Privacy Policy
Effective date: May 1, 2026
Tempo is a personal finance tool designed to help you understand your spending and stay on top of your money. This policy explains what data we collect, how we use it, and what rights you have over it. We keep things plain — no legalese.
1. What data we collect
- Account information — your name, email address, and (if you set one) a hashed password. If you sign in with Google, we receive your name and email from Google.
- Financial data via Teller — when you connect a bank account, Teller (our bank-sync partner) shares your account balances and transaction history with us. We store this so we can calculate your Safe-to-Spend.
- Manually entered data — transactions you import via CSV, bills and income you add manually, savings goals, and any other financial information you enter directly.
- Usage data — basic product analytics such as which features you use, so we can improve the app. We do not sell this data.
- Push notification tokens — if you enable push notifications, we store a device token to deliver those alerts.
2. How we use your data
- Safe-to-Spend calculations — your balance, transactions, bills, and savings goals are fed into our engine to compute how much you can freely spend today.
- AI-powered analysis — with your permission, we send anonymised spending summaries to OpenAI to generate your Finance Coach insights. We do not send personally identifying information (like your name or email) to OpenAI.
- Push notifications — we use your device token to send budget alerts and reminders you have opted into.
- Service improvement — aggregated, anonymised usage patterns help us understand what is working and what to build next.
We do not sell your data to third parties, use it for advertising, or share it with anyone outside of the services listed below.
3. Third-party services
- Teller.io— provides read-only access to your bank accounts for transaction syncing. Teller's own privacy policy governs how they handle your bank credentials. We never see or store your bank username or password.
- OpenAI— used to generate your Finance Coach weekly summaries. Spending summaries sent to OpenAI are stripped of directly identifying information. OpenAI's data usage policy applies to content sent through their API.
- Neon (PostgreSQL) — our database provider. All data at rest is encrypted. Neon does not have access to your data beyond what is required to operate the infrastructure.
- Google (OAuth)— if you choose "Continue with Google", Google authenticates you and shares your name and email with us. Google's privacy policy applies to that sign-in flow.
4. Data retention
We keep your data for as long as your account is active. If you request account deletion, all of your personal data — including transactions, goals, bank connections, and profile information — will be permanently deleted within 30 days of your request. Anonymised, aggregated data that cannot be linked back to you may be retained for product analytics.
5. Your rights
- Access — you can view all the data Tempo holds about you from your account settings page at any time.
- Export — you can download your transaction history and other data from the account settings page.
- Correction — you can update your name, email, and financial data directly within the app.
- Deletion — you can request full account and data deletion from the account settings page. We will confirm deletion within 30 days.
- Disconnect bank accounts — you can revoke Teller access to any connected bank at any time from the accounts settings page.
6. Security
All data is transmitted over HTTPS. Passwords are hashed with bcrypt and never stored in plain text. Bank access tokens from Teller are stored encrypted. We apply rate limiting and brute-force protection on authentication endpoints.
7. Changes to this policy
If we make material changes to this policy, we will notify you by email or with an in-app notice at least 14 days before the changes take effect. The effective date at the top of this page will always reflect the latest version.