← Back to Home

Privacy Policy

Last Updated: December 6, 2024

At DuoDime, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our budgeting application and services.

1. Information We Collect

Personal Information

We collect information that you provide directly to us, including:

  • Account Information: Name, email address, phone number, and password when you create an account
  • Profile Information: Any additional information you choose to provide in your user profile
  • Communication Data: Information you provide when you contact our support team or communicate with us

Financial Information

Through our integration with Plaid, a trusted third-party service provider, we collect:

  • Bank Account Information: Account balances, transaction history, and account details from financial institutions you choose to connect
  • Transaction Data: Details about your income, expenses, and financial transactions
  • Investment Information: Investment account balances and holdings, if you choose to connect investment accounts

Important: We never see or store your banking credentials. When you connect a financial account, you provide your login information directly to Plaid through a secure connection. Plaid tokenizes this information and provides us with read-only access to your financial data.

Automatically Collected Information

When you use our service, we automatically collect:

  • Device Information: Device type, operating system, unique device identifiers
  • Usage Data: Features you use, actions you take, and time spent in the app
  • Log Data: IP address, browser type, access times, and pages viewed

2. How We Use Your Information

We use the information we collect to:

  • Provide Our Services: Enable you to track your finances, create budgets, set goals, and access all features of DuoDime
  • Process Transactions: Categorize and analyze your financial transactions automatically
  • Personalize Your Experience: Provide personalized insights, recommendations, and financial guidance
  • Facilitate Partner Features: Enable you to share financial information and collaborate with your partner within the app
  • Communicate With You: Send you service-related notifications, updates, security alerts, and customer support messages
  • Improve Our Services: Analyze usage patterns to enhance features and develop new functionality
  • Ensure Security: Detect, prevent, and address fraud, security issues, and technical problems
  • Comply With Legal Obligations: Meet regulatory requirements and enforce our terms of service

3. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

With Your Partner

When you invite a partner to join DuoDime and they accept, you can choose to share specific financial accounts, budgets, goals, and transaction data with them. You control what information is shared and can modify sharing settings at any time.

Service Providers

We work with trusted third-party service providers who help us operate our business:

  • Plaid: Securely connects your financial accounts and retrieves transaction data. Plaid's privacy policy can be found at plaid.com/legal
  • Firebase (Google): Provides secure authentication, database storage, and hosting services. Firebase's privacy policy can be found at firebase.google.com/support/privacy
  • Payment Processors: Process subscription payments securely
  • Analytics Providers: Help us understand how users interact with our service
  • Customer Support Tools: Enable us to provide support and respond to your inquiries

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

Legal Requirements

We may disclose your information if required by law or in response to valid requests by public authorities, including to:

  • Comply with legal obligations, court orders, or government requests
  • Protect the rights, property, or safety of DuoDime, our users, or the public
  • Detect, prevent, or address fraud, security, or technical issues
  • Enforce our terms of service and other agreements

Business Transfers

If DuoDime is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice in our service of any change in ownership or use of your personal information.

4. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: All data transmitted between your device and our servers is encrypted using 256-bit SSL/TLS encryption
  • Secure Storage: Your data is stored in Firebase's secure cloud infrastructure with encryption at rest
  • Authentication: We use secure authentication mechanisms and never store your banking credentials
  • Access Controls: Strict internal access controls limit who can access user data
  • Regular Security Audits: We regularly review and update our security practices
  • Plaid Security: Financial data connections are secured through Plaid's bank-level security infrastructure

While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but continuously work to maintain the highest security standards.

5. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy. Specifically:

  • Account Data: Retained while your account is active and for a reasonable period after account closure for legal and business purposes
  • Transaction Data: Retained to provide historical financial insights and comply with financial record-keeping requirements
  • Usage Data: Generally retained for a shorter period unless needed for security, legal compliance, or service improvement

You can request deletion of your data at any time by contacting us at [email protected]. Some information may be retained in our backup systems for a limited time or as required by law.

6. Your Privacy Rights

You have the following rights regarding your personal information:

Access and Portability

You can access your personal information through your account settings. You may also request a copy of your data in a portable format.

Correction

You can update or correct your account information at any time through the app settings.

Deletion

You can request deletion of your account and associated data. Some information may be retained as required by law or for legitimate business purposes.

Opt-Out

You can opt out of promotional communications by following the unsubscribe instructions in those messages or updating your notification preferences in the app.

Data Sharing Control

You can control what financial information you share with your partner and modify these settings at any time.

Disconnect Accounts

You can disconnect linked financial accounts at any time, which will stop the collection of new transaction data from those accounts.

To exercise any of these rights, please contact us at [email protected].

7. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information we collect, use, and disclose
  • Right to request deletion of your personal information
  • Right to opt-out of the sale of your personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your privacy rights

To exercise these rights, please contact us at [email protected] with "California Privacy Rights" in the subject line.

8. International Data Transfers

DuoDime is based in the United States. If you access our service from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate.

By using our service, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection laws.

9. Children's Privacy

DuoDime is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If we learn that we have collected personal information from a child under 18, we will delete that information promptly. If you believe we have collected information from a child under 18, please contact us at [email protected].

10. Third-Party Links

Our service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will:

  • Update the "Last Updated" date at the top of this policy
  • Notify you via email or through a prominent notice in the app for material changes
  • Obtain your consent if required by applicable law

We encourage you to review this Privacy Policy periodically. Your continued use of DuoDime after changes are posted constitutes your acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: [email protected]
Mail: DuoDime Privacy Team
[Company Address]

We will respond to your inquiry within a reasonable timeframe.

13. Additional Information About Our Data Practices

Plaid Integration

DuoDime uses Plaid Technologies, Inc. ("Plaid") to gather your data from financial institutions. By using our service, you grant DuoDime and Plaid the right, power, and authority to act on your behalf to access and transmit your personal and financial information from your relevant financial institution.

Firebase Security

We use Google Firebase for secure data storage, authentication, and hosting. Firebase provides:

  • Secure, encrypted data storage with automatic backups
  • Multi-factor authentication support
  • Real-time security monitoring
  • Compliance with SOC 2, ISO 27001, and other security standards

Data Minimization

We practice data minimization by only collecting information necessary to provide our services. You can control what accounts you connect and what information you share with your partner.