Back to home

Privacy Policy

Last updated: 27 November 2025

Our commitment to your privacy

Netsum is built on the principle that your financial data is yours alone. We don't sell your data, we don't show you ads, and we don't use third-party tracking scripts. This privacy policy explains exactly what data we collect, why we need it, and how we protect it.

What we collect

Account information

  • Email address: Required for account creation and login
  • Password: Securely hashed, never stored in plain text
  • Name: Optional, only if you choose to provide it

Financial data

  • Assets and liabilities: Account names, values, currencies, and categories you manually enter
  • Historical snapshots: Records of your net worth over time
  • Notes and tags: Any additional information you choose to add

Usage data

  • Login activity: When you access your account
  • Feature usage: Which parts of the app you use (anonymized)
  • Device information: Browser type and operating system (for compatibility)

What we DON'T collect

  • Bank credentials: We never ask for or store your banking login details
  • Bank connections: We don't connect to your bank accounts
  • Tracking cookies: No third-party advertising or tracking scripts
  • Personal identification: No national insurance numbers, addresses, or phone numbers
  • Behavioral profiling: We don't build profiles of your spending habits for marketing

How we use your data

We use your data for one purpose only: to provide you with the Netsum service.

  • ✓ Display your financial dashboard
  • ✓ Calculate your net worth and trends
  • ✓ Send you essential account emails (password resets, security alerts)
  • ✓ Improve the product based on anonymized usage patterns
  • ✓ Provide customer support when you contact us

We will never sell your data to third parties, show you targeted ads, or share your information with advertisers.

How we protect your data

Infrastructure security

  • SOC 2 certified hosting: Your data is stored on SOC 2 Type II certified infrastructure
  • Database encryption: All data is encrypted at rest using industry-standard protocols
  • HTTPS only: All data transmission is encrypted using TLS 1.3
  • Regular backups: Automated daily backups stored securely

Application security

  • Password hashing: Passwords are hashed using bcrypt with salt
  • Row-level security: Database policies ensure users can only access their own data
  • Regular security audits: We monitor for vulnerabilities and apply patches promptly

Data retention and deletion

Your data belongs to you. You can export or delete it at any time.

  • Export: Download all your data as CSV files from your account settings
  • Deletion: Delete your account and all associated data from your account settings
  • Retention: When you delete your account, all personal and financial data is permanently removed within 30 days
  • Backups: Deleted data is removed from backups within 90 days

Third-party services

We use a minimal set of trusted third-party services to operate Netsum:

  • Database hosting: SOC 2 Type II certified infrastructure in the EU
  • Vercel: Application hosting and CDN
    View Vercel Privacy Policy
  • Email service: Transactional emails for account management (future)

We do not use Google Analytics, Facebook Pixel, or any advertising/tracking platforms.

Cookies

We use only essential cookies required for the app to function:

  • Authentication cookie: Keeps you logged in (required)
  • Session cookie: Maintains your session state (required)

We do not use tracking cookies, advertising cookies, or analytics cookies.

Your rights (UK GDPR)

Under UK GDPR, you have the following rights:

  • Right to access: Request a copy of all data we hold about you
  • Right to rectification: Correct any inaccurate data (you can do this directly in-app)
  • Right to erasure: Delete your account and all data
  • Right to data portability: Export your data in a machine-readable format (CSV)
  • Right to object: Object to processing of your data (contact us at support@netsum.app)

To exercise any of these rights, email us at support@netsum.app

International data transfers

Your data is stored on servers located in the European Union. If you access Netsum from outside the EU/UK, your data may be transferred internationally. We ensure all transfers comply with UK GDPR requirements through appropriate safeguards.

Children's privacy

Netsum is not intended for use by anyone under the age of 18. We do not knowingly collect data from children. If you believe we have inadvertently collected data from a child, please contact us immediately.

Changes to this policy

We may update this privacy policy from time to time. If we make significant changes, we'll notify you by email at least 30 days before the changes take effect. Continued use of Netsum after changes constitutes acceptance of the updated policy.

Contact us

If you have any questions about this privacy policy or how we handle your data, please contact us:

Email: support@netsum.app

Privacy-first financial tracking

Try Netsum