Skip to content
finkavo.
Legal

Privacy policy

Updated 2026-07-09

Finkavo is built for people who care about their tax and admin data — which means we care about it too. This page explains what we collect, what we don't, and what you can do about it. It's not a legal wall of text; it's the actual arrangement.

What we collect

Your account details (name, email, password hash via Better-Auth). Your onboarding responses (residency status, employment type, tax regime). Every ask you send and answer you get back. Letters and vault documents you upload (encrypted at rest — end-to-end encrypted if you opt in). Saved searches, calendar events, dashboard preferences. Session cookies. If you opt in to analytics, PostHog events (identified by an opaque hash of your user id, never by email). If you mention identifiers like your NIF or NISS in a conversation or in an uploaded document, the assistant will store them on your profile so it can reason about your tax situation — you can view or delete them under Settings → Profile → Extras.

What we don't collect

Third-party trackers. Advertising IDs. Cross-site cookies. Marketing pixels. Any tax-authority credentials — Finkavo has no login to Portal das Finanças, no scraping, no direct-connect to AT. Payment card numbers (Stripe handles those directly once you subscribe).

How long we keep it

Everything is tied to your account. When you delete your account from settings, we wipe every row and R2 blob and revoke any Google refresh token you connected — usually within minutes. Deleted conversations are soft-deleted for 30 days so you can restore, then hard-purged by a nightly job. Reminder-send records (used to prevent double-emails) are kept for 90 days. Waitlist submissions (email + optional "what brought you here" note, submitted from the marketing landing) are kept for 12 months from submission, or until you sign up for an account — whichever comes first. If you never sign up and want your waitlist email removed sooner, email hello@finkavo.com. If we ever need to keep something for legal reasons (fraud investigation, court order) we'll say so — that hasn't happened.

Who we share it with

Only the vendors we need to run the app: CockroachDB Serverless (Frankfurt) for the database, Cloudflare R2 (EU) for encrypted file storage, Cloudflare Workers AI for embeddings, OpenAI for LLM inference, Tavily for web search when our own corpus doesn't cover your question (US processor, DPA + SCCs), Resend for transactional email, PostHog EU for analytics (opt-in only), Stripe for payments (once you subscribe). Session cookies + password hashes are handled by Better-Auth, which runs inside the same Cloudflare Worker as Finkavo — no external processor, no third party sees your credentials. GitHub is a processor only if you choose to sign in with GitHub (see the GitHub section below). All third-party vendors are bound by DPAs. No data broker sales.

Google account access

Signing in with Google is optional. When you choose to connect Google Calendar from your profile settings, Finkavo requests one Google Calendar API scope (https://www.googleapis.com/auth/calendar.app.created). This is the app-created variant: it lets Finkavo create a single dedicated 'Finkavo — Tax deadlines' calendar under your account and read/write events on that calendar only. Finkavo cannot see, read, or modify any of your other Google calendars. Finkavo's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically: Finkavo does not transfer your Google data to third parties except as needed to provide the reminder feature (the DPA vendors listed above), does not use your Google data for advertising, and does not allow humans to read your Google data unless we have your affirmative agreement, it is necessary for security, or the data is aggregated and anonymised. You can revoke Finkavo's access at any time from the profile settings page, or from https://myaccount.google.com/permissions.

GitHub sign-in

Signing in with GitHub is optional. If you choose it, Finkavo receives only the fields GitHub returns by default: your GitHub user id, your primary verified email address, and your display name. We do NOT read your repositories, organisations, private code, followers, or any other GitHub data — the OAuth app requests only the default 'read:user' + 'user:email' scopes. Finkavo does not post to GitHub on your behalf. You can revoke Finkavo's access at any time from https://github.com/settings/applications — that immediately breaks any active session that was minted via GitHub sign-in.

Your rights

Under RGPD you can access, correct, export, or delete your data. Access + correction: /app/settings/profile. Export: same page, Danger Zone → Export my data (JSON). Delete: same page, Danger Zone → Delete my account. You don't need to ask anyone. You also have the right to lodge a complaint with the Portuguese Data Protection Authority (CNPD — https://www.cnpd.pt/) or the supervisory authority in your EU country of residence.

Data controller

Data controller: Abolfazl Shirkavand, operating as sole proprietor (empresário em nome individual), registered at Rua Francisco Marques Beato n.º 8, 5.º B, Moscavide, Portugal. Contact: hello@finkavo.com. No Data Protection Officer has been formally designated because Finkavo does not carry out large-scale monitoring of data subjects nor process special-category data as its core activity (RGPD Art. 37(1)) — hello@finkavo.com is the direct route for privacy questions and RGPD requests.

Contact

hello@finkavo.com. We'll respond within 3 business days. For RGPD-specific requests we'll respond within the 30-day statutory window.