Privacy Policy

Introduction

Welcome to DaysBack. We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our debt management application.

Information We Collect

Account Information

• Email address (for account creation and login)
• Password (encrypted and securely stored)
• Account creation date

Financial Data

• Debt details (name, balance, interest rate, minimum payment)
• Payment history and strike records
• Calculated savings (days reclaimed, cash saved)
• Pro/Free tier status

Usage Data

• Device type and browser information
• Login timestamps
• Feature usage patterns

How We Use Your Information

• Account Management: To create and maintain your account
• Service Delivery: To calculate and display your debt progress
• Data Sync: To sync your progress across devices
• Communication: To send important account updates and security notifications
• Improvement: To analyse usage patterns and improve our service
• Support: To respond to your questions and feedback

Data Security

We take your data security seriously and implement industry-standard measures:

• Encryption: All data is encrypted in transit (HTTPS/TLS) and at rest
• Authentication: Secure password hashing and email verification
• Database Security: Row-level security policies ensuring users can only access their own data
• Infrastructure: Hosted on Supabase with enterprise-grade security
• No Third-Party Access: We never sell or share your personal financial data

Data Sharing

We do NOT sell your personal information. We only share data in these limited circumstances:

• Service Providers: With Supabase (database hosting) and Vercel (application hosting) — both bound by strict privacy agreements
• Legal Requirements: When required by law or to protect our rights
• With Your Consent: When you explicitly authorise sharing

Your Rights

You have the right to:

• Access: Request a copy of your personal data
• Correction: Update or correct your information
• Deletion: Request deletion of your account and all associated data
• Export: Download your debt data in a portable format
• Opt-Out: Unsubscribe from non-essential communications

To exercise these rights, contact us through the Support page.

Cookies and Tracking

We use minimal cookies and local storage for:

• Session management (keeping you logged in)
• Saving your preferences
• Analytics to improve the app (anonymised)

We do not use advertising cookies or sell your browsing data.

Data Retention

We retain your data for as long as your account is active. When you delete your account:

• Personal data is permanently deleted within 30 days
• Anonymised usage statistics may be retained for analytics
• Backup copies are purged within 90 days

Children's Privacy

DaysBack is not intended for users under 18 years of age. We do not knowingly collect data from children. If you believe a child has provided us with personal information, please contact us immediately.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes via email or through a prominent notice in the app. Continued use of DaysBack after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this privacy policy or how we handle your data, please contact us through the Support page.