Privacy Policy
Last updated: [DATE — fill in before publishing]
[COMPANY NAME] ("we", "us") operates ExpenseBud, a tool that lets companies track employee spend on credit cards employees already hold. This page explains what data we collect, why, and how it's protected.
What we collect
- Account info: name, work email, company name, role (admin/employee).
- Transaction data from cards you choose to connect via Plaid: date, amount, merchant name, and category — never full card numbers or online banking credentials. Plaid handles credential entry directly with your bank; we never see or store your bank username or password.
- Receipts you choose to upload and attach to a transaction.
How we use it
Solely to provide the expense-tracking service to the company you work for: showing spend by employee and category, letting admins categorize and report on it. We do not sell data or use it for advertising.
How it's protected
- Bank connection tokens are encrypted at rest (AES-256-GCM) and never logged.
- Every company's data is isolated at the database level (Postgres row-level security), enforced independently of application code.
- All traffic is encrypted in transit (HTTPS/TLS).
- Access within a company is scoped by role — employees see only their own spend; admins see their company's data, never another company's.
Data retention & deletion
Data is retained for as long as your company's account is active. Disconnecting a card revokes our access to new transactions immediately; historical data can be deleted on request by contacting us below.
Third parties
We use Plaid Inc. to connect to your bank/card issuer. Plaid's own privacy policy governs its handling of your credentials during that connection — see plaid.com/legal.
Contact
Questions about this policy: [CONTACT EMAIL]