Transparency First

Privacy & Security

At familite.co, we believe your family's data belongs to you. This policy outlines how we protect your information and—more importantly—what we don't do with it.

First Created: March 2026 | Last Updated: May 9, 2026

The "Too Long; Didn't Read" Summary

🚫

We don't sell data.

Your bank statements, passwords, and schedules are never for sale.

🕵️‍♂️

We don't "browse" your files.

If you link a Google Drive file, we store the link, not the file's contents.

📅

Calendar access is opt-in.

We only access calendar data you explicitly connect, to sync and show events in your family space.

🔒

You control visibility.

Use Role-Based Access to hide finances from children or guests.

📦

No Lock-In.

Your family handbook stays with you. You own every link and record.

⚙️

AI is scoped & transparent.

We use Google Vertex AI exclusively to parse bank statements you upload. No profiling, no model training on your data.

What we collect (and why)

To provide your family space, we process a few key types of information:

1. Account & Identity

We use Supabase Auth for secure sign-in. We store your name and email to manage your membership in your Family Workspace.

2. Financial Statements (Money)

When you upload a bank statement (PDF), we store it securely in Google Cloud Storage. The file is used for AI-powered transaction parsing and retained for as long as your account is active. Once the transactions are extracted, you review and choose which ones to save to your ledger. You may request deletion of any uploaded file at any time.

2a. AI-Assisted Processing (Google Vertex AI)

To power our smart parsing feature, uploaded bank statement PDFs are sent to Google Vertex AI (Gemini) — a managed AI service by Google Cloud — which extracts structured transaction data from your document.

You review, confirm, and categorize each transaction before it is saved to your ledger. We do not use your documents to train AI models, and Vertex AI does not retain your content after processing.

Uploaded PDFs are stored securely in our Google Cloud Storage infrastructure for as long as your account is active. You may request deletion of any uploaded file at any time by contacting [email protected].

2b. Bills (Uploads & Forwarded Emails)

When you upload a bill PDF or forward a bill email, we store the source file (PDF or email body and any attachments) securely in Google Cloud Storage. The source is processed by Google Vertex AI (Gemini) to extract a draft bill (amount, due date, payee) that appears in your bill inbox. You can edit, link, or reject the draft at any time; drafts you leave alone remain in the inbox until you act on them.

As with bank statements, we do not use your bill documents to train AI models, and Vertex AI does not retain your content after processing. By default, original PDFs, forwarded email bodies, and parsed bills are retained while your account is active so you can reference them. Each family workspace can configure a bill retention window (between 1 and 120 months) in settings — once set, bills, inbox items, and their attachments older than that window are automatically and permanently deleted. You may also request deletion of any individual uploaded or forwarded bill at any time.

Recurring or repeated bills are not auto-created on your behalf — each bill is parsed from a source you provide.

2c. Bill Email Forwarding

Each family workspace is assigned an auto-generated forwarding address (for example <family-id>@bills.familite.co). Emails sent to this address are processed by the same Vertex AI parsing pipeline described in Section 2b.

We retain the sender address, subject, headers, body, and attachments of forwarded emails alongside the parsed draft so you can verify what was extracted. Forwarded emails are scoped to the receiving family workspace only and are not visible to other families.

Future paid tiers may allow you to customize the forwarding address. Data handling, retention, and deletion rights are unchanged across tiers.

3. The Vault (Documents & Links)

The Vault is storage-agnostic. If you upload a file, we store it securely in Google Cloud Storage. If you paste a link to iCloud or GDrive, we store only the reference link—we do not scan or read your external cloud accounts.

4. Google Calendar (when you connect it)

Connecting Google Calendar is optional. If you choose to connect it, we request two permissions so events from the calendars you select can appear in your family's Planning timeline alongside todos and bills:

  • Read-only calendar access — "See and download any calendar you can access using your Google Calendar." We use this to list the calendars on your Google account so you can pick which ones to connect, and to read and sync events from the calendars you select into your family's Planning timeline.
  • View and edit events — "View and edit events on all your calendars." We use this to create events from the app (including events you schedule with family members), update events when syncing changes, and set up push notifications for calendar updates. Events you schedule with family members from the app are reflected on each member's connected Google Calendar.
Google User Data Disclosure & Sharing

We do not share, transfer, or disclose Google user data to any third parties for advertising, marketing, or unrelated purposes. Data is shared only with our internal Service Providers (e.g., Supabase for database management and Google Cloud Platform for secure storage) as strictly necessary to provide the calendar sync features.

Retention & Deletion of Google Data

We retain your Google user data only for as long as your account is active or the Google Calendar remains connected. If you disconnect your calendar in settings or delete your Familite account, all synced Google data is immediately and permanently removed from our active databases. You may also request manual data deletion at any time by emailing [email protected].

Calendar data is used only to surface your events in the family Planning timeline and to keep events you schedule together in sync with each member's Google Calendar. We do not sell it or use it for advertising. You can disconnect Calendar in app settings at any time to revoke access.

Planning view: the Planning page in Familite displays your events, todos, and bills together in a single timeline. It does not introduce new data types beyond those covered in this section and Sections 2b and 2c. Google Calendar sync is governed by the policies above; todos and bills are governed by Sections 2b, 2c, and the data-retention list below.

Who can see your data?

familite.co is a shared space, but not everyone needs to see everything. We use Role-Based Access Control (RBAC) to let you decide who sees what.

  • Admins: Have full control over finances, vault items, and settings.
  • Members: Can typically see planning and vault items but may have restricted access to finances.
  • Children/Guests: Parents can connect children's calendars (like school schedules) for visibility without giving the child access to parent-level finances.

How we keep it safe

We use industry-standard encryption and security infrastructure to protect your household.

  • Secure authentication. Sign-in uses Google OAuth, brokered by Supabase Auth. We never see, store, or transmit your Google password — Google verifies you and issues a token to Supabase, which then authenticates you to our app.
  • TLS everywhere. Traffic between your browser, our app, and our backend runs over HTTPS, enforced by HSTS so browsers refuse to fall back to unencrypted connections.
  • Signed API requests. Every request to our API carries a short-lived JWT issued by Supabase, which we re-verify against Supabase's rotating signing keys before any data is read or written.
  • Encryption at rest with per-family keys. Bank-statement PDFs, bill PDFs, forwarded email bodies, vault items, and bank account numbers are encrypted using a unique data key for your family. That data key is itself wrapped by Google Cloud KMS, so its plaintext form is never stored in our database. Account numbers use a separate keyed hash for matching, so we can look them up without ever decrypting them.
  • Strict household isolation. Your family data is scoped to a unique Family ID and enforced by Postgres Row-Level Security inside Supabase, in addition to checks in our application layer. A bug that bypassed our app code would still be stopped at the database.
  • Calendar API access. Google Calendar access uses Google's secure OAuth flow with two scopes only — read events and create/update events on the calendars you connect. We never request broader Google account access, and you can revoke it from Settings.
  • AI processing on Vertex AI. Bank-statement and bill parsing run on Google Vertex AI (Gemini) on Google Cloud — not on consumer Gemini or AI Studio. Under Vertex AI's terms, your content is not used to train Google's foundation models and is not retained by Vertex beyond what's needed to return the response for your request.

Analytics & Cookies

We use a small number of third-party tools to understand how the Service is used and to manage cookie consent.

  • Google Analytics: On our marketing website, we collect anonymized usage data (page views, session duration, device type) to understand traffic. No personally identifiable information is sent to Google Analytics.
  • PostHog: Within the Familite app, we use PostHog for product analytics (page views, feature usage) and essential error tracking. Product analytics can be opted out of at any time from your Settings page within the app. Essential error tracking (crash reports, API errors) remains active to ensure service reliability. PostHog data is used solely for internal product improvement and is never sold or shared with advertisers.
  • Cookiebot: We use Cookiebot to manage your cookie consent preferences in compliance with GDPR and ePrivacy regulations.

We do not sell analytics data or use it for advertising. You can manage your cookie preferences via the cookie consent banner on our website, and opt out of in-app product analytics from your Settings page within the Familite app.

Data Retention

We retain your data only for as long as necessary to provide the Service. Here is how long each type of data is kept:

  • Account data (name, email): Retained while your account is active. Deleted upon account deletion.
  • Financial PDFs: Retained in Google Cloud Storage while your account is active. You may request deletion at any time by contacting [email protected].
  • Transaction records: Retained while your account is active. Deleted upon account deletion.
  • Vault files & links: Retained while your account is active. You can delete individual items at any time from within the app.
  • Todos: Retained while your account is active. You can delete individual todos at any time from within the app.
  • Bills (drafts & saved) and forwarded emails: By default, retained while your account is active. Each family workspace can set a bill retention window (1–120 months) in settings; once set, bills, inbox items, and their source PDFs/emails older than that window are automatically and permanently deleted. You may also request deletion of any individual bill or its source at any time by contacting [email protected].
  • Google Calendar data: Retained while the calendar remains connected. Immediately and permanently removed when you disconnect the calendar or delete your account.
  • Analytics data: Google Analytics data is governed by its retention settings (default: 14 months). PostHog analytics data is retained in accordance with our PostHog configuration and used solely for product improvement.

Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct any inaccurate or incomplete data.
  • Deletion: Request that we delete your personal data and account.
  • Data Portability: Request an export of your data in a structured, machine-readable format.
  • Withdraw Consent: Revoke consent for data processing at any time (e.g., disconnect Google Calendar, delete uploaded files, or opt out of product analytics via Settings).

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

Children's Privacy

Children under 13 do not create their own accounts on familite.co. A parent or guardian manages their profile within the Family Workspace and controls what data is visible to them through our Role-Based Access system. We do not knowingly collect personal information directly from children under 13. If you believe a child has provided us with personal data without parental consent, please contact [email protected] and we will promptly remove it.

Still have questions?

We are a small team dedicated to helping families. If you have any concerns about how your data is handled, we want to hear from you.

Email our Privacy Team

[email protected] | Responding as required by law.