1. Introduction

Tidy Statement ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we handle your data when you use our bank statement conversion service (the "Service").

2. Data We Process

When you upload a bank statement image, we process the contents of that image solely to extract transaction data and return it to you as structured output. We do not retain your uploaded files, the extracted data, or any copies of them after your session ends.

3. Sub-Processors

To perform optical character recognition on your statement, we send the image to our AI provider (OpenAI, via the Vercel AI Gateway). OpenAI processes the image only to generate the extraction response and does not train models on API inputs. Your file passes through OpenAI's infrastructure for the duration of the request only.

4. Local Storage

We store your selected language preference in your browser's local storage so that the interface appears in the correct language on your next visit. This data never leaves your device.

5. Waitlist Emails

If you voluntarily join our waitlist, we store the email address you provide for the sole purpose of notifying you when paid plans launch. You can request deletion at any time by contacting us.

6. Your Rights (GDPR)

If you are in the European Economic Area or United Kingdom, you have the right to access, rectify, or erase any personal data we hold about you, to restrict or object to its processing, and to data portability. Since extracted transaction data is not retained, most of these rights apply only to waitlist email addresses.

7. Security

Uploads travel over encrypted HTTPS connections. Files are processed in-memory on our serverless infrastructure and are not written to disk or persistent storage.

8. Contact

If you have any questions about this Privacy Policy or want to exercise your data rights, please contact us at privacy@tidystatement.com.