Privacy Policy

Account information. Your name, email address, and a securely hashed password (we never store your password in plain text). If you sign in with Google, we receive your Google profile name, email, and avatar.

Financial information. When you link a bank through Plaid, we receive and store your transactions, account balances, masked account numbers (last four digits), and your bank’s name. You may also add accounts and transactions manually or by CSV import.

Preferences & usage. Your in-app settings (theme, notifications, and similar) and basic session metadata such as IP address and browser type, used to keep your account secure.

Cookies & analytics. A required cookie keeps you signed in. With your consent, we use privacy-friendly, anonymized analytics (Vercel) to understand performance. See “Cookies” below.

To provide and operate the budgeting service; to power AI features that categorize transactions and answer questions about your money; to secure your account and prevent fraud; and to send you transactional email such as password resets and, if enabled, your daily summary. We do not use your information for advertising.

We do not sell or share your personal information. We use the following service providers (“sub-processors”) to run Reckon, each receiving only the data needed for its function:

• Plaid — connects to your bank and supplies transactions, balances, and masked account numbers.
• Anthropic — powers the AI features (see “AI and your financial data”).
• Neon — hosts our database.
• Vercel — hosts the app and provides anonymized analytics.
• Resend — delivers our transactional email.
• Web push services (Google, Apple, Mozilla) — only if you turn on browser notifications; they deliver the notification and receive an anonymous device token, never your financial data.
• Google — only if you choose to sign in with Google.
• logo.dev — fetches merchant logos using only a merchant’s domain name (no personal data).

We may also disclose information if required by law or to protect our rights.

To categorize transactions and answer your questions, we send relevant transaction details (such as payee, amount, date, and your category history) to Anthropic’s API. Under Anthropic’s commercial API terms, this data is not used to train their models and is retained only briefly (generally deleted within 30 days). We never send your password or your bank credentials to Anthropic.

We use one required cookie to keep you signed in. Analytics are optional and load only after you accept them in the consent banner; you can decline and the analytics scripts will not run. Vercel’s analytics are cookieless and anonymized.

We keep your information for as long as your account is active. When you delete your account, we delete your data from our live systems immediately; residual copies in encrypted backups roll off within about 30 days. We keep a minimal record that a deletion occurred, which contains no personal or financial information.

You can access and correct your information in the app, export your data, and delete your account at any time from Settings → Account. If you are a California resident, the CCPA/CPRA give you the right to know what personal information we hold, to request its deletion, and to not be discriminated against for exercising these rights — and, because we do not sell or share personal information, there is nothing to opt out of. To make a request you cannot complete in the app, email privacy@reckon.jordanschnur.com.

We protect your data in transit with TLS, hash passwords, and encrypt your Plaid access tokens at rest using AES-256-GCM. No system is perfectly secure, but we work to protect your information.

Reckon is not directed to anyone under 18, and we do not knowingly collect information from children.

Reckon is operated in the United States and intended for U.S. residents. If we expand to other regions we will update this policy with the appropriate terms.

If we make material changes, we will update the date above and, where appropriate, ask you to review the policy again.

Questions or privacy requests: privacy@reckon.jordanschnur.com.