← Back to Home

Spigot Money

Privacy Policy

Effective Date: April 2026

Our approach to privacy

Spigot is built around a simple idea: you should be able to review your spending without handing over full-time access to your financial accounts.

We aim to collect the minimum information necessary to provide the service and give users control over what they choose to upload.

Information you provide

When you use Spigot, you may choose to upload statements, CSV files, or other financial records so we can summarize what you're spending.

You control what files you upload and when you upload them. Where possible, we encourage you to limit what appears in each file—for example by exporting only the date range you need, or by cropping screenshots so they do not include account banners or other information you do not want to share (see below).

Sensitive information, PDF redaction, and screenshots

For PDFs and similar text-based statement uploads, we apply automated redaction on our servers before portions of the extracted text are sent to third-party services used to read transactions and patterns. We attempt to remove or mask common sensitive patterns where technically feasible, including examples such as statement-period headers, account or member number lines, routing or MICR-style labels, Social Security number–like and phone number–like digit groups, email addresses, and lines that resemble street or mailing addresses.

That process is not perfect. Statement layouts differ by bank and country, and some personal or account information may remain in extracted text or in transaction descriptions. You should assume sensitive data could still be present and treat redaction as a helpful safeguard, not a guarantee.

We encourage you to remove or mask sensitive information before you upload whenever you can—for example by using a bank export that omits full account numbers, blacking out headers on a printout, or editing a CSV so only the columns you need are included.

Screenshots and photos: when you upload a screenshot or image of a statement, our service providers may receive the entire image you provide so they can read the transactions on screen. Automated redaction applies to text we derive from that process; it does not strip personal information from the pixels in your picture (for example a visible account banner, name, or address block at the top of the screen).

Please crop screenshots tightly to the transaction list (or the smallest area you need), and avoid capturing app chrome, profile headers, full account numbers, or other personal details when you can. If you are unsure what will be sent, crop further or use a PDF or CSV export instead of a full-screen capture.

How we use your information

Uploaded information may be used to:

  • Analyze recurring charges and spending patterns
  • Estimate savings opportunities
  • Improve product performance and reliability

What we do not require

  • No bank usernames or passwords required
  • No mandatory account linking
  • No continuous syncing to your financial accounts

Data sharing

We do not sell your personal financial data.

We may use trusted service providers to host infrastructure or help operate the service. Those providers are expected to protect data appropriately.

Website analytics (Microsoft Clarity)

We use Microsoft Clarity to understand how visitors use our website, such as page views, clicks, scroll behavior, and general session patterns. This helps us improve site usability and product experience.

Clarity may use cookies or similar technologies to collect usage data. For details on how Microsoft processes analytics data, please review Microsoft Clarity and Microsoft Privacy documentation.

Security

We aim to use reasonable technical and organizational safeguards to protect information, but no system can guarantee absolute security.

Changes to this policy

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised effective date.

Contact

Questions about privacy can be sent to hello@spigotmoney.com.