MallitLabs

Privacy Policy for Spending Smarter

Last updated: November 25, 2024

Introduction

Mallit Labs ("we," "our," or "us") operates the Spending Smarter mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App.

By using Spending Smarter, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not use the App.

Information We Collect

Personal Information

When you register for and use Spending Smarter, we collect the following personal information:

  • Account Information: Email address, password (encrypted), and display name
  • Household Information: Household name, spending limits, and household codes for family sharing
  • Financial Data: Spending records including amounts, categories, descriptions, and dates
  • Budget Information: Personal and household budget names and limits

Usage Data

We automatically collect certain information when you use the App:

  • Device information (device type, operating system version)
  • App usage statistics and crash reports
  • Log data including IP addresses and timestamps

AI-Powered Features

When you use our premium AI Insights feature:

  • Your spending data is sent to third-party AI service providers (currently Grok AI by xAI) to generate personalized insights
  • This data is transmitted securely and is not stored permanently by the AI provider
  • AI providers process data according to their own privacy policies

How We Use Your Information

We use the collected information for the following purposes:

  • Core Functionality: To provide spending tracking, budget management, and household sharing features
  • Account Management: To create and manage your account, authenticate users, and enable household connections
  • AI Insights: To generate personalized spending insights and category suggestions (Premium feature)
  • Service Improvement: To analyze usage patterns, fix bugs, and improve App performance
  • Customer Support: To respond to your inquiries and provide technical assistance
  • Legal Compliance: To comply with legal obligations and enforce our Terms of Service

Data Storage and Security

Data Storage

Your data is stored securely in Microsoft Azure SQL Database with the following protections:

  • Industry-standard encryption in transit (TLS/SSL)
  • Encrypted storage at rest
  • Regular automated backups
  • Access controls and authentication

Security Measures

We implement appropriate technical and organizational measures to protect your data:

  • Password encryption using BCrypt hashing
  • JWT token-based authentication
  • Secure API communications (HTTPS)
  • Regular security audits and updates

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security.

Data Sharing and Disclosure

Household Sharing

When you join a household, your spending data becomes visible to other members of that household. This is a core feature of the App and necessary for family budget management.

Third-Party Services

We share data with the following third-party service providers:

  • Microsoft Azure: Cloud hosting and database services
  • xAI (Grok): AI-powered spending insights (Premium feature only)
  • Apple App Store / Google Play: In-app purchase processing

These service providers are contractually obligated to protect your data and use it only for the purposes we specify.

Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, subpoenas).

Business Transfers

If Mallit Labs is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

Your Data Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data (subject to legal retention requirements)
  • Data Portability: Request your data in a machine-readable format
  • Opt-Out: Disable AI Insights to prevent data sharing with AI providers

To exercise these rights, please contact us at the email address provided below.

Account Deletion

You can delete your account at any time through the App's Settings page. Account deletion will:

  • Permanently delete your account and personal information
  • Remove you from any households you've joined
  • Delete all your spending records and budgets
  • Cancel any active Premium subscriptions

Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to:

  • Comply with legal obligations
  • Resolve disputes
  • Enforce our agreements
  • Maintain business records

When you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal purposes.

Children's Privacy

Spending Smarter is not intended for children under the age of 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will delete such information.

International Data Transfers

Your information may be transferred to and maintained on servers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ. By using the App, you consent to the transfer of your information to the United States and other countries where our service providers operate.

Premium Subscription

Our Premium subscription ($0.99/month) is processed through:

  • Apple App Store: For iOS users - subject to Apple's privacy policy
  • Google Play: For Android users - subject to Google's privacy policy

We do not store your payment information. Subscription management is handled entirely by Apple or Google.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Sending an in-app notification or email for material changes

You are advised to review this Privacy Policy periodically for any changes. Changes are effective when posted.

Analytics and Cookies

The App may use third-party analytics services to help us understand how the App is used. Currently, we use:

  • Device analytics for crash reporting and performance monitoring
  • Usage statistics to improve features and user experience

We do not use cookies in the mobile app, but our website may use cookies for basic functionality.

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (Note: We do not sell personal information)
  • Right to non-discrimination for exercising your CCPA rights

To exercise these rights, contact us using the information below.

European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

  • Legal Basis: We process your data based on consent, contract performance, and legitimate interests
  • Data Protection Officer: Contact us for DPO information if required
  • Supervisory Authority: You have the right to lodge a complaint with your local data protection authority

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Mallit Labs
Email: privacy@mallitlabs.com
Website: https://mallitlabs.com/spending-smarter

For privacy-related inquiries, we will respond within 30 days.

Summary of Key Points

For your convenience, here are the key points of our privacy practices:

  • ✓ We collect only the data necessary to provide spending tracking and household budget management
  • ✓ Your financial data is encrypted and stored securely in Microsoft Azure
  • ✓ AI Insights (Premium) shares spending data with xAI for analysis
  • ✓ Household members can see each other's spending data
  • ✓ We do not sell your personal information
  • ✓ You can delete your account and data at any time
  • ✓ We comply with GDPR, CCPA, and other privacy regulations

Your privacy is important to us. We are committed to protecting your personal information and being transparent about our data practices.