English Portugues
Why PiggyPulse A look inside Blog Open Web App

Privacy Policy

Last updated: April 11, 2026

PiggyPulse is a personal finance app built with privacy as a core principle. We collect only what's necessary to provide the service, we never sell your data, and we don't use third-party analytics or advertising.

1. Information We Collect

When you create a PiggyPulse account, we collect:

  • Account information: Your name, email address, and password (hashed with Argon2, never stored in plain text)
  • Financial data you enter: Transactions, accounts, categories, vendors, budget periods, subscriptions, and overlays that you manually create within the app
  • Preferences: Theme, date format, number format, timezone, and language settings
  • Device tokens: If you enable push notifications on iOS or Android, we store your device push token to deliver notifications

We do not connect to any bank, payment provider, or financial institution. All financial data in PiggyPulse is manually entered by you.

2. Information We Do Not Collect

  • We do not use third-party analytics, tracking pixels, or advertising services
  • We do not collect device identifiers (IDFA/IDFV) for advertising
  • We do not collect location data
  • We do not collect contacts, photos, or any other device data
  • We do not use cookies for advertising or tracking (only essential session cookies for the web app)

We use Cloudflare Web Analytics, a privacy-focused, cookie-free analytics service provided by our hosting provider. It collects only aggregate data (page views, performance metrics) and does not track individual users or use cookies.

3. How We Use Your Information

Your data is used exclusively to:

  • Provide and operate the PiggyPulse service
  • Authenticate your account and maintain your session
  • Display your financial data back to you in the app
  • Send push notifications you've opted into (iOS and Android)
  • Send password reset emails when you request them

4. Data Storage & Security

  • Your data is stored in a PostgreSQL database on a server hosted by Hetzner in Europe
  • All communication between the app and server uses HTTPS/TLS encryption
  • Passwords are hashed using Argon2
  • Web sessions use secure, HttpOnly cookies with CSRF protection
  • Mobile apps (iOS and Android) store authentication tokens securely in the platform keychain
  • Two-factor authentication (2FA) is available for additional account security
  • Rate limiting is applied to all API endpoints

5. Data Sharing

We do not sell, rent, or share your personal data with any third parties. Your financial data is yours alone.

The only exception is if required by law enforcement with a valid legal order, in which case we would notify you unless legally prohibited from doing so.

6. Data Retention & Deletion

Your data is retained as long as your account is active. You can:

  • Export your data: Use the Data & Export section in Settings to download your transactions (CSV) or full dataset (JSON)
  • Delete your account: Use the Danger Zone in Settings to permanently delete your account and all associated data. This action is irreversible.

7. Children's Privacy

PiggyPulse is not intended for children under 13. We do not knowingly collect data from children. If you believe a child has created an account, please contact us to have it removed.

8. Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated date. Continued use of PiggyPulse after changes constitutes acceptance of the updated policy.

9. Contact

If you have questions about this privacy policy or your data, contact us at:

privacy@piggy-pulse.com