What we store

What we store

Last verified 2026-05-08 by technical-writer-agent.

What we store

A complete list of the data MoneyVue keeps about your account, where it's kept, and how it's protected.

Account data

  • Email address — used to sign in and to deliver transactional email.
  • Password hash — never the plaintext password. Argon2/bcrypt with per-user salt.
  • Profile fields — first name, last name, timezone, currency, locale, optional avatar image.
  • Subscription state — Stripe customer ID, current plan, period dates.
  • Verification state — whether your email is verified.

Bank-feed metadata

  • SimpleFIN access URL — encrypted at rest with AES-256-GCM. Decrypted only when starting a sync.
  • Account list — institution, account name, type, last-four mask.
  • Account balances — current and historical balances per account.

Transaction data

  • Transactions — date, description (raw + cleaned), amount, category, account, merchant, notes, tags, splits, flags.
  • Recurring patterns — detected patterns (merchant, frequency, amount, status).
  • Budgets — per-category targets per month, with rollover history.
  • Rules — your automation rules.
  • Categories and merchants — the grouping structures you've set up.

Auxiliary data

  • Sync log — timestamps and pass/fail of recent syncs.
  • Refresh tokens and email-verification tokens — short-lived signed tokens used for sign-in flows.
  • Passkeys — public keys you registered, plus device label and last-used timestamp. The private key never leaves your device.
  • AI settings — your provider, model, optional base URL, encrypted API key.
  • Preferences — small key/value pairs for UI state (e.g., dark mode).

Telemetry

  • PostHog events — analytics about app usage. We never log transaction amounts, merchant names, or category names with these events.
  • Server logs — request paths, response status, latency. Bodies are redacted.

What we do NOT store

  • Your bank password. It lives at your bank; SimpleFIN holds the credential.
  • Your social security number. We never ask for it.
  • Full credit card numbers. Stripe stores the card; we see only metadata.
  • AI conversation history. Insights chats are not persisted server-side.

Where the data lives

MoneyVue runs on AWS in the United States. The primary database is Postgres in a private VPC. Backups are encrypted and stored in AWS-managed storage with a typical 30-day retention.

How long we keep it

While your account is active, we keep your data so the app works. When you delete your account, live records are removed immediately. Backups containing your data may take up to 30 days to age out.

Related

FAQ

Can MoneyVue staff see my transactions? Only with explicit need (debugging a problem you've reported). Access is logged and audited.

Is my SimpleFIN access URL recoverable if it's stolen? The URL itself grants read access to your accounts at SimpleFIN. We keep it encrypted at rest. If you suspect a leak, rotate the SimpleFIN token immediately. See Managing SimpleFIN connections.

Do you sell my data? No. MoneyVue's revenue is the subscription, not advertising or data sale.

Was this helpful?

Your answer is anonymous. We use it to improve these articles.