Privacy Policy

1. Who We Are

ClearFlow ("we," "us," "our") operates the ClearFlow budgeting application at clearflow.app. We are the data controller for personal information described here. Questions: privacy@clearflow.app or our Contact page.

2. Information We Collect

Information you provide directly

Data Type	What It Includes	Why We Collect It
Account information	Name, email address, password (hashed with bcrypt)	To create and authenticate your account
Household information	Household name, member names and emails	To enable shared budgeting
Budget data	Income, spending categories, amounts	To calculate and display your budget
Expense data	Amounts, dates, merchant names, categories	To track and report your spending

Information from bank connections

When you connect a bank through Teller.io or Plaid, we receive read-only transaction data: amounts, dates, merchant names, account names, types, and last four digits. We never receive or store your bank login credentials, full account numbers, or Social Security numbers.

Technical information

Log data (IP addresses, browser type, timestamps) for security; session tokens in httpOnly cookies; activity logs (sign-in events, password changes) for account security.

3. How We Use Your Information

• Providing the service — budget calculations, savings projections, transaction display, monthly reports
• Communications — mid-month summaries, month-end reports, verification codes, invitations
• Security — authentication, suspicious activity detection, account protection
• Legal compliance — responding to lawful requests, enforcing our Terms of Service

4. Third-Party Services

Service	Purpose	Data Shared
Teller.io	Bank connectivity and transaction import	Enrollment tokens; transaction data received in return
Plaid	Alternative bank connectivity (inactive by default)	Public tokens exchanged for access tokens
Brevo	Transactional email delivery	Email addresses, names, email content
Cloud hosting	Infrastructure	All application data, stored in the United States

We do not use advertising networks, social media tracking pixels, or third-party analytics. We do not sell your data.

5. Data Retention

• Active account data is retained while your account is active
• Monthly reports are retained indefinitely for historical reference
• Upon account deletion: all data is permanently and immediately deleted
• Two-factor codes expire after 10 minutes and cannot be reused
• Activity logs are retained for 12 months

6. Security

Passwords are hashed with bcrypt (cost 12). All connections use HTTPS/TLS. Bank connections use mutual TLS in production. Sessions are stored in httpOnly, Secure, SameSite=Lax cookies. Two-factor authentication is required at every sign-in. See our Security page for full details.

7. Your Rights

• Access — request a copy of your personal data
• Correction — update inaccurate data in your profile settings
• Deletion — cancel your account from the Profile panel to immediately delete all data
• Portability — request an export of your budget and expense data

Contact privacy@clearflow.app to exercise any of these rights.

8. California Privacy Rights (CCPA)

ClearFlow does not sell personal information. California residents may request to know, correct, or delete their personal information by contacting privacy@clearflow.app.

9. Children's Privacy

ClearFlow is not directed to anyone under 18. If you believe a minor has provided us information, contact privacy@clearflow.app and we will delete it immediately.

10. Cookies

We use one essential cookie: cf_token — an httpOnly authentication cookie required to keep you signed in, expiring after 30 days. We do not use advertising cookies, analytics cookies, or any third-party tracking technology.

11. Changes

Material changes will be communicated by email before they take effect. Continued use of ClearFlow after changes are posted constitutes acceptance.

12. Contact

privacy@clearflow.app  •  Contact form