Privacy Policy

Privacy Policy

Last updated: January 2025

Introduction

Ledgerless Inc. ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our financial intelligence platform.

Information We Collect

Account Information

When you create an account, we collect:

  • Name and email address
  • Password (encrypted and hashed)
  • Profile information you choose to provide

Financial Data

When you connect your financial accounts through our secure integration partners (Plaid, Coinbase, PayPal, Etsy, Shopify), we collect:

  • Account balances and transaction history
  • Account names, types, and metadata
  • Merchant names and transaction categories
  • Income and expense patterns

Usage Information

We automatically collect certain information about your device and how you interact with our service:

  • Device type, operating system, and browser
  • IP address and general location
  • Pages visited and features used
  • Time spent on our platform

How We Use Your Information

We use your information to:

  • Provide Our Services: Generate AI-powered narratives, insights, and cash flow analysis based on your financial data
  • Improve Our Platform: Analyze usage patterns to enhance features and user experience
  • Communicate: Send you service updates, insights, and important notifications
  • Security: Detect fraud, prevent abuse, and protect your account
  • Compliance: Meet legal obligations and respond to legal requests

How We Share Your Information

We do not sell your personal information. We may share your information only in the following circumstances:

Service Providers

We work with trusted third-party service providers who help us deliver our services:

  • Plaid: Secure bank account connections
  • Stripe: Payment processing and subscription management
  • OpenAI: AI-powered insight and narrative generation (data is anonymized)
  • Cloud Infrastructure: Hosting and data storage (encrypted)

Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect the rights, property, or safety of Ledgerless, our users, or others.

Business Transfers

If Ledgerless is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

Data Security

We implement industry-standard security measures to protect your information:

  • 256-bit AES encryption for data at rest
  • TLS 1.3 encryption for data in transit
  • Regular security audits and penetration testing
  • Multi-factor authentication support
  • Access controls and audit logging
  • SOC 2 Type II compliance (in progress)

Your Rights and Choices

Access and Update

You can access and update your account information at any time through your account settings.

Delete Your Data

You can request deletion of your account and associated data by contacting us at privacy@ledgerless.ai. We will delete your data within 30 days, except where we are required to retain it by law.

Disconnect Accounts

You can disconnect any linked financial accounts at any time through your account settings. This will stop syncing new transactions but will not delete historical data unless you request full account deletion.

Opt-Out of Communications

You can unsubscribe from marketing emails by clicking the unsubscribe link in any email. You cannot opt out of essential service communications.

California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to say no to the sale of personal information
  • Right to access your personal information
  • Right to equal service and price

To exercise these rights, contact us at privacy@ledgerless.ai.

Data Retention

We retain your information for as long as your account is active or as needed to provide our services. If you delete your account, we will delete your data within 30 days, except:

  • Information required for legal compliance
  • Anonymized data used for analytics and improvements
  • Backup copies (deleted within 90 days)

Children's Privacy

Ledgerless is not intended for users under 18. We do not knowingly collect information from children. If we learn we have collected information from a child under 18, we will delete it immediately.

International Users

Ledgerless is based in the United States. By using our service, you consent to the transfer and processing of your information in the United States, which may have different data protection laws than your country.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through a notice on our platform. Your continued use of Ledgerless after changes indicates your acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

  • Email: privacy@ledgerless.ai
  • Address: Ledgerless Inc., [Address]

Summary

We collect your account info and financial data to provide our AI-powered insights. We protect your data with bank-grade encryption. We don't sell your information. You control your data and can delete it anytime.