Back to app
CashDey privacyLive today

Privacy policy

CashDey uses the numbers you enter to build your money picture, keep your dashboard and Coach in step, and protect the service. We keep the data narrow, do not sell it, and give you direct controls.

Last updated: 18 April 2026 · Consent copy v2.0

In short

  • No signup is required before you get value.
  • A saved email login is optional and only added if you choose it from Settings.
  • CashDey does not sell or rent your personal data.
  • Browser storage is only for draft, cache, and consent memory on this device.
  • You can sign out on a shared device, reset everything to delete linked app data and any saved login for this CashDey, and ask us for help with retained records.

Live today

What CashDey collects right now

Money picture

Balance, income, obligations, rough spending, payday timing, and other numbers you choose to enter so CashDey can calculate pressure and runway.

Connected features

Coach history, expense logs, Telegram linkage, product events, consent records, and security logs needed to keep the app safe and useful. If you choose the optional saved login, CashDey also stores a verified email for that account layer.

On this device

A local draft, a cached copy of your latest profile, and consent choices so the app can recover gracefully on this browser, plus an essential first-party device cookie that keeps this browser linked to the same pseudonymous profile until you reset it.

What we do not collect

BVN, NIN, card details, bank account credentials, contact lists, chat contents from other apps, or precise GPS tracking.

Why we use it

  • To generate and update the money picture you asked for.
  • To keep dashboard, Coach, spending history, and linked Telegram views in sync.
  • To remember optional choices like public-page analytics only when you explicitly opt in.
  • To secure write routes, rate-limit abuse, investigate issues, and keep records of consent decisions.
  • To prepare future products safely, but only through separate notices and separate launch review.
See the plain-language lawful-basis view
  • Core financial profile and dashboard state: core service delivery.
  • Public-page analytics: consent, and only on public pages.
  • Telegram connection: consent, because you choose to connect it.
  • Optional saved email login: consent, because you choose to add it from Settings.
  • Coach continuity, security logs, and rate limits: legitimate interest in running and protecting the service.
  • Future payment or tax records: contract and legal obligation if those products launch later.

How CashDey protects and stores data

  • Your main profile is stored server-side under a pseudonymous session, not as a browser-only source of truth.
  • If you add the optional saved login, the raw email is stored only after verification and kept in the encrypted PII namespace, not in plaintext auth keys.
  • Retained personally identifying fields are encrypted before they are written to storage.
  • CashDey uses essential HttpOnly cookies for the signed session and for same-browser profile recovery until you reset this device.
  • The service is delivered over HTTPS, and browser storage is limited to draft, cache, and consent state on this device.
See the current provider list
  • Upstash stores encrypted server-side data at rest.
  • Anthropic processes Coach messages and the financial context required to answer them.
  • Telegram receives the delivery data needed for messages you ask us to send there.
  • Umami only runs on public informational pages after device-level opt-in.
  • Future payment, event, planner, or partner flows are documented ahead of launch but are not live today.

CashDey does not sell, rent, or trade your personal data. If we are legally required to disclose data to a regulator or authority, we will do so only within that legal requirement.

How long we keep things

  • Telegram delivery data stays until you disconnect it.
  • Coach continuity history is short-lived and service-bound.
  • Optional saved-login email stays until you delete app data for that CashDey or ask us for retained-identity help.
  • Expense logs, consent records, and support records are kept only for their stated service or audit purpose.
  • Future paid-product records may need longer statutory retention.
See typical current retention windows
  • Telegram in-chat continuity history: 24 hours.
  • Cross-surface Coach history: 30 days.
  • Expense logs: 90 days.
  • Consent logs: 24 months.
  • Support emails: 24 months.
  • Future-only examples already documented: event delivery 6 months, session booking 12 months, paid transaction records 7 years where tax law requires it.

What control you keep

  • Update your numbers any time from the app.
  • Sign out and clear this device in Settings when you only want to remove the session from this browser.
  • Reset everything in Settings to clear this device, delete app data we can remove immediately, and remove the saved login for that CashDey if one is linked.
  • Disconnect Telegram from Settings or by sending /stop to @cashdeybot.
  • Turn off public-page analytics in Settings at any time.
  • Email hello@cashdey.com or DPO@cashdey.com for access, correction, restriction, portability, or deletion help.

If a record cannot be erased yet because of a legal retention duty, we will explain that in writing. If you believe we handled your data badly and we do not resolve it, you may complain to the Nigeria Data Protection Commission at ndpc.gov.ng.

More detailed notices

Telegram data noticeCookie and storage noticeYour data rightsPayment noticeEvent noticeSession booking noticeRecommendation noticePartner handoff noticeAggregate intelligence noticeMarketing noticeResearch noticeKYC notice

Need help or want to use a legal right?

General

hello@cashdey.com

For access, correction, deletion, or general questions.

Data Protection Officer

DPO@cashdey.com

Nyra Digital Systems Limited · RC 9278455