Privacy Policy for Brightly Budget

Effective Date: March 31, 2026

Related legal links

Terms of ServiceContact support

Introduction

Welcome to Brightly Budget. We value your privacy and are committed to protecting your personal information. This Privacy Policy applies to our website (brightlybudget.com), our web application, and our mobile applications for iOS and Android, and outlines how we collect, use, store, share, and protect your data. The Service helps you track budgets, accounts, transactions, goals, debts, recurring items, and statistics; it may include optional features such as AI-powered insights and chat, receipt scanning, and importing data from supported export files.

Information We Collect

Personal Information:

  • Name and email address (including when you register with email or sign in with Google or Apple)
  • Password (stored using strong one-way hashing; not used if you sign in only with Google or Apple)

Financial Information:

  • Transaction details (income, expenses)
  • Account information (e.g. account names, balances)
  • Budget details
  • Debt information
  • Goal-setting information
  • Subscription and purchase history (e.g. for Pro plans)

User Content:

  • Photos or files you upload (e.g. receipt images for scanning and transaction extraction)
  • Files you submit for data import (e.g. supported third-party app exports), which we process to create or update your records
  • Messages you send to the in-app AI assistant and the assistant's replies, and related conversation metadata we store to provide the feature
  • AI-generated insight and report text we retain when you use monthly or yearly AI insights

Technical Information:

  • IP address
  • Browser type and version (web)
  • Device type, operating system, and app version (mobile)
  • Push notification tokens and related identifiers when you enable notifications on mobile (processed through our push provider)

How We Use Your Information

We use your information to:

  • Provide, operate, and maintain our services
  • Process receipt images to extract transaction data, and run AI features (assistant chat, monthly and yearly insights) using third-party AI services, which may process financial summaries derived from your data and your messages
  • Process import files you upload and convert them into transactions and related records
  • Process and validate subscriptions purchased through the Apple App Store and Google Play
  • Send transactional and service emails (e.g. verification, password reset) and mobile push notifications where enabled
  • Enhance user experience and provide personalized content
  • Communicate with you for support, updates, or security purposes
  • Ensure security and integrity of our services
  • Comply with applicable laws and regulations

Subscriptions and App Stores

Brightly Budget Pro subscriptions on iOS are purchased through the Apple App Store, and on Android through Google Play. Apple and Google handle billing credentials, renewals, cancellations, refunds, and related store processes under their own terms and policies. We may receive limited purchase and subscription metadata from those platforms, such as transaction identifiers, subscription status, renewal dates, and similar records needed to validate purchases and provide access to Pro features.

Sharing Your Information

We do not sell or rent your personal information. We may share your information with the following categories of recipients:

Authentication:

If you sign in with Google or Apple, that provider receives and processes sign-in and profile information (e.g. name, email where shared) according to their policies: Google's Privacy Policy and Apple's Privacy Policy.

Payments:

Paid subscriptions for Brightly Budget Pro are purchased only through the Apple App Store or Google Play. Apple and Google process payment and subscription data; we do not collect or store your full payment card details. See Apple's Privacy Policy and Google's Privacy Policy for how they handle purchases. We may receive limited subscription status or transaction metadata from those platforms to provide and verify your access.

AI features (OpenAI):

When you use receipt scanning, the AI assistant, or monthly/yearly AI insights, we send relevant content to our AI provider (e.g. OpenAI)—such as receipt images, compact summaries derived from your financial data, and your chat messages—to generate responses. This processing is limited to operating these features. We configure services appropriately so your data is not used to train providers' models for general-purpose AI where that option is offered; see OpenAI's Privacy Policy for how they handle API data.

Push notifications (mobile):

Our mobile apps may use Google Firebase Cloud Messaging (and platform notification services) to deliver push notifications. Google processes certain technical data in connection with FCM. See Google's Privacy Policy.

Transactional email:

We use an email delivery provider (e.g. SMTP2GO) to send transactional messages such as verification and password-reset emails. The provider processes recipient addresses and message metadata as necessary to deliver mail.

Infrastructure and operations:

We use service providers for hosting, email delivery, and other operations. They process data only on our instructions and for the purposes of providing our service.

Legal requirements:

When required by law or in response to valid legal processes, including protecting the rights, safety, and security of our company and users.

Security Measures

We implement robust security measures to protect your information from unauthorized access, disclosure, or alteration, including encryption, firewalls, and secure servers. However, no security system is completely foolproof.

Data Retention

We retain your personal information only as long as necessary to provide our services and as required by applicable laws (e.g. tax or legal holds). When you request account deletion, we will delete or anonymize your data within a reasonable period, subject to any legal obligation to retain certain information.

Legal Basis (EEA / UK)

Where applicable data protection laws (such as the GDPR) require a legal basis, we process your data on the basis of: (1) performance of our contract with you (providing the service), (2) your consent where we ask for it (e.g. optional features or marketing), and (3) our legitimate interests (e.g. security, fraud prevention, improving our service), where those interests are not overridden by your rights.

International Data Transfers

Your data may be processed in the European Union and in other countries where our service providers operate. When we transfer data outside the EEA or UK, we ensure appropriate safeguards are in place (such as adequacy decisions or standard contractual clauses approved by relevant authorities) as required by applicable law.

Cookies and Tracking Technologies

We use cookies and similar technologies where necessary to keep you signed in and to operate the service (e.g. authentication and session cookies on the web app and API, and cookies used during OAuth sign-in flows). We do not use third-party advertising cookies. You can control cookies through your browser settings.

Third-Party Services and Links

Our apps and website use third-party services—including Google and Apple for sign-in; Apple App Store and Google Play for subscriptions; OpenAI (or similar) for AI features; Firebase for mobile push; and email delivery providers. We may link to third-party websites. We are not responsible for the privacy practices of those services or sites; we encourage you to review their privacy policies (linked in the "Sharing Your Information" section where applicable).

Your Rights

You have the right to:

  • Access your personal information
  • Correct inaccuracies in your data
  • Request a copy of your data (data portability / export)
  • Request deletion of your account and associated information
  • Object to or restrict certain data processing
  • Withdraw consent where processing is based on consent

To exercise these rights, contact us at info@brightlybudget.com. We will respond within a reasonable time and, where required by law, within the period set by applicable data protection regulations.

If you are in the European Economic Area (EEA) or the UK, you may also have the right to lodge a complaint with your local data protection supervisory authority.

Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect or solicit personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will promptly delete that information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. We recommend reviewing this Privacy Policy periodically.

Contact Information

If you have any questions or concerns about this Privacy Policy or our practices, please contact us at:

Brightly Budget

APPURIUM, Računalniško programiranje, Luka Gomzi s.p.

Slavšina 36a

2255 Vitormarci

Slovenia

info@brightlybudget.com