Privacy Policy

Effective: 6 February 2025

The short version:

→ We don't connect to your bank.

→ We don't track your transactions.

→ We don't sell your data to anyone.

→ You tell us what you earn and how you want to allocate it. That's it.

1. Who We Are

PLOT Budget ("PLOT", "we", "us") is a household budgeting application developed and operated by Allotment Technology Ltd, a company registered in the United Kingdom. Our app helps couples plan monthly budgets collaboratively without requiring access to bank accounts or transaction data.

Data Protection Registration: Allotment Technology Ltd is registered with the UK Information Commissioner's Office (ICO) under registration number ZC092549.

For data protection enquiries, contact us at hello@plotbudget.com.

This policy applies to the PLOT Budget web app and to our Android app (Plot Budget) available on the Google Play Store.

2. What We Collect

We collect only what's necessary to make PLOT work. When you create an account, we collect your email address and password (stored securely via Supabase Authentication — we never see or store your password in plain text).

When you use PLOT, we store the budget data you enter: income amounts, allocation categories, split ratios, and pay cycle dates. This is data you type in manually — we do not import, scrape, or infer any of it from external sources.

If you join our waitlist on the marketing site, we collect your email address via MailerLite so we can notify you when PLOT is available.

3. What We Don't Collect

We do not use Open Banking. We do not connect to your bank accounts. We do not access, store, or process your transaction history, account balances, or any banking credentials. We do not track your spending patterns or purchase behaviour.

We do not use cookies for advertising. We do not sell, rent, or share your personal data with third-party advertisers or data brokers.

4. How We Use Your Data

Your budget data is used solely to provide the PLOT service to you: calculating allocations, generating your household budget view, and synchronising data between household members. Your email is used for account authentication and essential service communications (e.g. password resets, partner invitations, critical security notices).

We use Resend to send transactional emails (password resets, partner invites). In the app we may use PostHog for product analytics to improve the service — this does not include your budget data, and you can decline analytics cookies and still use PLOT. We do not use third-party advertising or tracking analytics on the marketing site.

5. How We Store and Protect Your Data

Your data is stored on Supabase infrastructure (PostgreSQL database), which provides encryption at rest and in transit. Our application is hosted on Vercel. Both Supabase and Vercel use industry-standard security practices and are compliant with relevant data protection frameworks.

We use Row Level Security (RLS) in our database to ensure users can only access their own household data. Authentication is managed by Supabase Auth with industry-standard security practices.

We follow the UK National Cyber Security Centre (NCSC) guidelines for application security.

6. Data Sharing

If you are part of a household in PLOT, your budget allocations and split ratios are visible to your household partner. This is a core feature of the app — both partners need to see the shared budget to plan effectively.

We use the following third-party services to operate PLOT:

Supabase — Authentication, database, and backend. Subject to Supabase's privacy policy.
Vercel — Application hosting. Subject to Vercel's privacy policy.
Resend — Transactional emails (password resets, partner invites). Subject to Resend's privacy policy.
MailerLite — Waitlist email collection on the marketing site only. Subject to MailerLite's privacy policy.
PostHog — Product analytics in the app (optional; only if you accept analytics cookies). Subject to PostHog's privacy policy.

We do not share your data with any other third parties.

7. Cookies and Your Choices

We use cookies and similar technologies only as needed to run PLOT and to respect your preferences. You have full control over optional cookies.

Essential cookies are required for the app to work. They include session and authentication cookies (so you can log in and stay logged in) and, where used, cookies that remember your cookie preferences. If you do not accept essential cookies, you will not be able to use the PLOT app (log in, access your budget, or use any account features). The marketing site can be browsed without accepting non-essential cookies.

Optional cookies (e.g. analytics) help us improve the product. You can refuse them and still use PLOT. We use a cookie banner or consent controls so you can choose to accept all, essential only, or customise which optional cookies you allow. Your choices are stored and respected on future visits.

For full details and to change your preferences, use the cookie settings in the app or on the marketing site (cookie banner or footer link), or contact us at hello@plotbudget.com.

8. Your Rights

Under UK GDPR, you have the right to access, correct, or delete your personal data. You can delete your account and all associated data from within the app, or by emailing us at hello@plotbudget.com. We will respond to all data requests within 30 days.

You also have the right to data portability, to restrict processing, and to lodge a complaint with the Information Commissioner's Office (ICO) if you believe your data rights have been violated.

9. Children

PLOT is not intended for use by anyone under the age of 18. We do not knowingly collect data from minors.

10. Changes to This Policy

If we make material changes to this privacy policy, we will notify registered users by email before the changes take effect. The current version will always be available at this URL.

11. Payment Processing

When you subscribe to PLOT Premium, payments are processed by Polar (polar.sh) as our Merchant of Record. Polar handles payment processing, invoice generation, and subscription management. Polar collects payment card details, billing email, and contribution amount. PLOT receives the subscription status, chosen amount, and a reference to the Polar subscription. PLOT does not store payment card data.

For Polar's privacy practices and terms, see Polar Privacy Policy.

11.1 Data Retention

We retain subscription metadata (status, amount, reference ID) while your account is active and for up to 7 years for legal and accounting purposes.

12. Contact

Questions about this policy or your data? Email us at hello@plotbudget.com.