1. Acceptance of Terms

By accessing or using Ledger ("Service"), you accept and agree to be bound by these Terms of Service ("Terms"), our Privacy Policy, and all applicable laws and regulations. These Terms constitute a legally binding agreement between you and Ledger.

If you are using Ledger on behalf of an organization, you represent and warrant that you have authority to bind that organization to these Terms, and the terms "you" and "your" will include both you and the organization.

We may update these Terms from time to time. Your continued use of the Service after such changes constitutes your acceptance of the revised Terms. We will notify you of material changes via email or through a prominent notice on the Service.

2. Description of Service

Ledger is a personal finance management platform that helps you track and analyze your financial data. The Service provides tools for viewing account balances, transaction history, spending analytics, subscription detection, and other financial insights.

Ledger accesses your financial information through third-party services (specifically Plaid) that facilitate secure connections to your financial institutions. Ledger aggregates and displays this information but does not directly connect to your bank accounts.

The features and functionality of Ledger may change over time. We reserve the right to modify, suspend, or discontinue any feature or aspect of the Service at any time.

3. Account Registration and Security

To use Ledger, you must create an account by providing accurate, current, and complete information, including a valid email address. You are responsible for maintaining the confidentiality of your account credentials and for all activities that occur under your account.

You agree to:

• Keep your account information up to date
• Maintain the security of your password and authentication credentials
• Notify us immediately of any unauthorized access or use of your account
• Accept responsibility for all activities under your account
• Use only one account per person

Ledger is not liable for any loss or damage arising from your failure to comply with these security obligations. You may be held liable for losses incurred by Ledger or others due to unauthorized use of your account.

4. Financial Data and Third-Party Services

IMPORTANT: WE DO NOT STORE YOUR BANKING CREDENTIALS. Ledger accesses your financial information through Plaid, a third-party service that facilitates secure connections to your financial institutions. When you connect a bank account, you interact directly with Plaid's secure authentication system, and your banking credentials are never shared with or stored by Ledger.

Your use of Plaid's services is subject to Plaid's Terms of Service and Privacy Policy. By connecting your financial accounts through Plaid, you acknowledge that you have read and agree to Plaid's terms.

Ledger receives financial data that you authorize through the Plaid connection process. This data includes:

• Account information (account numbers, names, types, balances)
• Transaction history and details
• Account routing information (for identification purposes only)

All financial data transmitted to and stored by Ledger is encrypted using industry-standard encryption protocols. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security of your data.

5. Acceptable Use

You agree to use Ledger only for lawful purposes and in accordance with these Terms. You agree not to:

• Use the Service in any way that violates applicable laws or regulations
• Attempt to gain unauthorized access to the Service, other accounts, or computer systems
• Interfere with or disrupt the Service or servers connected to the Service
• Use automated systems (bots, scrapers) to access the Service without permission
• Reverse engineer, decompile, or disassemble any portion of the Service
• Use the Service to transmit malicious code, viruses, or harmful data
• Impersonate any person or entity or misrepresent your affiliation with any person or entity
• Use the Service for any commercial purpose without our express written consent

Violation of these acceptable use policies may result in immediate termination of your account and may subject you to legal action.

6. Service Availability and Modifications

Ledger strives to provide reliable and continuous service, but we do not guarantee that the Service will be available at all times, uninterrupted, secure, or error-free. The Service may be subject to:

• Scheduled maintenance and updates
• Unscheduled downtime due to technical issues
• Issues with third-party services (including Plaid or financial institutions)
• Network or connectivity problems
• Force majeure events beyond our control

We reserve the right to modify, suspend, or discontinue any aspect of the Service, including but not limited to features, functionality, availability, or pricing, at any time with or without notice. We are not liable to you or any third party for any modification, suspension, or discontinuation of the Service.

We may also impose limits on certain features or restrict your access to parts or all of the Service without notice or liability.

7. Data Accuracy and Financial Information

Ledger displays financial information obtained from your connected financial institutions through third-party services. While we strive to provide accurate information, Ledger:

• Does not guarantee the accuracy, completeness, or timeliness of financial data
• Relies on data provided by third parties (Plaid and your financial institutions)
• May display data that is delayed, outdated, or contains errors
• Does not verify or audit the financial data displayed

Financial data may be subject to delays, errors, or inaccuracies due to:

• Processing delays at financial institutions
• Synchronization timing between Plaid and your bank
• Pending transactions that have not yet cleared
• Data categorization or labeling errors
• Technical issues affecting data transmission

You should always verify important financial information with your financial institution directly. Ledger should be used as a convenience tool for viewing and analyzing your financial data, not as a primary source of truth for account balances or transaction details.

8. Financial Advice and Decisions

Ledger provides tools and information to help you understand your finances, but:

• Ledger does not provide financial, investment, tax, or legal advice
• The Service does not make recommendations about specific financial products or services
• Analytics and insights are for informational purposes only
• You should consult with qualified professionals for financial, tax, or legal advice

You are solely responsible for all financial decisions you make, regardless of information or insights provided by Ledger. We are not liable for any financial losses, damages, or consequences resulting from your use of the Service or decisions made based on information displayed in Ledger.

9. Intellectual Property Rights

The Service, including its original content, features, functionality, design, logos, trademarks, and software, is owned by Ledger and protected by copyright, trademark, and other intellectual property laws.

These Terms grant you a limited, non-exclusive, non-transferable, revocable license to access and use the Service for your personal, non-commercial use, subject to your compliance with these Terms.

You may not copy, modify, distribute, sell, lease, or create derivative works based on the Service or any portion thereof without our express written permission. All rights not expressly granted are reserved.

10. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, LEDGER IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, OR ACCURACY.

TO THE MAXIMUM EXTENT PERMITTED BY LAW, LEDGER, ITS DEVELOPERS, AND ITS AFFILIATES SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING BUT NOT LIMITED TO:

• Loss of profits, revenue, data, or use
• Financial losses resulting from inaccurate or delayed data
• Damages resulting from unauthorized access to your account
• Damages resulting from service interruptions or failures
• Loss of business opportunities

OUR TOTAL LIABILITY TO YOU FOR ALL CLAIMS ARISING OUT OF OR RELATING TO THE USE OF OR INABILITY TO USE THE SERVICE SHALL NOT EXCEED THE AMOUNT YOU PAID TO US IN THE 12 MONTHS PRIOR TO THE CLAIM, OR $100, WHICHEVER IS GREATER.

Some jurisdictions do not allow the exclusion or limitation of certain warranties or liabilities, so some of the above limitations may not apply to you. In such jurisdictions, our liability is limited to the maximum extent permitted by law.

11. Indemnification

You agree to indemnify, defend, and hold harmless Ledger, its developers, affiliates, and their respective officers, directors, employees, and agents from and against any claims, liabilities, damages, losses, costs, or expenses (including reasonable attorneys' fees) arising out of or relating to: (a) your use of the Service; (b) your violation of these Terms; (c) your violation of any rights of another party; or (d) your violation of any applicable laws or regulations.

12. Account Termination

Termination by You: You may terminate your account at any time by deleting your account through the Service settings or by contacting us. Upon termination, your access to the Service will immediately cease, and we will delete your account data in accordance with our Privacy Policy.

Termination by Us: We reserve the right to suspend or terminate your account immediately, without prior notice, if:

• You violate these Terms of Service
• You engage in fraudulent, abusive, or illegal activities
• You breach any applicable laws or regulations
• We suspect unauthorized access to your account
• Your account has been inactive for an extended period
• We are required to do so by law or court order

Upon termination, your right to use the Service will immediately cease. We may delete your account and all associated data. Sections of these Terms that by their nature should survive termination (including but not limited to Sections 8, 9, 10, and 11) will survive termination.

13. Governing Law and Dispute Resolution

These Terms shall be governed by and construed in accordance with the laws of the jurisdiction in which Ledger operates, without regard to its conflict of law provisions.

Any disputes arising out of or relating to these Terms or the Service shall be resolved through good faith negotiation. If negotiation fails, disputes shall be resolved through binding arbitration in accordance with applicable arbitration rules, except where prohibited by law.

You agree that any arbitration will take place on an individual basis and that class actions or representative proceedings are not permitted.

14. Miscellaneous

Entire Agreement: These Terms, together with our Privacy Policy, constitute the entire agreement between you and Ledger regarding the Service and supersede all prior agreements.

Severability: If any provision of these Terms is found to be invalid or unenforceable, the remaining provisions will remain in full force and effect.

Waiver: Our failure to enforce any right or provision of these Terms will not be deemed a waiver of such right or provision.

Assignment: You may not assign or transfer these Terms or your account without our prior written consent. We may assign these Terms without restriction.

Contact: If you have questions about these Terms, please contact us through the contact information provided in the Contact section of this page.

1. Information We Collect

Information You Provide Directly:

• Account Information: When you create an account, we collect your email address, password (hashed and encrypted), and any other information you choose to provide
• User Preferences: Settings and preferences you configure within the Service, such as display preferences, categorization rules, and notification settings
• Communication: If you contact us, we collect the information you provide, including your name, email address, and the content of your message

Financial Information (via Plaid):

When you connect a financial account through Plaid, we receive the following types of information that you authorize through the Plaid connection process:

• Account Information: Account names, types (checking, savings, credit, loans, etc.), account numbers (for identification), routing numbers, and current balances
• Transaction Data: Transaction dates, amounts, descriptions, merchant names, categories, and location data (when available)
• Account Metadata: Account ownership information, account status, and institution identification

IMPORTANT: We do NOT receive or store your banking credentials (username, password, PIN, security questions, or multi-factor authentication codes). These credentials are handled exclusively by Plaid and your financial institution.

Automatically Collected Information:

• Usage Data: Information about how you interact with the Service, including pages visited, features used, and time spent on the Service
• Device Information: Browser type, operating system, device type, IP address, and device identifiers
• Log Data: Server logs containing access times, error logs, and system activity (used for troubleshooting and security)
• Cookies and Tracking: We use cookies and similar tracking technologies to maintain your session and improve Service functionality

2. How We Use Your Information

Ledger uses the information we collect to provide, maintain, and improve the Service. Specifically, we use your information to:

• Provide Core Functionality: Display your account balances, transaction history, spending analytics, and financial insights
• Dashboard and Analytics: Generate balance summaries by account type, spending trends, category-based breakdowns, and visualizations of your financial data
• Transaction Management: Organize and display transactions, apply merchant enrichment and cleaner naming, and enable filtering and searching
• Subscription Detection: Automatically identify recurring charges and subscriptions, allow manual corrections, and calculate custom subtotals (weekly, monthly, yearly)
• Data Synchronization: Keep your financial data up-to-date through manual refresh options and automated syncing, and display sync status indicators
• Account Management: Create and maintain your account, authenticate your identity, and provide customer support
• Service Improvement: Analyze usage patterns to improve features, fix bugs, and enhance user experience
• Security: Detect and prevent fraud, abuse, security threats, and unauthorized access
• Communication: Send you important notices about the Service, respond to your inquiries, and provide customer support
• Legal Compliance: Comply with applicable laws, regulations, legal processes, and government requests

Ledger does NOT use your data for targeted advertising, and Ledger does not sell personal financial data to third parties.

3. How We Share and Disclose Information

Ledger is committed to protecting your privacy. We do not sell, rent, or trade your personal information. We share your information only in the limited circumstances described below:

Service Providers:

• Plaid: We share information with Plaid to facilitate connections to your financial institutions. Plaid's use of your information is governed by Plaid's Privacy Policy
• Hosting and Infrastructure: We use third-party service providers (such as Vercel, Supabase) to host our Service and store data. These providers are contractually obligated to protect your information
• Analytics and Monitoring: We may use third-party services to analyze Service usage and monitor performance, but these services do not receive your financial data

Legal Requirements:

We may disclose your information if required to do so by law, regulation, legal process, court order, or government request. This may include responding to subpoenas, search warrants, or other valid legal requests.

Security and Protection:

We may share information to protect the rights, property, or safety of Ledger, our users, or others. This includes:

• Detecting and preventing fraud, abuse, or security threats
• Investigating potential violations of our Terms of Service
• Protecting against imminent harm to persons or property

Business Transfers:

If Ledger is involved in a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.

Ledger does NOT share your bank credentials (Ledger never has them) and does not sell transaction data to advertisers, data brokers, or other third parties.

4. Plaid Relationship and Third-Party Services

Plaid is a third-party financial data aggregator that enables Ledger to connect to your financial institutions. When you connect an account:

• You interact directly with Plaid's secure authentication system (Plaid Link)
• You authenticate with your financial institution through Plaid
• Plaid securely retrieves your financial data on Ledger's behalf
• Plaid provides this data to Ledger through secure, encrypted channels

Plaid's Role:

Plaid acts as an intermediary between Ledger and your financial institution. Plaid may collect and process information according to Plaid's own Privacy Policy and Terms of Service. By connecting your account through Plaid, you also agree to Plaid's terms.

Data We Receive:

Ledger receives only the financial data that you explicitly authorize through the Plaid connection process and that your financial institution makes available. We do not have access to your banking credentials, and we cannot initiate transactions on your behalf.

Third-Party Integrations:

The Service may integrate with other third-party services (such as merchant logo services, mapping services, etc.). These services may have their own privacy policies. We encourage you to review the privacy policies of any third-party services you use through Ledger.

5. Data Security

We implement industry-standard security measures to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption: Data transmitted between your device and our servers is encrypted using TLS/SSL. Financial data stored in our databases is encrypted at rest
• Authentication: Secure password hashing and session management to protect account access
• Token-Based Access: We use secure tokens (via Plaid) rather than storing credentials directly
• Server-Side Security: Sensitive operations and tokens are handled server-side and never exposed in client code
• Access Controls: Access to personal data is restricted to authorized personnel who need it to provide the Service
• Secure Infrastructure: Our hosting providers (Vercel, Supabase) maintain high security standards and compliance certifications
• Regular Security Reviews: We conduct regular security assessments and updates

Limitations:

No method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security. You are responsible for maintaining the security of your account credentials and for notifying us immediately of any unauthorized access.

6. Data Retention

Financial Data:

We retain your financial data for as long as:

• Your account is active and in use
• You maintain connections to financial institutions
• We need it to provide the Service

Financial data is deleted when:

• You disconnect a financial institution (data for that institution is deleted)
• You delete your Ledger account (all associated data is deleted)
• Your account is terminated for violation of our Terms of Service

Account Information:

Account information (email, preferences) is retained until account deletion. Some information may be retained longer if required by law or necessary for legal proceedings.

Logs and Backups:

Technical logs, audit logs, and backup data may be retained for longer periods for security, troubleshooting, and legal compliance purposes. These logs typically do not contain your full financial data but may include metadata such as access times and system events.

7. Your Rights and Choices

You have the following rights regarding your personal information:

Access: You can access and view your account information and financial data through the Service at any time.

Modification: You can update your account information, preferences, and settings through the Service settings.

Data Correction: You can correct recurring/subscription labels and categorization through manual controls in the Service.

Deletion: You can:

• Disconnect individual financial institutions (which deletes data for those institutions)
• Delete your entire Ledger account (which deletes all your data from our systems)

Data Portability: You can export your transaction data and account information through the Service features (if available).

Opt-Out: You can opt out of certain communications by adjusting your notification preferences or unsubscribing from email communications.

To exercise these rights, please use the Service settings or contact us through the contact information provided in the Contact section. We will respond to your request within a reasonable timeframe.

8. Children's Privacy

Ledger is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete that information. If you believe we have collected information from a child, please contact us immediately.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country.

By using the Service, you consent to the transfer of your information to these countries. We take appropriate safeguards to ensure your information receives adequate protection in accordance with this Privacy Policy, regardless of where it is processed.

10. California Privacy Rights (CCPA)

If you are a California resident, you have certain rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information we collect, use, and disclose
• Right to delete your personal information (subject to certain exceptions)
• Right to opt-out of the sale of personal information (Ledger does not sell personal information)
• Right to non-discrimination for exercising your privacy rights

To exercise these rights, please contact us through the contact information in the Contact section. We will verify your identity before processing your request.

11. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have certain rights under the General Data Protection Regulation (GDPR):

• Right of access to your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent (where processing is based on consent)

To exercise these rights, please contact us. We will respond to your request within one month (may be extended in complex cases).

12. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

• Maintain your session and authentication state
• Remember your preferences and settings
• Analyze Service usage and improve functionality
• Provide security features

Most web browsers allow you to control cookies through browser settings. However, disabling cookies may affect your ability to use certain features of the Service.

We do not use third-party advertising cookies or tracking cookies for advertising purposes.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last updated" date at the top of this policy
• Notify you via email (if we have your email address) or through a prominent notice on the Service
• Provide you with an opportunity to review the changes before they take effect (for significant changes)

Your continued use of the Service after changes become effective constitutes your acceptance of the revised Privacy Policy. If you do not agree with the changes, you should stop using the Service and delete your account.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us through the contact information provided in the Contact section of this page.

We will make every effort to address your concerns and respond to your requests in a timely and appropriate manner.