Privacy Policy

This Privacy Policy describes how The Trustee for ABDULLA FAMILY TRUST doing business as Map Your Finance (ABN 78 913 852 862) (“we”, “us”, or “our”) collects, uses, discloses, and protects your information when you access or use our services. These include:

• Our websites, including www.mapyourfinance.com (“Site”) and any other pages that link to this Privacy Policy;
• Our web-based application and Excel templates; and
• Any related online interactions such as customer support, marketing, or communications (collectively, the "Services").

PLEASE READ THIS PRIVACY POLICY CAREFULLY TO UNDERSTAND HOW WE HANDLE YOUR INFORMATION. IF YOU DO NOT AGREE WITH THIS PRIVACY POLICY, PLEASE DO NOT USE THE SERVICES.

We may update this Privacy Policy from time to time. The most current version will always be available through our Site, and the “Last Modified Date” above will reflect the latest changes. If we make any material updates, we will provide additional notice as required by law. Your continued use of the Services after any changes indicates your understanding and acceptance of the updated Privacy Policy.

This Privacy Policy includes the following sections:

1. Information We Collect
2. How We Use Your Information
3. Disclosure of Information
4. Data Retention
5. Your Rights and Choices
6. How We Protect Your Information
7. Children’s Privacy
8. Changes to this Privacy Policy
9. Contact Information

1. INFORMATION WE COLLECT

We collect both information that you voluntarily provide and certain data that is automatically collected when you use our Services.

Information You Provide

We collect the following categories of information directly from you when you register for and use our Services:

• Account Information: When you create an account on our web-based application, we collect your email address and password. Alternatively, if you choose to sign up or log in using a third-party provider (such as Google or Microsoft), we receive information from those services as permitted by your settings with the third party. This typically includes your name, email address, and profile picture. We do not receive access to your passwords or sensitive account data from these providers.
• Payment Information:
• For subscriptions to our web-based application, your payment details are collected and processed securely by Stripe, our payment processor. We do not store your full card information on our servers.
• For digital products purchased via Shopify (such as Excel templates), your payment and order information is handled by Shopify’s checkout system. This includes your name, billing address, shipping address (if applicable), payment information (including credit card numbers), email address, and phone number. We do not store full credit card details. This data is shared with Shopify to fulfill orders, process payments, provide invoices or confirmations, and offer customer support.
• Financial Data: You may manually input financial information into the Services, including account names, bank transactions, income, expenses, budget categories, and notes. We do not access or link to your bank accounts or any third-party financial institutions.
• Support and Communication Data: When you contact us for support or customer service, we may collect your email address and any other information you voluntarily provide during the communication.

Information Collected Automatically

We and our service providers may automatically collect certain information when you access or use the Services. This helps us maintain security, analyze performance, and improve your user experience. The technologies used may include cookies, pixels, analytics tools, and server logs.

• Device Information: We collect data about the devices you use to access our Services, including your IP address, browser type and version, operating system, device type, time zone, and unique device identifiers. When you access our Shopify-hosted store, this information is also collected via cookies, log files, web beacons, tags, or pixels to help load the site accurately and perform analytics. This data may be shared with Shopify for processing and optimization.
• Usage Information: We gather information on how you interact with the Services. This includes the pages or screens you view, features you use, date and time of access, time spent on pages, navigation paths, error logs, email open and interaction rates, search terms, referring URLs (i.e., the webpage you were on before visiting us), and product views. This data helps us understand user behavior and improve our offerings.
• Location Information: We may collect or infer general location information, such as city, state, or country, based on your IP address or other technical data, solely to support and improve the Services. We do not collect precise GPS data or track your exact location without your explicit consent.
• Cookies and Tracking Technologies: We use cookies and similar technologies for authentication, analytics, personalization, and advertising across both our app and digital product store. Shopify also uses cookies on our digital product pages to ensure site functionality and enhance your browsing experience. For more information, please refer to our Cookie Policy.

2. HOW WE USE YOUR INFORMATION

We use the information we collect from you to provide, maintain, and improve our Services, to communicate with you, and to ensure the security and integrity of our platform. Specifically, we may use your information to:

• Provide and deliver Services by enabling you to access and use our platform, features, and products, including account creation, subscription management, and personalized content.
• Process transactions, including payments, subscription management, billing, and fulfillment of contracts or agreements.
• Communicate with you by sending transactional communications such as account confirmations, updates, security alerts, billing notifications, and other important service-related messages.
• Provide customer support by responding to inquiries, troubleshooting issues, and addressing feedback.
• Personalize and improve the platform by analyzing your interactions to enhance functionality, user experience, and tailor communications.
• Send marketing communications, with your consent where required, including email and SMS messages containing promotional offers, newsletters, product updates, and other content related to our services.
• Email Marketing: We may send you marketing emails based on your account activity, preferences, or past purchases. Email interaction data (such as open and click-through rates) may be used to optimize our email campaigns. You may unsubscribe at any time by clicking the “unsubscribe” link in any marketing email or by contacting support.
• SMS Marketing: Your phone number may be used to send you promotional offers, service updates, and transactional SMS messages. We may track message interactions (e.g., delivery status, clicks) to improve messaging relevance. You can opt out of SMS marketing at any time by replying "STOP" or by contacting customer support.
• Protect security and prevent fraud by detecting, preventing, and investigating unauthorized access, abuse, or harmful activities.
• Comply with legal obligations and enforce legal rights, including sharing information with law enforcement or regulators when required by law.
• Aggregate and de-identify information for research, insights, and development of new products or services without identifying you personally.
• Combine information collected through the Services with other data sources to improve the Services and for purposes described in this Privacy Policy.
• Use your information for any other purpose disclosed at collection or for which you provide consent.

We process your personal information based on applicable legal grounds, including the performance of a contract with you, our legitimate interests, compliance with legal obligations, and your consent where required.

Behavioral Advertising

We use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For example:

• We use Google Analytics to understand how visitors interact with our Site. You can learn more about how Google handles data here: Google Privacy Policy. You can opt out of Google Analytics here: Google Analytics Opt-out.
• We may share information about your browsing behavior, purchases, or interactions with ads with advertising partners (such as Meta, Google, Bing) via cookies, pixels, or similar technologies.
• We use Shopify Audiences to deliver ads to potential buyers who have engaged with other Shopify merchants. We may share your email address, purchase history, or Site usage data with Shopify Audiences, which may result in you seeing ads for our products on other platforms.

You can opt out of some targeted advertising by using the following links:

• Facebook: Facebook Ad Settings
• Google: Google Ad Settings
• Bing: Bing Ads Settings

Additionally, you can visit the Digital Advertising Alliance's opt-out portal at: optout.aboutads.info.

Lawful Basis

To the extent that the European Union’s General Data Protection Regulation (2016/679) (“GDPR”) is applicable to us in the context of the Services, pursuant to the GDPR, if you are a resident of the European Economic Area (“EEA”), we process your personal information under the following lawful bases:

• Your consent;
• The performance of the contract between you and us;
• Compliance with our legal obligations;
• To protect your vital interests;
• To perform a task carried out in the public interest;
• For our legitimate interests, which do not override your fundamental rights and freedoms.

3. DISCLOSURE OF INFORMATION

We do not sell your personal data under any circumstances. However, we may share your information in the following ways and under the following conditions:

• Service Providers: We may share your information with trusted third-party service providers who perform services on our behalf. These include payment processors such as Stripe, database providers such as Supabase, hosting providers like AWS, email service providers such as Klaviyo, and advertising platforms including Meta, Google, and LinkedIn. These providers are contractually obligated to keep your information confidential and use it only to provide the services we have engaged them for.
• Business Transfers: In the event of a merger, acquisition, reorganization, sale, or other transfer of all or a portion of our assets, your personal information may be among the assets transferred. We will use commercially reasonable efforts to ensure that the acquiring entity agrees to protect your personal data in accordance with this Privacy Policy.
• Legal Compliance and Protection: We may disclose your information to comply with applicable laws, regulations, court orders, or legal processes. We may also share information when necessary to protect our rights, property, or safety, or those of our users or others. This may include exchanging information with other companies and organizations for fraud prevention, security, or credit risk reduction.
• Customer Support and Operations: We may disclose your information as necessary to provide customer support, respond to inquiries, investigate issues, or enforce our Terms of Service and other agreements, including for billing and collection purposes.
• With Your Consent: We may share your personal information with third parties when you have provided explicit consent for us to do so.
• Aggregate or De-Identified Data: We may aggregate or de-identify your information so that it can no longer be linked to you personally. Such data may be used for analytics, research, marketing, or other business purposes, and may be shared with third parties without restriction.

We take your privacy seriously and require that all third parties we share data with adhere to appropriate confidentiality and security standards.

4. DATA RETENTION

We retain your information as long as your account is active, and as necessary to provide our services, meet legal and regulatory obligations, resolve disputes, maintain security, and enforce our agreements.

If You Cancel Your Subscription

If you cancel your subscription but do not delete your account, we will retain your personal and financial data (including budgets, transactions, and account settings) for 12 months. This allows you to reactivate your subscription and resume where you left off, without losing your historical data.

• During this 12-month period, your account remains inactive but accessible if you choose to return.
• After 12 months of inactivity, your data may be permanently deleted from our systems, unless otherwise required by law or necessary for legitimate business purposes.

If You Delete Your Account

If you choose to permanently delete your account, you can do so directly within the app by clicking the “Delete Account” button in your account settings.

Once deleted:

• Your personal and financial data is immediately removed from our production databases.
• Encrypted backups may be retained for up to 7 days and are then permanently destroyed, unless required for legal compliance or to resolve disputes.
• We may retain your email address and minimal metadata for audit logs, security, or legal obligations.

You can delete your account at any time via the app, or contact us if you need assistance.

5. YOUR RIGHTS AND CHOICES

We are committed to giving you control over your personal information.

You have the right to request access to your data and to correct any inaccuracies. You can also delete your account and all associated data at any time—either by using the "Delete Account" button in the app or by contacting us at support@mapyourfinance.com. Please note that deletion is permanent and cannot be reversed.

You may opt out of receiving marketing emails at any time by clicking the unsubscribe link in any promotional message or by emailing us directly. However, you may still receive essential communications related to your account or billing.

Most web browsers allow you to manage cookie settings, including disabling cookies entirely. Please be aware that some features of the service may not function properly if cookies are disabled.

Automated Decision-Making

If you are a resident of the EEA, you have the right to object to processing that is based solely on automated decision-making (including profiling), when such decisions have legal or significant effects on you.

While we do not make decisions solely based on automated processing, our processor Shopify uses limited automated tools to help prevent fraud. These include:

• Temporary blacklisting of IP addresses associated with repeated failed transactions.
• Temporary blacklisting of credit cards associated with blacklisted IPs.

These measures are in place to protect both customers and our platform and do not have significant legal effects.

To exercise any of these rights or ask questions about your data, contact us at support@mapyourfinance.com. We may need to verify your identity before fulfilling certain requests.

6. HOW WE PROTECT YOUR INFORMATION

We take the protection of your personal and financial information seriously and have implemented a range of security measures designed to safeguard your data against loss, misuse, unauthorized access, disclosure, alteration, or destruction.

Our platform is hosted on Supabase, a secure and modern backend-as-a-service built on PostgreSQL. All data exchanged between your browser or app and our servers is protected using HTTPS/TLS encryption, ensuring that your information remains private while in transit.

Sensitive information stored in our systems—such as user credentials or financial data—is encrypted at rest using Supabase’s built-in encryption and key management system (KMS). This ensures that your data remains protected even when stored and adds an extra layer of security to your account.

Access to your personal information is strictly limited to authorized personnel who require it to operate, develop, or improve our services. All such personnel are bound by confidentiality obligations and undergo regular security awareness training.

We also enforce best-practice account protections, including hashed and salted passwords, role-based access controls, and multi-factor. Our systems are regularly monitored for vulnerabilities and unauthorized access attempts, and we take immediate action to mitigate any potential threats.

Despite our efforts, no method of data transmission over the internet or method of electronic storage can be guaranteed to be 100% secure. While we work diligently to protect your information, we cannot guarantee absolute security.

To help us protect your account, we strongly recommend that you:

• Use a strong and unique password.
• Use multi-factor authentication and automatic sign out features.
• Keep your login credentials confidential.
• Notify us immediately if you suspect any unauthorized access to your account.

7. CHILDREN’S PRIVACY

Our Services are intended for use by adults only and are not directed to individuals under the age of 18. We do not knowingly collect, use, or disclose personal information from children under 18 years of age. If you are under 18, please do not use our Services or provide any information about yourself, including your name, email address, or any other personal data.

If we become aware that we have inadvertently collected personal information from a child under 18, we will take immediate steps to delete such information from our records and, if applicable, terminate the associated account.

In line with applicable laws, we are committed to respecting the privacy rights of minors.

If you believe we may have collected information from or about a child under the age of 18, please contact us immediately at support@mapyourfinance.com, and we will take prompt action to investigate and remove the information as required.

8. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, technology, or the features of our Services. When changes are made, we will update the “Last Updated Date” at the top of this document.

If we make any material changes to this Privacy Policy that significantly affect how we collect, use, or share your personal information, we will provide appropriate notice in accordance with applicable legal requirements—such as through email or a prominent notice within the app.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Continued use of the Services after any updates constitutes your acceptance of the revised Privacy Policy.

9. CONTACT INFORMATION

If you have any questions or comments about this Privacy Policy, our privacy practices, please contact us at support@mapyourfinance.com.