Last updated:
This Privacy Policy explains how Keepin’ Tracks (“we”, “us”) handles personal information when you use our websites and applications — including the Personal and Business apps.
We operate from Quebec, Canada and design for Quebec Law 25 and PIPEDA (federal privacy law).
Summary
- We collect only what we need to run the Services you use.
- Personal and Business data are stored separately — they do not share one database.
- We use encryption for sensitive fields where implemented (including optional post-quantum options).
- We do not sell your personal information.
- We do not use your journal, wealth, or health-related content to train public AI models.
- You can export and delete your Personal account from Settings.
What we collect
Account and sign-in
| Data | Purpose |
|---|---|
| Email address | Sign-in, account identity, transactional email |
| Language preference | Display the app in English or French |
| Session metadata (e.g. browser, IP at sign-in) | Security and abuse prevention |
| Organization name and role (Business) | Multi-user access within your org |
Content you enter
Depending on features you use, this may include: journal entries, goals, wealth accounts and transactions, exercise and sleep logs, business customers and invoices, uploaded files (photos, audio, travel documents, attachments), and similar self-tracking data.
You choose what to enter. Do not enter information you are not allowed to hold (e.g. employee health data without legal basis).
Payments (optional)
| Data | Purpose |
|---|---|
| Stripe customer id, subscription status | Supporter tips, Wealth Sync billing |
| Billing events from Stripe webhooks | Activate or end entitlements |
Card numbers and full payment details are stored by Stripe, not on our servers.
Bank sync (optional — Personal)
If you subscribe to Wealth Sync and connect a bank:
| Data | Purpose |
|---|---|
| Encrypted Plaid access token | Read-only transaction sync |
| Institution name, account masks, mappings | Link bank accounts to Wealth accounts |
| Bank transaction ids, amounts, dates, memos | Import into Wealth (deduplicated) |
Credentials stay with Plaid and your bank. We cannot move money.
Affiliate shop (Personal)
When you click a product link, we may log that a link was clicked to improve the catalog. We do not receive your purchase details from merchants.
Support and feedback
If you report a bug or send feedback, we store your message and account context needed to respond.
How we use information
We use personal information to:
- Provide, secure, and improve the Services
- Authenticate you and enforce account limits
- Process optional payments and subscriptions
- Sync bank transactions when you enable Wealth Sync
- Respond to support requests
- Comply with law and protect against abuse
We do not use your content for advertising profiling.
Legal bases (Quebec / Canada)
Depending on context, we rely on:
- Contract — providing the Services you signed up for
- Consent — optional bank sync, supporter checkout, affiliate click logging where required
- Legitimate interests — security, fraud prevention, and service improvement (balanced against your rights)
You may withdraw consent for optional features (e.g. disconnect bank sync, cancel subscription) without affecting core free features.
Where data is stored
Your data is hosted with Cloudflare (Canada/US regions as configured by our infrastructure provider). Encrypted backups and file uploads may use Cloudflare R2 object storage tied to your account.
Personal and Business planes use separate storage and authentication — no shared database between them.
Subprocessors
We use trusted providers who process data on our behalf:
| Provider | Role | Privacy |
|---|---|---|
| Cloudflare | Hosting, email delivery, object storage | Cloudflare Privacy |
| Stripe | Payments (supporter tips, Wealth Sync) | Stripe Privacy |
| Plaid | Bank connection and transaction sync (optional) | Plaid Privacy |
We may update this list as the Services evolve.
Cookies and similar technologies
We use essential cookies and browser storage for:
- Keeping you signed in (httpOnly session cookie)
- Remembering language preference
When enabled, Cloudflare Turnstile may set cookies or use browser signals on sign-in pages to reduce abuse.
We do not use third-party advertising cookies on the apps today. If we add analytics or non-essential cookies later, we will update this policy and ask for consent where required.
Email (CASL)
We send transactional email only for purposes you expect:
- Magic sign-in links
- Email change confirmation
- Security or account notices
We do not send marketing email without your express consent. Unsubscribe links apply to any future promotional messages if we introduce them.
Retention
| Category | Retention |
|---|---|
| Account and content | Until you delete your account (or org data is removed by an admin) |
| Sessions | Up to 30 days of sliding activity, then purged |
| Magic link tokens | Short-lived; removed after use or expiry |
| Imported bank transactions | Until you delete them or your account |
| Payment records | As required for tax/accounting and Stripe reconciliation |
Your rights
Under Quebec Law 25 and PIPEDA, you may have the right to:
- Access personal information we hold about you
- Correct inaccurate information
- Delete your account and associated data (Personal: Settings → Your data)
- Withdraw consent for optional processing
- Portability — export a copy of your data (Personal export available; more domains added over time)
To exercise rights or ask questions: [email protected]. We will respond within timeframes required by law.
Children
The Services are not directed at children under 16. We do not knowingly collect information from children. Contact us if you believe a child has provided personal information.
International users
The Services are designed for users in Canada (especially Quebec). If you access from elsewhere, your information may be processed in Canada and the United States through our subprocessors.
Security
We use encryption in transit (HTTPS), encrypted sessions, field-level encryption for sensitive data, access controls, and tenant isolation between accounts (and between Personal and Business). No method is 100% secure — report concerns to [email protected].
Breaches
If a breach poses a risk of serious injury under Quebec Law 25, we will notify affected users and the Commission d’accès à l’information du Québec as required (typically within 72 hours of becoming aware).
Changes
We may update this Privacy Policy. The “last updated” date at the top will change. Material updates may be communicated by email or in-app notice.
Contact
Privacy questions: [email protected]
See also: Terms of Service