Moneo
TermsCookies

Privacy Policy

Last updated: February 10, 2026

1. Introduction

Moneo ("we," "us," or "our") is an AI-powered smart budget management platform available at Moneo.one. We are committed to protecting your privacy and ensuring full transparency about how we handle your financial data. This Privacy Policy explains what information we collect, how we use it, and what rights you have.

2. Data We Collect

We collect only the information necessary to provide our budgeting service:

  • Account information: Name, email address, and hashed password. If you connect a crypto wallet, we store only the public wallet address — never private keys.
  • Financial data: Income entries, expense records, budget categories, bill reminders, savings goals, and net worth tracking data that you voluntarily enter.
  • AI chat history: Conversations with your AI budget assistant are stored to provide contextual, personalized advice.
  • Telegram integration: If you link your Telegram account, we store your Telegram chat ID to deliver notifications. We do not access your Telegram messages or contacts.
  • Payment information: Subscription payments are processed entirely by Stripe. We never see or store your credit card number, CVV, or full billing details. We only receive a Stripe customer ID and subscription status.

3. Receipt Image Handling

When you upload a receipt image for OCR (Optical Character Recognition) processing:

  • The image is processed in memory to extract text data (merchant name, amount, date, line items).
  • Receipt images are never stored. They are immediately discarded after text extraction is complete.
  • Only the extracted text data persists in your account as a structured expense record.
  • Images are not transmitted to any third party. OCR processing uses on-server models (Morpheus Vision or Tesseract.js fallback) — no external image analysis services.

4. Data Encryption & Security

Your financial data is protected with industry-standard security measures:

  • Encryption at rest: All data stored in our PostgreSQL database is encrypted at rest using AES-256 encryption provided by our infrastructure provider (Supabase).
  • Encryption in transit: All communication between your browser and our servers uses TLS 1.3 encryption (HTTPS).
  • Password security: Passwords are hashed using bcrypt with a cost factor of 12. We never store or have access to plaintext passwords.
  • Session management: Authentication sessions use signed, HTTP-only cookies with short expiration periods.

5. No Third-Party Data Sharing

We do not sell, rent, trade, or share your personal or financial data with any third party. Specifically:

  • No data brokers or marketing partners receive your information.
  • No advertising networks have access to your data.
  • No financial institutions receive your budgeting data.
  • The only external services that interact with limited data are Stripe (payment processing, receiving only your email and subscription details) and Telegram (if you opt in, receiving only notification messages via your chat ID).

6. No Analytics Tracking

Moneo does not use any analytics or tracking services. We do not use:

  • Google Analytics or any web analytics platform
  • Facebook Pixel, TikTok Pixel, or any advertising trackers
  • Hotjar, Mixpanel, Amplitude, or any behavioral analytics
  • Fingerprinting or cross-site tracking technologies

We believe your financial data is deeply personal. We have no interest in monitoring your behavior, building profiles, or tracking your usage patterns for marketing purposes.

7. AI Processing & Morpheus Network

Moneo uses the Morpheus decentralized AI network to power its smart budget assistant. This architecture provides meaningful privacy advantages over centralized AI providers:

  • Decentralized inference: AI requests are processed across the Morpheus decentralized network rather than a single corporate server, reducing the risk of data concentration.
  • No AI training on your data: Your financial conversations and data are never used to train, fine-tune, or improve AI models. Each query is stateless from the AI provider's perspective.
  • Minimal data transmission: Only the context necessary for the current conversation is sent to the AI network. We do not send your full financial history — only summarized context relevant to your current question.
  • Open-source transparency: The Morpheus network is open source, allowing independent verification of how data is processed.

8. GDPR & Data Protection Rights

We respect the data protection rights of all users, regardless of location. In accordance with the General Data Protection Regulation (GDPR) and similar legislation, you have the following rights:

  • Right of access: You can request a complete copy of all data we hold about you at any time.
  • Right to data portability: You can export all your financial data in JSON or CSV format from Settings > Data Export. Active subscribers can also generate PDF reports.
  • Right to rectification: You can edit or correct any of your financial records directly through the application at any time.
  • Right to erasure: You can permanently delete your account and all associated data from Settings > Delete Account. Deletion is immediate and irreversible.
  • Right to restrict processing: You can contact us to restrict how we process your data while we address any concerns.
  • Right to object: You can opt out of any optional processing, including AI insights and Telegram notifications, at any time from Settings.

Our legal basis for processing your data is the performance of a contract (providing you the budgeting service you signed up for) and your explicit consent (for optional features like AI chat and Telegram integration).

9. Data Export Rights

Active subscribers can export all of their data at any time in three formats:

  • JSON: Complete database export including all categories, expenses, incomes, bills, goals, assets, liabilities, achievements, and challenges.
  • CSV: Spreadsheet-compatible export with separate sections for expenses, incomes, categories, bills, goals, and net worth data.
  • PDF: Formatted monthly report with visual summaries and charts.

Exports include optional date range filtering so you can download specific time periods. We believe you should always have full access to your own financial data.

10. Account Deletion & Data Retention

You can delete your account at any time from Settings > Delete Account. When you delete your account:

  • All your personal data is permanently and irreversibly deleted.
  • All financial records (expenses, incomes, categories, goals, etc.) are removed.
  • AI chat history is deleted.
  • Telegram integration is disconnected.
  • Stripe subscription is canceled (but Stripe retains payment records per their own policies for legal/tax compliance).

If your subscription expires without deletion, your data is retained in our database for 12 months. A warning notification is sent at 5 months, and a final 7-day warning before permanent deletion at 6 months. We recommend exporting your data before your subscription expires.

11. Children's Privacy

Moneo is not intended for use by anyone under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 16, we will delete it immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will notify users via email or in-app notification. The "Last updated" date at the top of this page indicates when this policy was most recently revised.

13. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us at privacy@moneo.one.