Privacy

Your data, treated with care

Last updated: April 30, 2026

Our promise in plain English

You trust Woodo with sensitive financial data — credit card statements, transactions, balances. We take that seriously. The short version: we collect only what we need to run the product, we encrypt it in transit and at rest, we never sell it, and we never share it with advertisers or data brokers.

What we collect

  • Account information: email address, password (hashed, never stored in plain text), and an optional display name.
  • Statements you upload: the PDF files themselves, the transactions extracted from them, and any metadata such as bank name, card name, statement period, and balance.
  • Profile data: any profiles you create, the members you invite, and the relationships between them.
  • Usage events: a small activity log (login, statement uploaded, PDF opened) used purely to power features inside the app.
  • Payment data: handled entirely by Stripe. We never see or store your card number, CVC, or full bank details.

How your data is protected

  • Encryption in transit: all traffic uses HTTPS / TLS.
  • Encryption at rest: Supabase, our database provider, encrypts data on disk by default.
  • Row-level security:our database enforces per-user isolation at the row level, so one user can never read another user's rows even if application code has a bug.
  • No third-party tracking on your data: we do not feed your statements or transactions into advertising or analytics products.

How we use AI

When you upload a PDF, we send it to our state of the art AI model via API to extract the transactions. Our AI model does not use API content for further training. Once the response is received, we store the structured result in our database and do not re-share it.

What we never do

  • We never sell your data to anyone.
  • We never share your data with advertisers or data brokers.
  • We never use your statements to train third-party models.
  • We never ask for your bank login, online banking password, or two-factor codes.

Your rights

You can, at any time:

  • Export or delete any statement you have uploaded.
  • Delete a profile and everything inside it.
  • Delete your entire account, which removes all associated data.

Communications

We only email you for things that matter — important account changes, security alerts, billing receipts, and (if you opted in) the occasional product update. You can unsubscribe from non-essential email at any time. We do not pass your email to other companies.

Cookies and analytics

We use a small number of essential cookies to keep you signed in. We use Google Analytics 4 to understand which pages people visit, with IP addresses anonymised. We do not run advertising trackers.

Data retention

Your data stays for as long as your account is active. If you delete your account, all associated statements, transactions, profiles, and activity logs are deleted within 30 days, except where we are legally required to keep records (for example, billing receipts for tax purposes).

Contact

Privacy questions, data requests, or concerns — [email protected]. We aim to reply within two business days.