Skip to main content

Privacy Policy

Effective date: April 28, 2026

Introduction

This Privacy Policy describes how Vaulra ("we", "us", "our") collects, uses, and protects your information when you use the service at vaulra.app. We are committed to handling your data responsibly and transparently.

By using Vaulra, you agree to the practices described in this policy. If you do not agree, do not use the service.

Contact: privacy@vaulra.com

Information We Collect

We collect the following categories of information:

  • Account information: your email address, display name, and authentication credentials when you sign up with email/password or Google sign-in
  • Budget data: income entries, expenses, budget envelopes, sub-envelopes, fund transfers, recurring templates, and budget month records you create within the app
  • Currency preferences: your selected base currency and any manually entered exchange rates
  • Notification preferences: your choices for in-app and email notification settings
  • Shared budget data: member invitations, visibility profiles, and permission configurations for budgets you share with others
  • Classification patterns: learned mappings between transaction descriptions and budget categories, built from your confirmed import classifications
  • Usage metadata: timestamps on records you create or modify, and which user performed actions in shared budgets

Email Delivery (Resend)

We use Resend (Resend Inc., resend.com) to deliver transactional emails on our behalf, including notification emails, budget alerts, and password reset emails. When we send you an email, your email address and the email content are transmitted to Resend for delivery.

Resend acts as a data processor under GDPR Art. 28 and a service provider under CCPA §1798.140. Resend processes your email address only on our documented instructions and does not use it for its own purposes.

Data shared with Resend:

  • Recipient email address
  • Email subject and body content
  • Delivery metadata (timestamps, delivery status)

Data retention: Resend retains email delivery logs for 24 months from the date of delivery. After this period, logs are deleted.

Legal basis (GDPR Art. 6(1)(b)): processing necessary for the performance of a contract — delivering account-related notifications you have opted into or that are required for account operation (e.g., password reset).

Cross-border transfers: Resend is a US-based service. See the Cross-Border Data Transfers section for the transfer mechanism.

Behavioral Analytics (PostHog)

We use PostHog (PostHog Inc.) for product analytics to understand how Vaulra is used and to improve the experience. PostHog data is stored in the US (us.i.posthog.com) and persisted via localStorage in your browser. No cross-site tracking cookies are used.

PostHog collects:

  • Pageviews and navigation: pages visited, time on page, page leave events
  • Autocaptured interactions: clicks, form submissions, and other UI interactions
  • Feature flag evaluations: which features are enabled for your account
  • Device and browser information: browser type, OS, screen resolution
  • IP address: used for country-level geolocation only
  • Referrer data: how you arrived at Vaulra

Financial behavior events collected (no financial amounts or account details — only the fact that an action occurred):

  • Authentication funnel events: sign-up started, sign-up completed, sign-in
  • Onboarding events: onboarding steps completed
  • Financial behavior events: expense added, income added, debt account created, shared budget created, transaction import completed

How to opt out:

  • Browser Do Not Track (DNT): Vaulra respects the DNT signal. Enable it in your browser settings
  • Browser extension: block requests to us.i.posthog.com using a content blocker
  • Contact us: email privacy@vaulra.com and we will disable tracking for your account

Opting out does not affect any functionality of Vaulra. Legal basis (GDPR Art. 6(1)(f)): legitimate interest — product improvement and usage analysis.

Cross-border transfers: PostHog is a US-based service. See the Cross-Border Data Transfers section for the transfer mechanism.

Cross-Border Data Transfers (EU-US Data Privacy Framework)

Resend and PostHog are US-based services. When personal data is transferred from the European Economic Area (EEA), the United Kingdom, or Switzerland to these processors in the United States, the transfer is made under the EU-US Data Privacy Framework (EU-US DPF), established by the European Commission's adequacy decision of July 10, 2023.

Both Resend and PostHog participate in the EU-US DPF. You can verify their participation at the DPF List (dataprivacyframework.gov/list).

If the EU-US DPF adequacy decision is invalidated or a processor's participation lapses, we will implement alternative transfer mechanisms (Standard Contractual Clauses under GDPR Art. 46(2)(c)) before continuing to transfer personal data to that processor.

For transfers to Google Cloud (Firebase, Firestore, Vertex AI), Google LLC participates in the EU-US DPF and also offers Standard Contractual Clauses as part of its Google Cloud Data Processing Addendum.

Error Tracking (Sentry)

We use Sentry (Functional Software Inc., sentry.io) for application error monitoring. When an error occurs in the Vaulra application, Sentry captures diagnostic information to help us identify and fix bugs.

Data Sentry may collect:

  • Error messages and stack traces
  • Browser and OS information
  • The URL where the error occurred
  • User identifiers (Firebase UID) and session context

PII handling — we configure Sentry to minimize personal data capture:

  • sendDefaultPii: false is set in all Sentry runtime configurations — Sentry will not automatically attach request headers, cookies, or user IP addresses to error events
  • A beforeSend hook is active in all configurations. It strips event.extra and event.contexts.runtime from every error event before transmission to Sentry
  • Firebase UID: when you are signed in, your Firebase UID (a randomly generated identifier, not your email address or name) is sent to Sentry to allow us to attribute errors to specific user sessions for debugging. Your email address and display name are never sent to Sentry

Data retention: Sentry retains error events for 90 days by default.

Legal basis (GDPR Art. 6(1)(f)): legitimate interest — maintaining application stability and security for all users.

Cross-border transfers: Sentry is a US-based service. Sentry participates in the EU-US Data Privacy Framework. A Data Processing Agreement (DPA) with Sentry has been executed.

Feedback Widget

Vaulra includes an in-app feedback widget that allows you to submit feedback about your experience. When you submit feedback, the following data is collected and stored in Google Cloud Firestore under your user account.

Data collected:

  • Feedback text: the content of your feedback submission
  • Category: the type of feedback you selected (bug report, feature request, general, or UX feedback)
  • Screenshot: an optional screenshot you choose to attach, stored in Firebase Storage under your user ID
  • Page context: the page you were viewing when you submitted feedback
  • App version: the version of Vaulra you were using at the time of submission
  • User plan: your current subscription plan at the time of submission
  • Submission timestamp: when the feedback was submitted

Feedback data is stored within our existing Google Cloud infrastructure (Firestore and Firebase Storage) and is not shared with any third-party feedback processor. It is used solely to review and respond to user feedback and improve the product.

Data retention: feedback submissions are retained for the duration of your account. If you delete your account, your feedback submissions are deleted along with all other account data.

Legal basis (GDPR Art. 6(1)(f)): legitimate interest — product improvement based on user feedback.

Information We Do Not Collect

Vaulra does not:

  • Connect to your bank accounts or access financial institution data
  • Store uploaded files: transaction import files (CSV, Excel, PDF) are processed entirely in your browser and discarded after extraction
  • Collect payment card numbers, bank account numbers, or other financial account credentials
  • Use advertising trackers or sell your data to third parties
  • Collect location data or device identifiers beyond what is described in this policy

How We Use Your Information

We use the information we collect to:

  • Provide and operate the budgeting service, including calculating allocations, tracking expenses, and generating analytics
  • Authenticate your identity and maintain your session
  • Send notifications you have opted into, including in-app alerts and email notifications for budget events
  • Generate AI-powered features when you request them, such as envelope recommendations and monthly review summaries
  • Improve classification accuracy for transaction imports based on your confirmed categorizations
  • Enable shared budget collaboration with members you invite
  • Analyze usage patterns to improve the product (via PostHog)

AI Features and Data Processing

Vaulra offers optional AI-powered features including smart envelope recommendations and monthly budget review summaries. When you use these features, relevant budget data (spending patterns, envelope utilization, fund transfer history) is sent to a server-side Cloud Function, which forwards it to a third-party AI provider for processing.

The default AI provider is Google Gemini Flash, accessed through Vertex AI. AI requests are made from server-side Cloud Functions — your data is never sent directly from your browser to an AI provider.

AI-generated content is informational only. It is not financial advice. The AI provider may change over time through our provider abstraction layer, but the data handling practices described here will remain consistent.

Income Data Processing (Income-Based Allocation)

Vaulra's income-based allocation feature allows you to configure budget envelopes as a percentage of your declared income. When you use this feature, your income figures are stored in Firestore as part of your budget configuration.

Data collected:

  • Income amounts you manually enter
  • Income frequency
  • Derived allocation percentages

Important: Vaulra does not verify, validate, or share your income data with any third party for financial assessment purposes. Income figures are used solely to calculate your configured budget envelopes within the app.

Legal basis (GDPR Art. 6(1)(b)): processing necessary for the performance of the service you have requested.

Data retention: income data is retained for the duration of your account. If you delete your account, all income entries and derived allocation data are deleted along with your other budget data.

Data Storage and Security

Your data is stored in Google Cloud Firestore under a dedicated Firebase project. All data is scoped to your authenticated user ID, ensuring isolation between users.

Firestore security rules enforce that you can only read and write your own data. For shared budgets, security rules enforce visibility profiles so members can only access data the budget owner has made visible to them.

Authentication is handled by Firebase Authentication. Passwords are managed by Firebase and are never stored or accessible by Vaulra application code. API keys for AI services are stored in server-side environment configuration, never in client-side code.

Shared Budgets

When you create a shared budget and invite members, the data within that budget becomes accessible to those members according to the visibility profile you configure. You control which envelopes, income entries, and transfers each member can see and edit.

Members of a shared budget can see activity attribution (which user created or modified a record) for data within their visibility scope. Visibility profiles are enforced at the database level — data outside a member's configured access is not fetched or transmitted.

Transaction Import

When you import transactions from a file, the file is processed entirely in your browser. No file data is uploaded to any server, stored in cloud storage, or transmitted over the network. After extraction, the file is discarded from memory.

Parsed transaction data is sanitized before rendering. Classification patterns learned from your confirmed imports are stored in Firestore under your user account to improve future suggestions.

Third-Party Services

Vaulra relies on the following third-party services:

  • Firebase Authentication — purpose: user sign-up, sign-in, session management; data shared: email, auth credentials; transfer mechanism: EU-US DPF / Google Cloud DPA
  • Google Cloud Firestore — purpose: storing all budget data; data shared: all budget data; transfer mechanism: EU-US DPF / Google Cloud DPA
  • Firebase Cloud Functions — purpose: server-side AI processing, email notifications; data shared: budget data for AI features, email addresses; transfer mechanism: EU-US DPF / Google Cloud DPA
  • Google Vertex AI (Gemini Flash) — purpose: AI-powered recommendations and summaries; data shared: anonymized budget patterns; transfer mechanism: EU-US DPF / Google Cloud DPA
  • Resend (resend.com) — purpose: transactional email delivery; data shared: recipient email addresses, email content; transfer mechanism: EU-US DPF (see Email Delivery section)
  • PostHog Inc. — purpose: product analytics, feature flags; data shared: usage data, device info, IP address; transfer mechanism: EU-US DPF (see Behavioral Analytics section)
  • Sentry (sentry.io) — purpose: application error monitoring; data shared: error events, stack traces, user context; transfer mechanism: EU-US DPF / Sentry DPA
  • Google Cloud (Firestore/Storage) — purpose: in-app feedback collection; data shared: feedback text, optional screenshots; transfer mechanism: Google Data Processing Addendum (DPA) and Standard Contractual Clauses (SCCs)

These services have their own privacy policies. We recommend reviewing them if you have concerns about how your data is handled at the infrastructure level.

Data Export and Portability

You can export your complete budget data at any time using the JSON export feature in Settings. You can also export individual months as CSV files. Exported files are generated in your browser and downloaded directly to your device.

For shared budgets, exports only include data within your visibility scope.

Data Retention

Retention periods by data category:

  • Account and budget data: duration of account plus 30 days after deletion
  • PostHog analytics data: 12 months (rolling)
  • Transactional email logs (Resend): 24 months from date of delivery
  • Sentry error events: 90 days
  • Feedback submissions: duration of account (deleted on account deletion)
  • Historical budget months: indefinite while account is active (supports analytics and trends)
  • Server logs: 90 days

If you delete your account, we will delete your user profile and all associated budget data from Firestore. Shared budgets you own will be deleted along with all member access. This process is not reversible — we recommend exporting your data before account deletion.

Your Rights (GDPR Art. 15–22)

If you are in the EEA or UK, you have the right to:

Your rights include:

  • Access your personal data (Art. 15)
  • Rectify inaccurate data (Art. 16)
  • Erase your data (Art. 17)
  • Restrict processing (Art. 18)
  • Data portability: receive your data in a structured format (Art. 20)
  • Object to processing based on legitimate interest, including analytics (Art. 21)
  • Withdraw consent where processing is based on consent (Art. 7(3))
  • Lodge a complaint with a supervisory authority

To exercise any right, email privacy@vaulra.com. We will respond within 30 days.

Children's Privacy

Vaulra is not intended for use by anyone under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete that information.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the effective date at the top of this page. Continued use of Vaulra after changes constitutes acceptance of the updated policy.

Contact

For questions about this Privacy Policy or how your data is handled, reach out to us at privacy@vaulra.com.