Back to Home

Privacy Policy

baguette — Financial Wellness App

Last updated: December 2025 · Version 1.0

Data about where you spend your money reveals a lot about your life—your habits, your priorities, your circumstances. We believe this data deserves the same protection you'd want for any sensitive personal information.

Privacy isn't a feature we added—it's foundational to how we built this app. We designed baguette to give you clarity about your finances while keeping your data secure and under your control.

We will never sell your financial data. Period.

1. Who We Are

Data Controller:

baguette

Berlin, Germany

Contact for Privacy Inquiries:

Email: [email protected]

Subject line: "Privacy Inquiry"

We are committed to complying with the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and all applicable data protection laws.

2. Definitions

To help you understand this policy, here are some key terms:

Term Definition
Personal Data Any information that can identify you directly or indirectly
Transaction A record of money spent or received that you log in the app
Category/Budget A grouping you assign to transactions (e.g., "Food & Dining")
Processing Any operation performed on personal data (collecting, storing, using, deleting)
Data Controller The entity that decides why and how personal data is processed (us)
Data Processor A third party that processes data on our behalf

3. What Data We Collect

We collect data from three sources:

3.1 Data You Provide Directly

When you create an account and use the Service:

  • Account Information: Name, email address, password (stored only as a secure hash)
  • Transaction Data: The text you type to log transactions, parsed amounts, descriptions, dates, and categories you confirm
  • Preferences: Your budget categories, display preferences, notification settings
  • Communications: Messages you send to our support team

3.2 Data We Generate

As you use the Service, we create:

  • Parsed Transaction Data: Structured data extracted from your natural language input
  • Classification Data: AI-generated category suggestions and confidence scores
  • Insights: Patterns and summaries derived from your transaction history

3.3 Data Collected Automatically

When you access the Service:

  • Device Information: Device type, operating system, browser type, app version
  • Usage Data: Features used, screens viewed, actions taken (anonymized)
  • Log Data: IP address, access times, error logs
  • Cookies: Session cookies required for the Service to function (see Section 11)

4. How We Use Your Data

We process your personal data for specific purposes, each with a legal basis under GDPR:

4.1 Account Creation and Management

Purpose: Create your account, authenticate you, manage your profile

Data: Name, email, hashed password, account dates

Legal Basis: Contract performance (Art. 6(1)(b) GDPR)

Retention: Until account deletion or 3 years of inactivity

4.2 Transaction Tracking (Core Service)

Purpose: Parse your natural language input, store financial records, display history

Data: Transaction input, amount, currency, description, category, date

Legal Basis: Contract performance (Art. 6(1)(b) GDPR)

Retention: Until deletion or 3 years of inactivity

4.3 AI-Powered Classification

Purpose: Suggest categories, learn from confirmations to improve suggestions

Data: Transaction descriptions, confirmed categories, confidence scores

Legal Basis: Contract performance & Legitimate interest (Art. 6(1)(b) & (f) GDPR)

4.4 Service Improvement and Analytics

Purpose: Understand usage, identify bugs, improve classification, develop features

Data: Anonymized/pseudonymized usage patterns, accuracy metrics, error logs

Legal Basis: Legitimate interest (Art. 6(1)(f) GDPR)

Retention: Anonymized: indefinitely; Pseudonymized: 13 months; Error logs: 90 days

4.5 Security and Fraud Prevention

Purpose: Protect accounts, detect fraud, investigate security incidents

Data: IP addresses, login attempts, device fingerprints, access logs

Legal Basis: Legitimate interest (Art. 6(1)(f) GDPR)

Retention: 1 year

5. AI and Automated Decision-Making

5.1 How We Use AI

baguette uses artificial intelligence to:

  1. Parse your input: When you type "coffee at starbucks 4.50," AI extracts the amount (€4.50), description, and suggests a category
  2. Suggest categories: Based on your input and history of confirmed transactions
  3. Learn your preferences: When you confirm or change a suggestion, the system learns to make better suggestions

5.2 Your Control Over AI Decisions

AI suggestions are never final without your confirmation. You always have the ability to accept, change, edit, or delete any transaction. We do not make decisions that produce legal or similarly significant effects based solely on automated processing.

6. Who We Share Your Data With

We Do Not Sell Your Data

We will never sell, rent, or trade your personal data to third parties for their marketing purposes.

6.1 Service Providers (Data Processors)

We use carefully selected third-party service providers. These providers only process data on our instructions and are bound by data processing agreements.

Provider Purpose Location
Railway Application hosting EU
Vercel Frontend hosting & CDN EU/Global
Neon Database hosting EU
Clerk Authentication & account management EU
Microsoft Clarity Analytics & session replay EU/US
Grafana Cloud Metrics & observability EU
Resend Transactional emails US

All providers handling data outside the EU operate under appropriate transfer mechanisms (see Section 8).

7. Data Retention

We retain your data only as long as necessary:

Data Type Retention Period
Account & transaction data Until deletion or 3 years of inactivity
Connection logs / IP 1 year
Usage analytics 13 months (pseudonymized)
Support tickets 3 years
Marketing consent records Until withdrawal + 3 years

Before automatic deletion: We will send you a reminder email 30 days before deletion and give you the option to export your data.

8. International Data Transfers

Your personal data is stored on servers located in the European Union (via Neon for database and Railway for application hosting).

Some of our service providers (such as Resend for email and Microsoft Clarity for analytics) may process data outside the EEA. When this occurs, we ensure appropriate safeguards:

  • EU Adequacy Decisions: For countries deemed adequate by the EU
  • Standard Contractual Clauses (SCCs): EU-approved contracts for US transfers
  • Additional Safeguards: Encryption and pseudonymization where required

You can request a copy of the safeguards we use by contacting [email protected].

9. Your Rights

Under the GDPR, you have the following rights:

  • Right of Access (Art. 15): Request a copy of all personal data we hold about you
  • Right to Rectification (Art. 16): Correct any inaccurate personal data
  • Right to Erasure (Art. 17): Request deletion of your personal data ("right to be forgotten")
  • Right to Restriction (Art. 18): Limit how we use your data
  • Right to Data Portability (Art. 20): Receive your data in a machine-readable format (JSON or CSV)
  • Right to Object (Art. 21): Object to processing based on legitimate interest

How to Exercise Your Rights

In the app: Profile editing, data export, account deletion

By email: [email protected]

Response time: Within 1 month (extendable by 2 months for complex requests)

Right to Lodge a Complaint

If you believe we have violated your data protection rights, you can lodge a complaint with:

Berliner Beauftragte für Datenschutz und Informationsfreiheit

(Berlin Data Protection Authority)

We encourage you to contact us first so we can try to resolve your concern.

10. Data Security

Technical Measures

  • Encryption at rest: All data is encrypted in the database
  • Encryption in transit: All connections use TLS 1.3
  • Password security: Hashed using industry-standard algorithms (never stored in plain text)
  • Access controls: Role-based access limits who can view what data

Your Responsibilities

  • Use a strong, unique password
  • Don't share your login credentials
  • Log out on shared devices
  • Contact us immediately if you suspect unauthorized access

11. Cookies

We use minimal cookies necessary for the Service:

Type Purpose Legal Basis
Session cookies Keep you logged in Strictly necessary
Security cookies Prevent CSRF, detect fraud Strictly necessary

Microsoft Clarity may set analytics cookies to help us understand how the Service is used. You can manage cookie preferences through your browser settings.

12. Children's Privacy

baguette is intended for users who are at least 16 years old.

We do not knowingly collect personal data from children under 16. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at [email protected]. We will delete the data promptly.

13. Changes to This Policy

For material changes (processing purposes, data categories, your rights, data sharing): We will notify you by email at least 30 days before the changes take effect.

For minor changes (clarifications, formatting): We will update the "Last Updated" date.

14. Contact Us

If you have questions about this Privacy Policy or how we handle your data:

baguette

Berlin, Germany

Email: [email protected]

We aim to respond to all inquiries within 5 business days.

15. Legal Basis Summary

Legal Basis GDPR Article When Used
Contract Performance Art. 6(1)(b) Core service features
Legitimate Interest Art. 6(1)(f) Service improvement, security
Consent Art. 6(1)(a) Marketing emails, optional cookies
Legal Obligation Art. 6(1)(c) Legal requests, record-keeping

Thank you for trusting baguette with your financial data. We take this responsibility seriously.

Version 1.0 · Effective: December 2025