FinPilot

Security & Trust

Privacy Policy

Last Updated: October 24, 2023. At FinPilot, we treat your data like our own money—with extreme care and maximum security.

1. Introduction

FinPilot (“we”, “our”, “us”) respects your privacy and is committed to protecting your personal data in accordance with the Digital Personal Data Protection Act, 2023 (India). This Privacy Policy explains how we collect, use, store, and protect your data when you use the FinPilot website or application (“Finpilot”).

lightbulb Privacy Note (Plain English)

Basically, we only collect what we need to help you manage your money. We don't sell your data to advertisers, and we never will. Your trust is our most valuable asset.

2. Data We Collect

We collect only data necessary to provide our services.
a) Personal Data (Voluntarily Provided) Name Email address Phone number
b) Financial Data (User-Provided or Permission-Based) Income, expenses, budgets, goals Transaction details entered manually by the user
c) SMS Data (With Explicit Consent) To enable automatic transaction tracking, FinPilot may request access to SMS messages strictly limited to financial and transactional messages, such as: Bank alerts UPI confirmations Card transaction messages
📌 Important: We do not read personal messages We do not access OTPs, personal chats, or non-financial SMS SMS data is processed only on the device or securely, solely to identify transaction information You can deny or revoke SMS access at any time from your device settings. SMS Access & Google Play Compliance FinPilot’s use of SMS data fully complies with Google Play Developer Policies. SMS access is requested only for transaction tracking features explicitly initiated by the user. The app does not use SMS data for any other purpose and does not retain data beyond what is necessary to deliver the service.
d) Technical & Usage Data Device information App usage data IP address (for security and fraud prevention)

  • check_circle
    Account Information: Name, email address, and authentication credentials.
  • check_circle
    Financial Data: Transaction history, balances, and account types from linked financial institutions.
  • check_circle
    Usage Data: How you interact with our app features and settings.
verified_user

3. Security Measures

Security isn't an afterthought at FinPilot—it's our foundation. We use industry-leading protocols to ensure your data stays private.

lock

AES-256 Encryption

All data is encrypted at rest and in transit using bank-grade 256-bit encryption.

cloud_done

SOC2 Compliant

Our infrastructure undergoes regular third-party audits to ensure maximum compliance.

fingerprint

Biometric Auth

Support for FaceID and Fingerprint scanning on mobile devices.

visibility_off

Privacy First

Our employees cannot view your individual transaction data without explicit authorization.

4. Data Sharing

We may share limited data only: With trusted service providers (cloud, analytics) When required by law or regulatory authorities 🚫 We do not sell or rent personal or financial data.

link

Service Providers

We use partners like Plaid to securely connect to your bank accounts. They are bound by strict privacy rules.

gavel

Legal Requirements

We may disclose information if required by law or a valid court order.

5. Your Rights

You have total control over your information. We provide tools for you to exercise your rights: