← Back to home

Privacy Policy

Last updated: May 2025

1. Who we are

Contaris is a personal finance application for South African users. We are committed to protecting your personal information in accordance with the Protection of Personal Information Act 4 of 2013 (POPIA).

2. What information we collect

  • Account information: Your name and email address when you sign up via Google OAuth.
  • Transaction data: Financial transactions imported from your bank statements, SMS messages, email notifications, or push notifications — only with your explicit permission.
  • Device information: Operating system type (Android/iOS) for app functionality.

3. How we use your information

  • To display and categorise your transactions within the app.
  • To generate spending analytics, budgets, and savings goal tracking.
  • To send you optional weekly spending digest notifications.
  • To process premium subscription billing via RevenueCat.

We do not sell, rent, or share your personal or financial data with third parties for marketing purposes.

4. AI processing

Transaction descriptions are sent to Anthropic's Claude API for automatic categorisation. Only anonymised merchant names and amounts are sent — no personally identifiable information. Anthropic's data processing is governed by their privacy policy.

5. Data storage and security

Your data is stored in Supabase (PostgreSQL) hosted on AWS in the EU region. All data is encrypted at rest and in transit. Row-level security ensures you can only access your own data.

6. Your rights under POPIA

  • Access: You may request a copy of all personal data we hold about you.
  • Correction: You may correct inaccurate personal data.
  • Deletion: You may request deletion of your account and all associated data via Settings → Delete account, or by emailing us.
  • Portability: You may export all your transaction data as a CSV from within the app.

7. Data retention

We retain your data for as long as your account is active. On account deletion, all personal data is permanently removed within 30 days.

8. Contact us

For privacy-related queries or to exercise your rights, contact us at: privacy@contaris.io