Privacy Policy — Summary

Effective date: April 1, 2026

Welcome to BudgetBakers. The following text serves as an abridged overview of the key points of our Privacy Policy, which describes how we collect, use, and protect your personal data when you use our applications and services.

General Principles

BudgetBakers s.r.o. is established in the European Union (Czech Republic) and processes all personal data in accordance with EU privacy standards and the GDPR. We process your data only with your consent or on another legitimate legal basis (contract performance, legal obligation, or legitimate interest). We do not process any special categories of personal data (sensitive data). Our services are available only to users aged 15 and older.

What Data We Collect

We collect different categories of data depending on how you use our services:

• Registration & Account — Email address, encrypted password
• User Profile (optional) — Name, date of birth, gender, profile photo
• Third-Party Login — Data from Google, Facebook, or Apple if you use SSO
• Payments & Subscription — Transaction ID, subscription type, dates (we never store card numbers)
• Application Content — Your income, expenses, categories, budgets, receipt photos, and notes
• Bank Data (AIS) — Account balances and transaction history, obtained only with your explicit consent via secure API
• Technical & Analytical Data — IP address, device type, OS version, crash logs, usage statistics

Mobile permissions (location, camera, contacts, notifications) are always voluntary and can be changed in your device settings at any time.

How We Use Your Data

• Service delivery — So the application works, synchronizes, and displays your financial overviews
• Communication — Sending operational information, responding to support queries, notifying you of changes
• Service improvement — Analyzing usage patterns to fix bugs and develop new features
• Marketing — Only with your consent (e.g., newsletter); you can withdraw consent at any time

Who We Share Data With

We share your data only to the extent necessary with verified partners who ensure the technical operation of our services (hosting, analytics, AIS). If you use group sharing features, other users in your group will see shared data. Third-party API partners become independent data controllers — their own privacy policies apply.

Data Retention & Deletion

We keep your data as long as you actively use your account. After 6 months of inactivity, we may deactivate your account and delete all data. You can request account deletion at any time in the app settings or by contacting support — your data will be removed from production servers within 1 month. Encrypted backups are cyclically overwritten. Certain data may be retained longer as required by law (e.g., AML obligations).

Security

We follow strict security standards, including OWASP testing methodology and ISO 27001 certification. All communication is encrypted via SSL. Your data is stored on servers in the EU or USA with providers meeting high data protection standards (e.g., AWS). User profiles and financial data are stored in separate database systems.

Your Rights (GDPR)

Under the GDPR, you have the right to:

• Access your personal data and information about how it is processed
• Rectify inaccurate or incomplete data
• Erase your data (right to be forgotten)
• Restrict processing in certain circumstances
• Data portability — receive your data in a structured, machine-readable format
• Object to processing for direct marketing purposes

If you believe your rights have been violated, you may lodge a complaint with the Office for Personal Data Protection (Czech Republic).

Cookies & Contact

We use essential, analytical, and marketing cookies. You can manage your preferences via the cookie consent banner, browser settings, or our dedicated cookie policy page. We implement Google Consent Mode v2.

For privacy questions, contact us at support@budgetbakers.com. Our Data Protection Officer can be reached at DPO@budgetbakers.com (BudgetBakers s.r.o., Radlická 180/50, 150 00 Prague 5, Czech Republic).