1. Who We Are
Sente Technologies ("we," "us," "our") operates the Sente application. This policy explains how we collect, use, and protect your personal information.
2. What We Collect
Account information:
- — Email address (for authentication)
- — Name (provided during onboarding)
- — Currency preference
- — Income information (amount, period, payday)
Financial data you provide:
- — Transaction descriptions and amounts
- — Behavioral tags and classifications
- — Saving goals and targets
- — Net worth entries (assets, liabilities)
- — Category budgets
Usage data:
- — Ma chat conversations
- — Zenith Moment interactions (proceed, reflect, cancel)
- — Regret audit ratings
- — Feature usage patterns
We do NOT collect:
- — Bank account numbers or credentials
- — Credit card numbers
- — Social Security or national ID numbers
- — Location data or GPS coordinates
- — Contact lists or phone data
3. How We Use Your Data
- — To provide the Service: your financial data powers Ma's analysis, pattern detection, insights, and behavioral scoring.
- — To improve Ma: your interaction patterns help us refine Ma's intelligence. We do NOT use your individual data to train AI models. Your data stays yours.
- — To communicate: account-related emails, feature updates, and waitlist notifications.
4. Third-Party Services
We use the following third-party services:
- — Supabase: Authentication and database hosting. Your data is stored in Supabase-managed PostgreSQL databases with encryption at rest. Hosted in Singapore (ap-southeast-1).
- — OpenAI: Ma's chat feature sends conversation context (your name, recent transactions, goals, and chat messages) to OpenAI's API to generate responses. OpenAI's data usage policy applies to these interactions. We do not send your full financial history — only the context needed for the current conversation.
- — Railway: Application hosting. No user data is stored on Railway's servers — it only runs the application code.
- — Exchange rate API: Currency conversion uses a public API. Only the currency codes are sent — no personal data.
5. Data Security
- — All data is encrypted in transit (HTTPS/TLS)
- — Database is encrypted at rest (Supabase default)
- — Row Level Security (RLS) ensures users can only access their own data
- — API endpoints are authenticated and rate-limited
- — Sensitive data (financial amounts, income) is never logged to server logs
- — The Zenith Moment timer is enforced server-side to prevent bypass
6. Data Retention
Your data is retained for as long as your account is active. If you delete your account, all personal data is permanently removed within 30 days. Anonymized, aggregated data (e.g., "X% of users reduced impulse spending") may be retained for product improvement.
7. Your Rights
You have the right to:
- — Access your data (export via CSV)
- — Correct inaccurate data in your profile
- — Delete your account and all associated data
- — Restrict processing by disabling specific features
- — Object to how your data is used by contacting us
To exercise any of these rights, contact privacy@sentefi.app.
8. Cookies
Sente uses essential cookies for authentication session management. We do not use advertising cookies, tracking pixels, or analytics cookies. No data is shared with advertising networks.
9. Children
Sente is not intended for users under 18. We do not knowingly collect data from minors. If we discover a user is under 18, their account will be terminated and data deleted.
10. Data Transfers
Your data is primarily stored in Singapore. If data is transferred to other regions (e.g., OpenAI servers in the US for chat processing), appropriate safeguards are in place.
11. Changes to This Policy
We may update this policy from time to time. Material changes will be communicated via email. Continued use after changes constitutes acceptance.
12. Contact
For privacy-related questions: privacy@sentefi.app
Data Protection Officer: dpo@sentefi.app