Credits is an independent, personal project that helps you track recurring credit card statement credits and expiring offers across your card wallet. It is not affiliated with, endorsed by, or sponsored by any credit card issuer, Plaid Inc., Google, or Slack Technologies, LLC. This policy explains what information Credits collects, how it's used, and the choices you have.
We use this information to operate the app: showing your dashboard, tracking expiration windows, matching bank transactions to benefits, sending Slack digests and Google Tasks reminders you've opted into, and improving the product based on aggregate usage patterns. We do not sell your information, and we do not use your financial or benefit data for advertising.
Data is stored in a Postgres database (via Supabase) protected by row-level security, so each account can only read its own data. Plaid access tokens and Google refresh tokens are never stored in plain form — they're encrypted via Supabase Vault and can only be decrypted by server-side functions, never by the application directly or by other users. Database backups are encrypted and retained on a rolling basis.
Credits relies on the following third parties, each of which processes data under its own privacy policy:
We don't sell or rent your data. Information is only visible to you. We may disclose information if required by law.
We keep your data for as long as your account is active. If you request deletion, we remove your account data, including any connected bank or Google tokens, within a reasonable time.
Credits is not directed at, and should not be used by, anyone under 16.
We may update this policy as the app evolves. Material changes will be reflected by updating the "Last updated" date above.
Questions about this policy? Email sanchitcop19@gmail.com.