File size: 5,970 Bytes
99643db | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 | <!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Privacy Policy | Grip Intelligence</title>
<style>
body {
font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Helvetica, Arial, sans-serif;
line-height: 1.6;
color: #333;
max-width: 800px;
margin: 0 auto;
padding: 40px 20px;
}
h1 {
border-bottom: 2px solid #eee;
padding-bottom: 10px;
}
h2 {
margin-top: 30px;
color: #111;
}
p {
margin: 15px 0;
}
.trusted-box {
background: #f9f9f9;
padding: 20px;
border-radius: 8px;
border-left: 4px solid #10b981;
margin: 20px 0;
}
.stage-box {
background: #f0f9ff;
padding: 20px;
border-radius: 8px;
border-left: 4px solid #0284c7;
margin: 20px 0;
}
ul {
padding-left: 20px;
}
li {
margin-bottom: 8px;
}
a {
color: #0284c7;
text-decoration: none;
}
a:hover {
text-decoration: underline;
}
</style>
</head>
<body>
<h1>Privacy Policy</h1>
<p>Last Updated: February 27, 2026 (v1.2.0)</p>
<div class="trusted-box">
<strong>Trust & Transparency:</strong> Grip Intelligence operates on a foundation of absolute transparency.
We do not sell, rent, or trade your personal data. This is a non-commercial, personal tool;
we do not use your personal information to train public AI models.
</div>
<h2>01. Data Collection & Usage</h2>
<p>We collect information necessary to provide financial analytics, including your email address for account
identification and transaction data extracted from bank-related notifications.</p>
<h2>02. Google User Data (Restricted Scope)</h2>
<p>Grip accesses your Gmail account using OAuth 2.0 Restricted Scopes (gmail.readonly). We strictly search for and
process only bank transaction notifications, credit card alerts, and financial statements.</p>
<p><strong>How We Use This Data:</strong></p>
<ul>
<li>Automatically populate your financial dashboard with transaction details.</li>
<li>Detect and categorize your spending across various bank accounts and cards.</li>
<li>Extract investment confirmations to update your portfolio snapshots.</li>
</ul>
<p><strong>AI Role & Restrictions:</strong></p>
<ul>
<li><strong>No Training:</strong> We do not use Google user data to train, retrain, or improve AI/ML models.
</li>
<li><strong>No Decisions:</strong> AI does not handle your financial calculations or money management logic.
</li>
</ul>
<p><strong>Restricted Scope Compliance:</strong> Our use and transfer of information received from Google APIs to
any other app will adhere to the <a
href="https://developers.google.com/terms/api-services-user-data-policy">Google API Services User Data
Policy</a>, including the Limited Use requirements.</p>
<h2>03. Transaction Extraction Engine</h2>
<p>Grip uses a <strong>two-stage, privacy-first extraction pipeline</strong> to process bank notification emails:
</p>
<div class="stage-box">
<strong>Stage 1 — Local Rule Engine (Primary):</strong> Transaction details (amount, merchant, date) are
extracted using a deterministic, in-process pattern-matching engine that runs entirely on our servers.
No email content leaves our infrastructure during this stage. This handles >90% of all transactions
with zero external API calls, zero latency, and zero cost.
</div>
<div class="stage-box">
<strong>Stage 2 — Groq AI (Fallback Only):</strong> For emails the rule engine cannot confidently parse,
a <em>sanitized and anonymized</em> snippet is sent to Groq's external API.
<strong>All PAN, Aadhaar, card numbers, UPI IDs, and phone numbers are masked before any data leaves our
servers.</strong> Groq is used strictly as a last resort, not the default processing path.
</div>
<h2>04. Financial Intelligence Engine</h2>
<p>Our logic-based intelligence engine performs rigorous financial calculations to provide variance analysis and
"Safe to Spend" metrics. Safe-to-Spend is a deterministic mathematical calculation based on your current
balance minus unpaid bills and projected recurring commitments. It includes a safety buffer based on your
actual 30-day discretionary spending averages.</p>
<h2>05. Privacy Shield & Sanitization</h2>
<p>We implement <strong>Privacy-by-Design</strong> via a local sanitization layer that operates <u>before</u> any
data is processed by our extraction engines or sent to any external service. Our system automatically detects
and masks highly sensitive fields including:</p>
<ul>
<li>Full Credit/Debit Card numbers (Masked to <CARD>)</li>
<li>Personal Phone numbers and Emails</li>
<li>Bank Account numbers and UPI IDs</li>
<li>National IDs (PAN, Aadhaar)</li>
</ul>
<p>This ensures that even during fallback external processing, your most sensitive identifiers are never exposed
in raw format.</p>
<h2>06. Security</h2>
<p>We use TLS encryption for data in transit and industry-standard AES-256 encryption at rest for sensitive
financial markers. Passwords utilize salted cryptographic hashing.</p>
<h2>07. Contact</h2>
<p>For privacy inquiries, contact us at amitkr.dey1998@gmail.com</p>
</body>
</html> |