Privacy Policy for FinVault AI

Last Updated: 20/Feb/2026

FinVault AI (“we,” “us,” or “our”) is committed to protecting your privacy and ensuring the security of your financial and personal data. This Privacy Policy explains how we collect, use, process, and safeguard your information when you use the FinVault AI mobile application (“App”).

By using FinVault AI, you agree to the practices described in this Privacy Policy.

1. Information We Collect and Use

To provide AI-powered expense tracking and secure vault services, FinVault AI collects the following types of information:

• SMS Data (Financial Transactions)

With your explicit consent, FinVault AI scans incoming SMS messages on your device to identify financial transaction alerts (such as bank, UPI, or card notifications).
Our AI engine filters only transactional messages to automatically:

• Detect expenses

• Categorize spending

• Update budgets and analytics

We do NOT read, store, upload, or access your personal or private conversations.

• Personal Documents (Secure Vault)

When you upload documents to the Secure Vault:

• Files are encrypted locally using AES-256 encryption before upload

• Encrypted files are stored securely in the cloud

• Decryption happens only on your device after authentication

Even we cannot access or read your encrypted vault documents.

• Financial Data

We collect and store financial-related data such as:

• Budget settings

• Categories

• Auto-detected transactions

• Manually added transactions

• Analytics and insights data

This data is used solely to provide core app functionality.

• Authentication Data

We use secure authentication services (such as Firebase Authentication) to:

• Protect user accounts

• Enable secure login/signup

• Prevent unauthorized access

We do not store your passwords in plain text.

2. How We Use Your Data

We use collected information strictly for the following purposes:

• To automate expense tracking using financial SMS alerts

• To provide AI-powered financial insights and analytics

• To enable secure encrypted document storage (Vault)

• To generate financial reports and exports

• To improve app performance, accuracy, and user experience

• To ensure security and fraud detection features

We do NOT use your data for advertising profiling or selling purposes.

3. Data Storage and Security

Security is a core priority at FinVault AI.

• Encryption

• Vault documents are protected using AES-256 encryption

• Sensitive data is securely encrypted during storage and transmission

• Cloud Infrastructure

We use secure cloud infrastructure powered by Google Firebase (Google Cloud Platform) for:

• Authentication

• Secure storage

• Database services

• Local Processing

Most SMS parsing and expense categorization is processed on-device to minimize data exposure and enhance privacy.

• No Data Selling

We do NOT sell, rent, trade, or share your personal, financial, or SMS data with third parties for marketing or advertising purposes.

4. Permissions Disclosure

FinVault AI requests certain permissions to function properly:

• RECEIVE_SMS / READ_SMS

Used strictly to detect financial transaction alerts for automated expense tracking and budgeting.
We do not read personal messages unrelated to financial transactions.

• CAMERA / GALLERY

Used only when you choose to upload documents into the Secure Vault.

• STORAGE / FILE ACCESS

Required to:

• Save encrypted vault documents

• Export financial reports or ledger files to your device

All permissions are used only for core app features and with user consent.

5. Data Retention and User Control

• User Data Control

You have full control over your data. You can:

• Delete transaction history

• Remove individual vault documents

• Clear all app data anytime from settings

• Vault Reset Policy

If you forget your Vault PIN/password, a full vault reset is required.
This will permanently delete all encrypted documents to ensure maximum security and prevent unauthorized access.

• Account Deletion

You may request full account deletion via:

• App Settings, or

• Contacting us via email

Upon deletion request, all associated data will be permanently removed from our servers in accordance with applicable laws.

6. Third-Party Services

FinVault AI uses trusted third-party services including:

• Firebase (Google) for authentication and backend infrastructure

These services may collect limited technical information as per their own privacy policies.
We recommend reviewing Firebase’s privacy policy for more details.

7. Children’s Privacy

FinVault AI is not intended for children under the age of 13.
We do not knowingly collect personal information from children.
If we discover that a child has provided personal data, we will take immediate steps to delete such information.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

• Feature updates

• Legal requirements

• Security improvements

Users are advised to review this page periodically. Continued use of the app after updates constitutes acceptance of the revised policy.

9. Contact Us

If you have any questions, concerns, or suggestions regarding this Privacy Policy or your data privacy, please contact us:

App Name: FinVault AI
Email: contact@blackbulltechnologies.in