Notyfi

Privacy Policy

Last updated: June 28, 2026

1. Introduction

Notyfi ("we," "our," or "us") is a personal AI-powered financial management application. This Privacy Policy explains how we collect, use, store, and protect your information when you use Notyfi at notyfi.ai.

By using Notyfi, you agree to the practices described in this policy. If you do not agree, please do not use the application.

2. Information We Collect

Financial Data (via Plaid)

We connect to your financial institutions through Plaid, a third-party financial data provider. When you link an account, Plaid provides us with:

  • Transaction history (merchant name, amount, date, category)
  • Account balances
  • Account and routing numbers (for verification only)
  • Institution name and account type

Data You Provide

  • Budget amounts you set per category
  • Savings goals you create
  • Messages you send to the AI chat assistant
  • Manually entered transactions or notes

Account Information

  • Email address
  • Password (stored encrypted, never in plaintext)

3. How We Use Your Information

  • To display your transactions, budgets, and spending analytics
  • To categorize transactions automatically using AI
  • To respond to your questions in the AI chat
  • To track progress toward your savings goals
  • To generate spending insights and anomaly alerts
  • To improve the accuracy of financial categorization

We do not sell, rent, or share your financial data with third parties for advertising or marketing purposes.

4. How We Share Your Information

Plaid

Your bank connection is facilitated by Plaid. Plaid's own privacy policy governs their collection and use of your data. You can review it at plaid.com/legal/privacy-policy.

Anthropic (AI)

Your chat messages are processed by Anthropic's Claude API to generate responses. Messages may include context about your budget and spending. Anthropic's privacy policy applies to this processing.

Infrastructure

Your data is stored securely on Supabase (PostgreSQL database) and served via Vercel. Both providers maintain SOC 2 compliance and encrypt data at rest and in transit.

5. Data Security

  • All data is transmitted over HTTPS/TLS 1.2 or higher
  • All data is encrypted at rest using AES-256
  • API keys and secrets are stored as environment variables, never in source code
  • Plaid access tokens are stored securely and never exposed to the client
  • Passwords are hashed and never stored in plaintext

6. Data Retention

We retain your data for as long as your account is active. If you delete your account, your data will be permanently removed from our systems within 30 days. Plaid access tokens are revoked immediately upon account deletion.

7. Your Rights

You have the right to:

  • Access all data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and all associated data
  • Disconnect any linked financial institution at any time
  • Export your transaction and budget data

To exercise any of these rights, email us at solo.samu9@gmail.com.

8. Children's Privacy

Notyfi is not intended for users under 18 years of age. We do not knowingly collect data from minors.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page with an updated date. Continued use of Notyfi after changes constitutes acceptance of the updated policy.

10. Contact

If you have questions or concerns about this Privacy Policy, please contact us at:

Notyfi
Email: solo.samu9@gmail.com
Website: notyfi.ai

© 2026 Notyfi. All rights reserved.