Privacy Policy

Last updated: January 30, 2026

1. Introduction

Welcome to Hisab Journey ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal and financial information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our personal finance dashboard application.

2. Information We Collect

2.1 Personal Information

  • Name and email address (for account creation)
  • Password (encrypted and never stored in plain text)
  • Profile preferences and settings

2.2 Financial Information (Manually Entered by You)

  • Transaction details (income, expenses, and transfers)
  • Bank account names you create (for organizational purposes only)
  • Category classifications
  • Recurring transaction templates and schedules
  • Budget settings and spending limits
  • Financial summaries and reports

No Bank Connection: All financial data is manually entered by you. We do NOT connect to or retrieve data from any bank or financial institution. Bank account names in the app are labels you create for organization and do not represent actual bank connections.

Encryption: All financial data is encrypted using AES-256-GCM encryption before storage. We cannot read your financial data in plain text, ensuring your sensitive information remains private and secure.

2.3 Payment Information

  • Subscription status and billing cycle
  • Payment transaction IDs (for reference purposes)
  • Payment method type (e.g., UPI, Card, Net Banking)

Payment Security: All payments are processed through Razorpay, India's leading PCI-DSS Level 1 compliant payment gateway. We do NOT store your credit/debit card numbers, CVV, UPI PIN, or bank login credentials. Razorpay handles all sensitive payment data directly.

2.4 Technical Information

  • Device information and browser type
  • IP address and location data
  • Usage patterns and analytics
  • Platform information (Web, iOS, Android)

2.5 Mobile App Data

When using our mobile apps (iOS and Android), we may additionally collect:

  • Device identifiers for app functionality
  • Push notification tokens (if you enable notifications)
  • Voice data for voice input feature (processed locally, not stored)
  • Camera access for receipt scanning (images processed locally)

Local Processing: Voice input and receipt scanning are processed on your device. We do not store audio recordings or receipt images on our servers.

3. How We Use Your Information

  • To provide and maintain our service
  • To authenticate your identity and secure your account
  • To process subscription payments through Razorpay
  • To manage your subscription status and billing
  • To generate financial reports and insights for you
  • To process and execute recurring transactions on your configured schedule
  • To send subscription and autopay renewal reminders via email and in-app notifications
  • To track budget progress, calculate spending against your limits, and send over-budget alerts
  • To generate smart spending insights and analysis
  • To improve our application and user experience
  • To send important service updates, payment receipts, and notifications

4. Data Security

We implement industry-leading security measures to protect your data:

  • AES-256-GCM Encryption: All financial data is encrypted at rest
  • HTTPS/TLS: All data transmission is encrypted in transit
  • JWT Authentication: Secure token-based authentication
  • Password Hashing: Passwords are hashed using bcrypt
  • App Lock: Optional 4 or 6 digit passcode protection on mobile devices
  • Rate Limiting: Protection against brute force attacks
  • Input Validation: Protection against injection attacks
  • Secure Media Access: Attachments and profile pictures are served through authenticated proxy endpoints

5. Data Sharing

We do NOT sell, trade, or rent your personal or financial information to third parties. We may share data only in the following circumstances:

  • With your explicit consent
  • To comply with legal obligations or court orders
  • To protect our rights and prevent fraud
  • With service providers who assist in operating our platform (under strict confidentiality agreements)
  • Payment Processing: With Razorpay for processing subscription payments (only email and payment amount are shared; your financial transaction data within the app is never shared)

6. Your Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Deletion: Request deletion of your account and data
  • Export: Download your data in a portable format
  • Withdraw Consent: Opt out of optional data processing

7. Automated Processing

We use automated systems to process certain features:

  • Recurring Transactions: Our system automatically creates transactions based on your configured recurring templates (weekly, monthly, quarterly, or yearly). You can pause or delete recurring transactions at any time.
  • Subscription & Autopay Reminders: For recurring expenses you mark as subscriptions or autopay, we send email and in-app notifications 10, 5, 3, and 1 days before each renewal date. These reminders use your subscription description and amount.
  • Budget Tracking & Alerts: We automatically calculate your spending against budget limits you set. If you exceed a category budget, we send an email and in-app notification with the category name, amount spent, and budget limit. No financial decisions are made on your behalf.

These automated processes only operate on data you have explicitly configured and do not involve any external data sharing or third-party processing.

8. Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking cookies without your consent.

9. Data Retention

We retain your data for as long as your account is active or as needed to provide you services. You can request deletion of your account at any time, and we will remove your data within 30 days.

10. Children's Privacy

Hisab Journey is not intended for users under 18 years of age. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us:

← Back to Home