Privacy Policy
Last updated Wed, 27 May 2026
PFinTrack is a personal finance tracker that runs entirely in your browser. This page explains what data we use and how we keep it safe.
In short
- Your financial data is never sent to our servers
- Drive backups are locked with your own passphrase
- We only access your email and one private backup folder on your Drive
- You can disconnect and delete your data anytime
Data we collect
All your wallets, transactions, loans, and reports live in your browser's storage. PFinTrack has no central server, so your financial data is never sent anywhere. The only identifier we use is a random code that also stays on your device.
Google user data we access
PFinTrack only touches Google user data when you choose to connect Google Drive for backup, and it requests exactly two things:
- Your Google account email address, through the 'openid' and 'email' permissions: we use it to show which account is connected on the Backup screen, and we store it on your device.
- A private application folder on your Google Drive, through the 'https://www.googleapis.com/auth/drive.appdata' permission: we use it to upload, list, download, and delete the encrypted backup files that PFinTrack itself created. That folder is hidden from your normal Drive view.
We do not request access to your existing Drive files, Google Photos, Gmail, Calendar, or Contacts.
Google Drive integration
If you want, you can connect PFinTrack to Google Drive for backup. Before each upload, the backup file is locked on your device using a passphrase that only you know. The file is stored in a private app-only folder, hidden from the regular Drive view. We don't hold the key to unlock your backup, and neither does Google.
What we never touch
Beyond your email address and your PFinTrack backup folder, we cannot see any other Google data. We have no access to your existing Drive files, files you didn't create with PFinTrack, Google Photos, Gmail, Calendar, or Contacts.
How we share and protect it
We never sell, rent, or transfer your Google user data to anyone, and we never use it for advertising. No human at PFinTrack reads it, and it is never used to develop, improve, or train any artificial intelligence or machine-learning models. Your Google data is used only to provide the backup feature you asked for.
Limited Use disclosure
PFinTrack's use and transfer of information received from Google APIs to any other app adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Anonymous identifier
On first use, PFinTrack creates a random code in your browser to keep data separate across devices. It is not your name, email, phone number, or any personal information.
Revoking access
You can disconnect Google Drive anytime:
- From Settings > Backup.
- From your Google Account > Security > Third-party apps.
When you disconnect, PFinTrack deletes the stored access token from the server and clears the connected email from your device. If you reset your backup passphrase, older backups become unreadable because only you hold the key.
How long backups are kept
PFinTrack automatically keeps your 10 most recent backups per device. Older ones are removed automatically when a new backup uploads. You can also delete them manually from Backup History. If you disconnect Drive, the backup files stay in your Drive until you delete them yourself.
Contact
Questions, feedback, or want to report an issue? Email us at pfintrack@gmail.com.