Privacy policy · last updated 2026

Privacy, in plain English.

What we don’t collect

No bank logins. No Account Aggregator pulls. No payslip OCR. No screen-scraping. No SMS-reading for transaction parsing. None of it. Privacy-by-design isn’t a tagline — it’s the architecture.

What we collect

Only what you tell Splex in conversation — there are no data-harvesting forms. Your date of birth (Splexo is 18+ only), your income or allowance, your essentials (rent, mess, transport), your deductions (if you ask Splex about tax), and the goals you set. Plus a hashed email + token for sign-in. No bank data, ever.

Your Financial Fitness Score

To personalise your coaching we build a money-personality profile and a Financial Fitness Score — entirely from what you choose to share in chat (a short self-description, recent big purchases, rough spend habits). It is NEVER built from bank statements or transaction tracking, because we don’t have them.

Where it lives

Encrypted at rest in our managed PostgreSQL database. Refresh tokens are stored as bcrypt hashes — we never see them again after issue. We’re moving our hosting to keep your data in-region (India); any documents you choose to upload are stored encrypted in India.

AI processing

To generate Splex’s coaching and your personality profile, we send the financial details you share — but never your name or email — to our AI providers (Anthropic, OpenAI) under data-processing agreements. Our tax-law search index (Pinecone) holds only public statute text, no personal data. Sign-in and notifications use Firebase.

Who we share it with

No one else. We don’t sell your data. We don’t share it with brokers, lenders, insurers, or advertisers. The only processors that touch it are the AI, search, and auth providers named above.

Your rights

You’re in control. Export everything we hold about you, permanently delete your account and all its data (deletion is immediate and irreversible — no shadow copies), manage your consents, and raise a grievance — all from Profile → Privacy in the app.

Consent, your choice

We ask for clear, itemised consent — coaching, behaviour profiling, push notifications, and emails are each a separate yes/no. Withdraw any of them at any time, as easily as you gave it.

18 and over only

Splexo is strictly for users 18 and over. We check your date of birth at the start of onboarding, and we never build a behaviour profile for anyone under 18. A date of birth under 18 is rejected and nothing is stored.

How long we keep it

While your account is active, and we delete it when you ask. Any document you upload for analysis is auto-deleted shortly after it’s processed.

Questions or grievances

Email hello@splexo.in — the founder is the grievance officer and will respond directly. You can also raise a grievance in-app from Profile → Privacy.