Privacy Policy

Last Updated: 22 April 2026

Introduction

Welcome to Finzim ("we," "our," or "us"). We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we handle your information when you use our financial management application. We operate in compliance with applicable privacy laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and Indonesian Personal Data Protection Law No. 27 of 2022.

Information We Collect

1. Information You Provide

  • Personal Information: Email address (for Premium users)
  • Financial Data: Your income, expenses, transfers, and debt records
  • Media Content: Photos you upload as transaction proof
  • Notes and Categories: Transaction descriptions and categorizations
  • Family Data: Family member connections (for FinzimFam users)

2. Automatically Collected Information

  • Device Information: Device type, operating system
  • App Usage Data: How you interact with our app
  • Advertisement ID (Free version only)

How We Use Your Information

Free Version Users

  • To provide basic financial management features
  • To display relevant advertisements
  • To improve app functionality and user experience
  • To maintain app security

Premium Version Users

  • To provide email authentication and OTP verification
  • To sync and backup your data across devices
  • To enable FinzimFam features
  • To provide ad-free experience
  • To enable custom categories and unlimited pockets

Aggregated Financial Data Processing

We may aggregate and anonymize your financial transaction data (such as spending categories, transaction amounts, and merchant types) to create market insights, trends, and statistical reports.

  • Aggregated Data Sale: We may sell, license, or share this aggregated and anonymized data with third parties for commercial purposes.
  • No PII Sale: We NEVER sell your Personally Identifiable Information (PII) such as your name, email address, password, date of birth, or specific transaction records linked to your identity.
  • Opt-Out (CCPA/General): You may opt-out of data aggregation by contacting us or adjusting your app settings where available.

Data Storage and Security

  • Free Version: Data is stored locally on your device
  • Premium Version: Data is encrypted and stored on our secure servers
  • We implement appropriate security measures to protect your data

Data Sharing

We DO NOT:

  • Sell your personal information
  • Share your financial records with advertisers or data brokers
  • Use your data for purposes other than providing our services

We may share data:

  • Between family members (only with FinzimFam feature and your consent)
  • With service providers who assist in app operations
  • With third-party AI processors for specific opt-in features — see "Third-Party AI Processors" below
  • If required by law or legal process

Third-Party AI Processors

When you choose to use our AI-assisted features, specific pieces of input data are sent to third-party AI providers for processing. We ask for your explicit in-app consent before any data is sent. If you do not use these features, no data is shared with these providers.

Voice Input — Groq Inc. (United States)

  • Data sent: the audio recording you create when you tap "Voice Input" in the app.
  • Purpose: speech-to-text transcription and extraction of transaction fields (amount, category, date).
  • Retention: processed transiently; Groq acts solely as a data processor and does not use this data to train its foundation models.
  • Provider privacy policy: groq.com/privacy-policy

Scan Receipt & Split Bill — Google LLC, Gemini API (United States)

  • Data sent: the photo of the receipt or bill you capture when you use "Scan Receipt" or "Split Bill" (autoScan).
  • Purpose: extract merchant, date, total, and line items for transaction entry or bill-splitting.
  • Retention: processed under Google Cloud's generative AI data governance; Google acts solely as a data processor and does not use this data to train its foundation models.
  • Provider privacy policy: cloud.google.com — Vertex AI data governance

Scan Receipt & Split Bill — Anthropic, PBC, Claude API (United States)

  • Data sent: the same receipt/bill image as above; used as a fallback AI model when Gemini is unavailable.
  • Purpose: extract merchant, date, total, and line items.
  • Retention: Anthropic acts solely as a data processor and does not use customer data to train its foundation models.
  • Provider privacy policy: anthropic.com/legal/privacy

These providers are contractually bound to protect your data to the same or equivalent standard described in this policy. Processing occurs only after you grant explicit in-app consent.

Advertisements

  • Free version users will see advertisements
  • We use third-party ad providers who may collect basic device information
  • Premium users will not see advertisements

Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and data
  • Opt-out of email communications
  • Request data portability (Premium users)

Children's Privacy

We do not knowingly collect information from children under 13 without parental consent. Parents can manage their children's data through FinzimFam features.

Regional Compliance

Europe (GDPR)

  • Legal Basis: We process your data based on your consent, contractual necessity, and our legitimate interest in improving our services.
  • Data Controller: Byacode Labs (support@byacode-labs.com).
  • Complaints: You have the right to lodge a complaint with your local data protection authority.

United States (California - CCPA/CPRA)

  • Right to Opt-Out of Sale: You have the right to direct us not to sell your personal information. We only sell anonymized data, but you may contact us to ensure your data is excluded from aggregation.
  • Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

Indonesia (PDP Law)

  • Cross-Border Transfer: By using Finzim, you acknowledge that your data may be processed and stored on secure servers outside of Indonesia (e.g., Google Cloud Platform) in compliance with Law No. 27 of 2022.

Data Retention and Deletion

  • Free Version: Data remains on device until app uninstallation.
  • Premium Version: Data retained until account deletion request.
  • Account Deletion Request: Email support@byacode-labs.com with subject line "DELETE ACCOUNT". We will process your request within 30 days.

Changes to Privacy Policy

We may update this privacy policy periodically. Users will be notified of significant changes through the app or email.

Contact Us

If you have questions about this privacy policy or your data, contact us at: support@byacode-labs.com

Consent

By using Finzim, you consent to this privacy policy and our data practices.

Questions? support@byacode-labs.com