Privacy Policy

Last updated: [DATE — fill in before publishing]

[COMPANY NAME] ("we", "us") operates ExpenseBud, a tool that lets companies track employee spend on credit cards employees already hold. This page explains what data we collect, why, and how it's protected.

What we collect

  • Account info: name, work email, company name, role (admin/employee).
  • Transaction data from cards you choose to connect via Plaid: date, amount, merchant name, and category — never full card numbers or online banking credentials. Plaid handles credential entry directly with your bank; we never see or store your bank username or password.
  • Receipts you choose to upload and attach to a transaction.

How we use it

Solely to provide the expense-tracking service to the company you work for: showing spend by employee and category, letting admins categorize and report on it. We do not sell data or use it for advertising.

How it's protected

  • Bank connection tokens are encrypted at rest (AES-256-GCM) and never logged.
  • Every company's data is isolated at the database level (Postgres row-level security), enforced independently of application code.
  • All traffic is encrypted in transit (HTTPS/TLS).
  • Access within a company is scoped by role — employees see only their own spend; admins see their company's data, never another company's.

Data retention & deletion

Data is retained for as long as your company's account is active. Disconnecting a card revokes our access to new transactions immediately; historical data can be deleted on request by contacting us below.

Third parties

We use Plaid Inc. to connect to your bank/card issuer. Plaid's own privacy policy governs its handling of your credentials during that connection — see plaid.com/legal.

Contact

Questions about this policy: [CONTACT EMAIL]