Privacy Policy
Last Updated: 16 November 2025
1. Introduction
Welcome to MyBankScan. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our online service.
MyBankScan is an individually operated online service that provides AI-powered financial analysis tools to help you manage your finances more effectively. We take your privacy seriously and operate in accordance with Australian Privacy Principles.
By using MyBankScan, you agree to the collection and use of information in accordance with this Privacy Policy.
2. Information We Collect
2.1 Account Information
When you create an account with MyBankScan, we collect:
- Email address: Used for account creation, authentication, and communication
- Name: Used to personalize your experience and identify your account
This information is collected solely for the purpose of distinguishing your account from other users and providing you with access to our services.
2.2 Financial Data
When you use our PDF processing features, we handle your bank statement data as follows:
- Transaction data: Date, description, merchant, location, debit/credit amounts, balance, and categories extracted from your bank statements
3. PDF Document Handling
🔒Important: We Never Store Your PDF Files
Your bank statement PDF files are NEVER stored on our servers.
Here's how our PDF processing works:
- You upload your PDF bank statement to our service
- The PDF is temporarily processed in memory to extract transaction data
- Only the extracted transaction information (dates, amounts, merchants) is saved to your account
- The original PDF file is immediately discarded and never written to disk
This means we never have access to your full bank statement documents, account numbers, or any sensitive information beyond the individual transaction details you choose to analyze.
4. How We Store Your Data
4.1 Transaction Data
The transaction information extracted from your bank statements is stored securely in our database (Supabase) and:
- Belongs exclusively to you: Your transaction data is private and accessible only by you
- Is fully under your control: You can delete any or all of your transaction data at any time through your account settings
- Is encrypted: All data is encrypted both in transit and at rest using industry-standard encryption
- Is isolated: Your data is stored in separate database tables that are accessible only to your account
4.2 Data Location
Your data is stored using Supabase, a secure and reliable database platform. Supabase employs enterprise-grade security measures including encryption, regular backups, and access controls to protect your information.
5. Third-Party Services
To provide our services, we work with the following trusted third-party providers:
5.1 OpenAI
We use OpenAI's API to provide AI-powered analysis and categorization of your transactions. When using these features:
- Transaction data is sent to OpenAI for processing and analysis
- OpenAI processes this data according to their own privacy policy and data usage terms
- We recommend reviewing OpenAI's Privacy Policy for more information
5.2 Supabase
We use Supabase as our database and authentication provider. Supabase stores your account information and transaction data securely. Learn more at Supabase Privacy Policy.
5.3 Stripe (Future Implementation)
We plan to use Stripe for payment processing when we introduce paid features. When this is implemented:
- Stripe will handle all payment card information securely - we never see or store your full card details
- Payment processing will be governed by Stripe's Privacy Policy
7. Data Security
We implement appropriate technical and organizational security measures to protect your personal information:
- Encryption: All data is encrypted in transit (using HTTPS/TLS) and at rest
- Access controls: Strict authentication and authorization mechanisms ensure only you can access your data
- No sensitive data storage: We do not store your PDF bank statements or full account numbers
- Regular security updates: We keep our systems up-to-date with the latest security patches
- Secure infrastructure: We use Supabase's enterprise-grade security infrastructure
While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but commit to using industry-standard practices.
8. Your Privacy Rights
You have the following rights regarding your personal data:
8.1 Access and Correction
You can access and update your account information at any time through your account settings.
8.2 Data Deletion
You have the right to delete your data:
- Delete individual transactions or all transaction data through your account
- Request complete account deletion by contacting us at mybankscan@gmail.com
- Upon account deletion, all your personal data and transaction information will be permanently removed from our systems
8.3 Data Portability
You can export your transaction data from your account at any time.
8.4 Complaints
If you have concerns about how we handle your personal information, please contact us first at mybankscan@gmail.com. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).
9. Australian Privacy Principles
MyBankScan is committed to handling personal information in accordance with the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth). We adhere to principles including:
- Open and transparent management of personal information
- Providing individuals with the option of not identifying themselves or using a pseudonym where practicable
- Collecting only necessary personal information
- Using and disclosing information only for stated purposes
- Maintaining data quality and security
- Providing access to and correction of personal information
10. Service Model and Payments
MyBankScan operates on a freemium model. We currently offer free access to our core features and may introduce premium paid features in the future. When paid features are introduced, we will:
- Clearly communicate pricing and feature differences
- Process payments securely through Stripe (your payment information is never stored on our servers)
- Update this Privacy Policy to reflect any additional data processing related to payments
11. Children's Privacy
MyBankScan is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately at mybankscan@gmail.com.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make changes:
- We will update the "Last Updated" date at the top of this page
- For material changes, we will notify you via email or through a prominent notice on our service
- Your continued use of MyBankScan after changes constitutes acceptance of the updated Privacy Policy
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Email: mybankscan@gmail.com
Service: MyBankScan
Response Time: We aim to respond to all privacy inquiries within 5 business days
14. Acknowledgment
By using MyBankScan, you acknowledge that you have read and understood this Privacy Policy and agree to its terms regarding the collection, use, and disclosure of your personal information.