become effective constitutes acceptance of the revised policy.

14. Contact Us

If you have questions or concerns about this Privacy Policy or wish to exercise your rights, please contact us:

Atlas Budgeting
Email: support@atlasbudgeting.com
Website: atlasbudgeting.com