← Back to Home

Privacy Policy

Last updated: December 22, 2025

1. Introduction

BillManager ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our bill tracking and financial management service ("the Service").

Please read this Privacy Policy carefully. By using the Service, you consent to the practices described in this policy. If you do not agree with this policy, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide when using the Service:

  • Account Information: Username, email address, and password when you register
  • Financial Data: Bill names, amounts, due dates, payment records, and account labels you enter into the Service
  • Profile Information: Any additional information you choose to add to your profile
  • Communications: Information you provide when contacting our support team
  • Payment Information: When you subscribe to a paid plan, payment details are processed by our payment provider (Stripe) - we do not store your full credit card number

2.2 Information Collected Automatically

When you use the Service, we automatically collect certain information:

  • Usage Data: Pages viewed, features used, actions taken within the Service
  • Device Information: Device type, operating system, browser type, and version
  • Log Data: IP address, access times, and referring URLs
  • Analytics Data: Aggregated usage statistics collected through our analytics platform

2.3 Cookies and Similar Technologies

We use minimal cookies essential for the Service to function:

  • Session Cookies: To maintain your logged-in state
  • Security Cookies: To prevent cross-site request forgery and other attacks

We use Umami for privacy-focused analytics, which does not use cookies and does not track personal information.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Process your transactions and manage your subscription
  • Send you service-related communications (account verification, security alerts, billing notices)
  • Respond to your comments, questions, and support requests
  • Monitor and analyze usage patterns to improve user experience
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations

We do not:

  • Sell your personal information to third parties
  • Use your financial data for advertising purposes
  • Share your bill details with other users without your consent
  • Access your data except when necessary to provide support or maintain the Service

4. Data Storage and Security

4.1 Where We Store Your Data

Your data is stored on secure servers. We use industry-standard encryption for data in transit (TLS/SSL) and implement appropriate security measures for data at rest.

4.2 Data Retention

We retain your data as follows:

  • Active Accounts: Data is retained for as long as your account is active
  • Deleted Accounts: Data is deleted within 30 days of account deletion request
  • Backups: Backup data may be retained for up to 90 days for disaster recovery
  • Legal Requirements: Some data may be retained longer if required by law

4.3 Security Measures

We implement various security measures including:

  • Encryption of data in transit and at rest
  • Secure password hashing
  • Regular security audits and updates
  • Access controls and authentication requirements
  • Monitoring for suspicious activity

5. Third-Party Services

We use the following third-party services that may process your data:

5.1 Stripe (Payment Processing)

We use Stripe to process payments. When you subscribe to a paid plan, Stripe collects and processes your payment information according to their Privacy Policy. We receive only limited payment information (last 4 digits, expiration date, billing address) necessary to manage your subscription.

5.2 Umami (Analytics)

We use Umami for privacy-focused website analytics. Umami:

  • Does not use cookies
  • Does not collect personal information
  • Does not track users across websites
  • Complies with GDPR, CCPA, and PECR

5.3 Email Services

We may use third-party email services to send transactional emails (account verification, password reset, billing notifications). These services process your email address solely for delivery purposes.

6. Data Sharing

We may share your information in the following circumstances:

  • With Your Consent: When you explicitly authorize sharing with other users (e.g., shared bill groups)
  • Service Providers: With third-party vendors who assist in operating our Service, subject to confidentiality agreements
  • Legal Requirements: When required by law, court order, or governmental authority
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with notice to users
  • Protection of Rights: To protect the rights, property, or safety of BillManager, our users, or others

7. Your Rights and Choices

7.1 Access and Portability

You have the right to access your personal data. You can export your data at any time using the export features in the Service (CSV and PDF formats available).

7.2 Correction

You can update or correct your personal information through your account settings at any time.

7.3 Deletion

You can request deletion of your account and associated data by contacting us at [email protected]. We will process deletion requests within 30 days, subject to legal retention requirements.

7.4 Opt-Out

You can opt out of:

  • Marketing Communications: Use the unsubscribe link in any marketing email
  • Analytics: Our analytics platform (Umami) respects Do Not Track signals

7.5 Data Restriction

You may request that we restrict processing of your personal data in certain circumstances, such as while we verify a correction request.

8. International Data Transfers

If you access the Service from outside the United States, your data may be transferred to and processed in the United States or other countries. We ensure appropriate safeguards are in place for international data transfers in compliance with applicable laws.

9. Children's Privacy

The Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If we learn we have collected information from a child under 18, we will delete that information promptly.

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the CCPA:

  • Right to Know: Request information about categories and specific pieces of personal information collected
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: We do not sell personal information, so this right does not apply
  • Right to Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise these rights, contact us at [email protected]. We will verify your identity before processing your request.

11. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the GDPR including:

  • Right of Access: Obtain confirmation and access to your personal data
  • Right to Rectification: Correct inaccurate personal data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restriction: Restrict processing of your personal data
  • Right to Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests
  • Rights Related to Automated Decision-Making: We do not use automated decision-making

Our legal basis for processing your data includes: performance of our contract with you, your consent, our legitimate interests in operating the Service, and compliance with legal obligations.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date
  • Sending an email notification for significant changes

We encourage you to review this Privacy Policy periodically. Your continued use of the Service after any changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us:

Email: [email protected]
Website: https://billmanager.app

For data protection inquiries or to exercise your privacy rights, please email [email protected] with "Privacy Request" in the subject line.