privacy policy
Last updated on Dec 07, 2025.
At OneFin, your privacy is our priority.
This Privacy Policy explains how we collect, use, protect, and share your information when you use our website, mobile app, and related services (collectively, the “Service”).
By using our Service, you agree to this Policy. If you don’t agree, please discontinue use.
1. Information We Collect
We collect information to provide, personalize, and improve your experience. This includes:
1.1. Personal Information
When you create an account, we may collect:
Full name
Email address
Password or authentication credentials
Billing or payment details (if applicable)
1.2. Financial Information
When you connect bank accounts, wallets, or cards, we may collect:
Account identifiers (e.g., last 4 digits, account names)
Transaction data (amounts, categories, timestamps)
Linked account balances
(We never store or view your full login credentials — integrations are handled securely via encrypted APIs.)
1.3. Usage & Device Data
We automatically collect:
Device type, operating system, and browser
IP address and approximate location
Log data such as access times and feature interactions
Cookies and similar technologies to improve user experience
2. How We Use Your Information
We use your information to:
Provide and operate the Service
Personalize your dashboard and insights
Process payments and subscriptions
Improve, troubleshoot, and enhance features
Send account updates, alerts, or support messages
Ensure platform security and fraud prevention
Comply with legal obligations
We never sell your data to advertisers or third parties.
3. Data Sharing & Third Parties
We may share limited information with:
Trusted service providers (e.g., payment processors, analytics tools, or integration partners)
Financial institutions you choose to connect
Regulatory or law enforcement authorities, when required by law
All third parties are required to maintain strict confidentiality and use data only for the intended purpose.
4. Data Security
We use bank-grade encryption (AES-256) and secure APIs to protect all financial data in transit and at rest. Other safeguards include:
Multi-factor authentication (2FA)
Regular system audits
Access controls for authorized personnel only
No digital service is 100% secure, but we continuously monitor and strengthen our systems to protect your information.
5. Your Rights
Depending on your region (e.g., GDPR or CCPA), you may:
Access a copy of your data
Request corrections or deletion
Withdraw consent for processing
Export your data in a portable format
To exercise your rights, contact privacy@onefin.email
6. Data Retention
We retain your data only as long as necessary:
To maintain your account and provide the Service
To comply with legal or regulatory requirements
To resolve disputes and enforce agreements
When your account is deleted, we remove or anonymize your personal data unless retention is required by law.
7. Third-Party Links
Our platform may contain links or integrations with other websites or apps (e.g., PayPal, Stripe, QuickBooks).
We are not responsible for their privacy practices — please review their policies separately.
