Privacy Policy

Recurna Flow is operated by a Canadian company and is subject to Canada's Personal Information Protection and Electronic Documents Act (PIPEDA).

What data we collect

Recurna Flow collects the data you enter into the app and a small amount of identity data required to operate your account:

  • Financial data — accounts, transactions, recurring transactions, categories, and forecasts you create
  • Identity — your name, email address, and profile picture are held only by Clerk, our authentication provider. Recurna's own database never stores them. We keep a single internal account identifier mapped to your Clerk account so we can associate your financial data with you.
  • Session data — authentication tokens used to keep you signed in
  • Billing data — if you subscribe to Recurna Flow Pro, your Stripe customer ID and subscription status are stored in our database. We do not store your card number or payment details — those are held by Stripe.

We do not connect to your bank accounts. All financial data is manually entered by you.

Where your data is stored

Your financial data is stored in a PostgreSQL database hosted on Neon (serverless PostgreSQL, US region). The application backend runs on Cloudflare Workers and the frontend is served from Cloudflare Pages. All data is processed within Cloudflare's global network.

Your identity (email, name, profile picture) is stored only by Clerk in the United States — never duplicated in Recurna's Neon database, which holds only an internal account identifier linked to your Clerk account. Billing data is stored by Stripe in the United States.

Third-party processors

We use the following third-party services that may access your data:

  • Clerk — handles authentication and identity management. Clerk stores your email address, name, and profile image. See Clerk's privacy policy.
  • Stripe — handles payments and subscription management for Recurna Flow Pro. Stripe stores your customer ID, billing email, and payment method details. No card data passes through our servers. See Stripe's privacy policy.
  • Sentry — error tracking to help us find and fix bugs. Error reports may include technical details about your browser, device, and the actions that led to an error. Error data is retained for 90 days. See Sentry's privacy policy.
  • PostHog — product analytics to understand how the app is used. Analytics are only active when you accept browser storage consent. No financial data is ever included in analytics events. Data is processed on PostHog's EU cloud. See PostHog's privacy policy.

We do not use advertising networks or sell your data.

Canadian privacy law (PIPEDA)

Recurna Flow is operated by a Canadian company and is subject to Canada's Personal Information Protection and Electronic Documents Act (PIPEDA). Under PIPEDA, you have the right to:

  • Know what personal information we hold about you and how we use it
  • Request access to your personal information
  • Request correction of inaccurate information
  • Withdraw consent for non-essential data processing
  • Lodge a complaint with the Office of the Privacy Commissioner of Canada (OPC) if you believe your rights have been violated

Our privacy practices are designed to meet PIPEDA's accountability, openness, and consent principles.

EU and international users (GDPR)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR) or equivalent laws:

  • Right of access — request a copy of the personal data we hold about you
  • Right to rectification — request correction of inaccurate data
  • Right to erasure — request deletion of your data
  • Right to restriction — request that we limit processing of your data
  • Right to data portability — receive your data in a structured, machine-readable format
  • Right to object — object to processing based on legitimate interests

Our legal basis for processing your data is the performance of a contract (providing the Recurna Flow service you signed up for) and, for analytics, your explicit consent.

Local storage and cookies

Recurna Flow uses your browser's local storage to remember UI preferences such as your selected accounts and forecast view settings. When you accept browser storage consent, Recurna Flow also uses PostHog to collect anonymous product analytics. No financial data is ever sent to PostHog. You can change or withdraw this consent at any time through the app's consent banner.

Clerk (our authentication provider) sets cookies required for sign-in sessions. These are strictly necessary and cannot be disabled while you are signed in.

A full cookie consent banner for managing optional analytics consent is coming soon as part of our ongoing privacy improvements.

Data retention

Your financial data is kept for as long as your account is active. "Delete my account" on the account page permanently removes everything: all financial data, your internal account record, and your Clerk identity (which holds your email, name, and profile picture) — in a single, irreversible operation. After deletion you cannot sign back in.

Your rights and how to exercise them

  • Access — all your financial data is visible in the app at all times; what you see is what we store.
  • Export — download a complete JSON export of all your data from the account page.
  • Deletion — "Delete my account" on the account page permanently deletes everything. This is immediate, complete, and irreversible — no separate request needed.

Data isolation

All data is scoped to your user account. You cannot see other users' data and they cannot see yours. Every database query is filtered by your authenticated user ID.

Breach notification

In the event of a data breach that affects your personal information, we will notify you by email within 72 hours of becoming aware of the breach, in accordance with PIPEDA breach reporting requirements.

Changes to this policy

We may update this privacy policy from time to time. If we make material changes, we will notify you through the app or by email. Continued use of the service after changes take effect constitutes acceptance of the updated policy.

Contact

If you have questions about this privacy policy, your data, or to exercise any of your rights under PIPEDA or GDPR, contact us at privacy@recurna.ca.