Plain English. No fine print.

Account information. Your display name and email address. Your email is stored encrypted at rest. We also store a one-way hash of your email for login lookups — the hash cannot be reversed to recover your address.

Password. If you use email/password sign-in, your password is stored as a one-way hash. We cannot read your password and will never ask for it by email or phone.

Financial information. Income, monthly budget, bills, expenses, and debt balances — the information you enter to use FYF. Sensitive financial figures are stored encrypted at rest. We never access your bank account and we require no banking credentials.

Transactions and daily logs. The spending and income entries you log manually. These are stored in your account and used only to generate your personal financial summary.

Onboarding answers and story chapters. The narrative answers you write during onboarding, and the story chapters derived from them. These are personal and stored in your account. They are not shared.

Goals and milestones. The goals you set and progress milestones you achieve inside FYF.

Usage data. Streaks, lesson completions, level progress, and similar in-app behavioral data used to support progress tracking, coaching insights, and habit-building features.

Anonymous product analytics. We record anonymized product events — such as lesson completions, daily check-ins, and milestone shares — to understand how features are used. These events are linked to an opaque random identifier that is separate from your account ID and cannot be used to identify you. No financial amounts, transaction descriptions, goal labels, debt information, or personally identifiable information is ever included in analytics events. This analytics system is server-side only; no tracking scripts run in your browser.

Reminder preferences. Whether you have daily reminder emails enabled. You can change this in your account settings at any time.

Google account data (if you sign in with Google). We receive your name, email address, and a stable Google account identifier (“sub”). We verify that your Google email is confirmed before creating an account. We do not receive your Google password or any other Google account data.

Session data. We store a one-way hash of your session token to keep you logged in. The raw token exists only in your browser cookie and is never stored on our servers.

We do not connect to your bank account. We do not collect your banking login credentials, PIN, SIN (Social Insurance Number), or government-issued ID.

We do not run advertising analytics, behavioral tracking pixels, or third-party analytics scripts. There is no Google Analytics, Meta Pixel, or equivalent on FYF.

We do not build advertising profiles from your financial data. We will never sell or share your financial information with advertisers.

To operate FYF and provide you with your financial dashboard, coaching insights, lessons, and story features.

To send you transactional emails — specifically password reset links and daily reminder emails (if you have reminders enabled). We do not send marketing emails without your separate consent.

To keep you securely logged in via session cookies.

To improve FYF — we collect anonymized product events (described in section 1) to understand how features are used and where users encounter friction. This analysis never involves your personal financial figures, and event data is linked only to an opaque identifier that cannot be used to reconstruct your identity or financial history.

FYF provides educational and behavioral tools, not professional financial advice. Your data is used to show your own picture back to you — not to make financial recommendations on our behalf.

Sensitive financial fields (income, budget, debt balances, minimum payments) are encrypted at rest. Your email address is encrypted at rest and also stored as a one-way hash for login lookups.

Session tokens are stored in your browser as httpOnly, secure cookies and are never stored in plaintext on our servers — only a one-way hash is stored.

Password reset tokens follow the same pattern: the raw token exists only in the email link we send you, and only its hash is stored on our servers.

We do not log your financial information to application logs.

We use a small number of trusted third-party providers to operate FYF. Each acts as a data processor under our direction. We do not sell your financial data, and we do not share it with any of them for advertising or marketing purposes.

Railway — hosts the PostgreSQL database where your account data is stored. Railway is a US-based cloud infrastructure provider.

Vercel — hosts the FYF web application and processes incoming requests. Request logs (IP address, user agent, URL path) may be retained briefly for security and debugging purposes.

Resend — delivers transactional emails (password reset and daily reminders). Resend receives your email address and the content of those specific emails. No financial data is included in emails.

Google — provides optional sign-in via Google OAuth. If you use Google sign-in, Google processes your authentication. We receive only the data described in section 1.

Upstash — provides Redis-based rate limiting and email send deduplication. Upstash may process anonymized request identifiers (hashed user ID + date) but receives no personal data values.

Typography (Poppins and Lora fonts) is self-hosted by FYF. No runtime requests are made to Google Fonts servers.

Daily reminder emails are sent to users who have the feature enabled and who have not logged activity that day. Reminders are enabled by default. You can disable them at any time in your account settings.

Password reset emails are transactional and cannot be opted out of — they are only sent when you request a password reset.

We do not send promotional or marketing emails without your explicit consent.

Your data is retained for as long as your account is active. You can delete your account at any time from your account settings. Deletion is immediate and permanent — all your data is removed and cannot be recovered.

We do not retain anonymized copies of your data after deletion.

You have the right to access, correct, and delete the personal information FYF holds about you. Account deletion is available directly in the app. For other requests, contact us at privacy@fyf.services.

Canadian residents have additional rights under PIPEDA (the Personal Information Protection and Electronic Documents Act), including the right to know what personal information we hold and to challenge the accuracy of that information.

If we make material changes to this policy, we will notify you by email and update the effective date above. We'll give you time to review changes before they take effect. Continuing to use FYF after that point means you're comfortable with the updated policy.

Privacy questions and data requests: privacy@fyf.services

You will receive a response from a person, not an automated reply.