Privacy Policy — RozHisab

      Summary: RozHisab collects only what is necessary to provide you with a personal finance tracking service. We do not sell your data. Your financial information belongs to you.
    

1. Information We Collect

Information You Provide

Account details: Your name, email address, and password when you register.
Financial data: Transaction descriptions, amounts, categories, dates, and payment modes you manually enter.
Budget & bill data: Budget limits and recurring bill details you set up in the app.
Communications: Messages you send us via email or the contact form.

Information Collected Automatically

Usage data: Pages visited, features used, session duration, and interaction patterns.
Device information: Browser type, operating system, screen resolution, and device type.
IP address: Used for security purposes and approximate geographic location (country/state level only).
Cookies: Session cookies to keep you logged in and preference cookies to remember your settings. See Section 4 for full details.

Information We Do NOT Collect

We do not access your bank accounts, UPI apps, or any financial institution directly.
We do not collect payment card numbers or banking credentials.
All financial data you enter is manually typed by you — we have no automated bank sync.

2. How We Use Your Information

We use your information solely to provide and improve the RozHisab service:

To create and manage your account.
To display your financial data on your personal dashboard.
To generate reports, insights, and budget tracking visualisations.
To send service-related emails (password reset, account security alerts).
To send weekly spending summaries, if you opt in under Settings.
To analyse aggregate, anonymised usage patterns to improve the app.
To detect and prevent fraud, abuse, and security threats.
To comply with applicable laws and legal obligations.

We do not use your financial data for targeted advertising, profiling, or selling to third parties.

3. Data Storage & Security

Your data is stored on secured servers hosted in India. We implement the following security measures:

Passwords: Hashed using bcrypt — we cannot see your password in plain text.
HTTPS: All data transmission between your browser and our servers is encrypted using TLS/SSL.
Access controls: Only authorised personnel can access production systems.
Session security: Sessions expire after 2 hours of inactivity.

⚠️ No method of electronic storage or transmission is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. Please use a strong, unique password for your account.

We retain your data for as long as your account is active. If you delete your account, all your data is permanently removed from our servers within 30 days.

4. Cookies & Tracking Technologies

We use the following types of cookies:

Cookie Type	Purpose	Duration
Session Cookie	Keeps you logged in during your browser session	Session (deleted on browser close)
Preference Cookie	Remembers your app settings and preferences	30 days
Analytics Cookie	Helps us understand how the app is used (aggregated, anonymised)	90 days
Advertising Cookie	Used by Google AdSense to show relevant ads to Free tier users	Up to 2 years

You can disable cookies in your browser settings. Note that disabling session cookies will prevent you from logging in.

5. Third-Party Services

We use the following third-party services, each governed by their own privacy policies:

Google Fonts: Loads typography assets. Google may log font request metadata. Google Privacy Policy
Chart.js (CDN): JavaScript library for data visualisations. Served via jsDelivr CDN.
Google AdSense: Serves advertisements on the Free tier. See Section 6 below.

We do not share your personal or financial data with any third-party service.

6. Advertising (Google AdSense)

RozHisab is free to use and is supported by advertising on the Free tier. We use Google AdSense to display ads.

Google AdSense uses cookies to show you ads based on your browsing history and interests.
Google's use of advertising cookies enables it and its partners to serve ads based on your visit to this and other websites.
Your financial data entered in RozHisab is never shared with Google AdSense.
You may opt out of personalised advertising by visiting Google Ads Settings.
You can also opt out via the Network Advertising Initiative opt-out page.

7. Your Rights

You have the following rights regarding your personal data:

Access: You can view all your data inside the RozHisab app at any time.
Export: You can download all your transactions as a CSV file from the Transactions page.
Correction: You can update your name and preferences in Settings at any time.
Deletion: You can permanently delete your account and all associated data from Settings → Danger Zone.
Objection: You may contact us to object to any specific data processing activity.

To exercise any of these rights, contact us at support@rozhisab.com.

8. Children's Privacy

RozHisab is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately at support@rozhisab.com and we will delete the data.

9. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or for legal reasons. When we make significant changes, we will notify you by email (if you have an account) and update the "Last updated" date at the top of this page. Continued use of RozHisab after changes are posted constitutes your acceptance of the updated policy.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your data, please contact us:

Email: support@rozhisab.com
Website: rozhisab.com/contact
Response time: We aim to respond within 2 business days.