Skip to main content

Data privacy

GrapeVest is manual-first — we don't link banks and we don't scrape your accounts. You enter data deliberately, and you decide where it's stored.

End-to-end encryption (zero-knowledge)

Your plan is encrypted on your device before it reaches the cloud. The key is derived from your password and is never sent to the server — the database holds only ciphertext. In practice this means the app's author and the database administrator cannot read your financial data: they see only an unreadable string of characters.

When you share the plan with a partner (Duo), the key is shared securely with the invited person only. To us and to third parties, the data stays encrypted.

Recovery code

Since the key comes from your password, we don't hold it in any form and can't recover it for you. When you create your account we show a one-time recovery code — store it somewhere safe. It lets you regain access if you forget your password. If you lose both your password and the code (and, in a Duo plan, your partner also loses access), the data can't be decrypted. That's the honest price of real privacy: since nobody but you holds the key, nobody — including us — can open your data through a back door.

Where your data lives

  • Local mode — data only in your browser (localStorage). Nothing leaves the device, no account.
  • Cloud mode — the household's data goes to the database in encrypted form. Only members with the key can read the content; the operator sees only ciphertext.

Data minimisation

  • Your email is kept only in the authentication layer (Supabase Auth); the app's tables link everything by user id.
  • We don't collect data that isn't needed to run the plan.

Analytics and cookies

  • Essential cookies (session, theme, your consent choice) are always active.
  • Analytics loads only after you consent in the cookie banner; without consent no tracking scripts are loaded.

Your rights (GDPR)

  • Deleting your account removes any household where you're the only member — we don't leave orphaned financial data behind.
  • Leaving a shared plan revokes your access to it.

Privacy contact

contact@grapevest.pl