Security & Privacy

Honest about how this works.

No “bank-grade security” claims. Just a specific, honest explanation of what we do and don't do with your data.

📁

Your CSV never reaches our servers

When you import a bank statement, it's parsed entirely in your browser. Only the structured transaction rows — dates, amounts, descriptions — are sent to our database. The raw file stays on your device.

🔑

We never ask for your bank login

CSV-only. No OAuth bank connections, no stored credentials, no account numbers. You export a file from your own bank app and import it here.

👤

Your data is yours alone

Every transaction, budget, and account is scoped to your user ID. No admin view of financial data. No aggregate reporting that could identify you.

🗑️

Hard delete on request

If you delete your account, every transaction, rule, budget, account, and your user record is permanently deleted in a single database operation. Nothing is archived.

How your data flows

When you export a CSV from your bank and drop it into Beholdr, PapaParse reads the file locally in your browser. It extracts the rows — date, description, amount — and sends only those structured rows to our API. The CSV file itself is never transmitted.

Once in our database, your transactions are scoped to your user ID. Every query filters by that ID. There are no cross-user queries, no admin financial views, and no global transaction tables.

What we store

Transaction rows (date, amount, description, category, account), accounts (name, type, current balance), budget limits, category correction rules, and your user record (email, authentication tokens).

We do not store: your CSV file, your bank login, your full account numbers, or any financial data in server logs.

Infrastructure

Beholdr runs on Vercel (TLS enforced in transit) with a PostgreSQL database hosted on Neon (encrypted at rest). Authentication is handled by NextAuth v5 with secure, httpOnly session cookies. We don't use third-party analytics that could expose your financial patterns.

Deleting your account

Go to Settings → Delete account. A confirmation modal explains what will be deleted. When confirmed, a single database transaction permanently removes your transactions, accounts, budgets, rules, and user record. There is no archive, no soft delete, and no retention period.

Beholdr is a personal financial tracking tool, not financial advice. All calculations, projections, and suggestions are informational only. All financial decisions remain your own.

Clear conscience included.

Free to start. No credit card. No bank login.

Start for free →

Export from your bank. Import. Done.