Privacy Policy

1. Introduction

Dupla takes your privacy seriously. This policy describes how we collect, use, and protect your personal information.

2. Information We Collect

We collect the following information:

• Account data: name, email, and password (encrypted)
• Financial data: transactions, accounts, cards, and spending estimates you record
• Payment data: processed by Stripe (we don't store card data)
• Usage data: how you interact with the application

3. How We Use Your Information

We use your information to:

• Provide and improve our services
• Process payments and manage subscriptions
• Send important communications about your account
• Protect against fraud and misuse

4. Data Sharing

We don't sell your data. We share information only with:

• Stripe: for payment processing
• Supabase: for secure data storage
• Your family members: only data you choose to share

5. Data Security

We protect your data through:

• Encryption in transit (HTTPS) and at rest
• Secure authentication with tokens
• Row-level security (RLS) policies in the database
• Continuous security monitoring

6. Your Rights

Under GDPR, you have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data
• Export your data
• Withdraw consent at any time

7. Data Retention

We retain your data while your account is active. After cancellation, your data is deleted within 30 days, except when needed for legal compliance.

8. Cookies

We use essential cookies for app functionality, such as authentication and session preferences. We don't use tracking cookies for advertising.

9. Changes to This Policy

We may update this policy periodically. We'll notify users about significant changes via email.

10. Contact

For privacy questions, contact us at: privacy@duplaapp.com