Privacy Policy

1. What we collect

CashFrame collects the minimum data necessary to provide cash flow forecasting:

• Your email address and password (for account authentication via Supabase)
• Business settings you enter: current balance, churn rate, alert threshold, horizon
• Manual expenses you add
• Stripe account ID and subscription data (when you connect Stripe)

2. How we use your data

Your data is used solely to generate your cash flow forecast and display it in your dashboard. We do not sell, share, or use your data for advertising. Subscription data pulled from Stripe is used only to calculate inflows in your forecast.

3. Stripe data

When you connect your Stripe account, CashFrame reads your active subscriptions to populate your forecast. We request only the permissions needed:

• connected_account_read — to identify your Stripe account
• subscription_read — to read active subscriptions for forecasting
• event_read — to keep subscription data fresh via webhooks

We do not access payment methods, customer PII, or any data beyond what is needed for forecasting.

4. Data storage

Your data is stored in Supabase (PostgreSQL) with row-level security. Only you can access your own data. All data is stored in the US.

5. Data retention and deletion

You can delete your account at any time by contacting us. Upon deletion, all your data — including profile settings, expenses, and synced subscription data — will be permanently removed.

6. Third-party services

• Supabase — authentication and database hosting
• Stripe — payment and subscription data (when connected)
• Vercel — application hosting

7. Contact

Questions about this policy? Email us at tradespan007@gmail.com.