← Back to junto.family
Privacy Policy
Effective Date: April 2026 · Last Updated: April 2026
Plain-language summary: We collect only what's needed to make Junto work. We never sell your data. We never share your data with advertisers. Notification and SMS content stays on your device. We don't ask for your bank credentials. You can delete your account and all associated data at any time.
1. Who We Are
Junto ("we," "us," "our") is a family life management application. This Privacy Policy explains how we collect, use, store, and protect your information when you use the Junto mobile application ("App"), website at junto.family ("Website"), and related services (collectively, the "Service").
For privacy-related inquiries, contact us at: hello@junto.family
2. Information We Collect
2.1 Information You Provide
- Account information: Name, email address, and authentication credentials (via email/password, Google Sign-In, or Sign in with Apple)
- Profile information: Display name, date of birth (optional), preferred currency
- Expense data: Amounts, merchants, categories, dates, notes, and receipt images you manually enter
- Flight data: Flight numbers, airline, airports, dates, and passenger information you enter
- Document data: Document types, names, expiry dates, issuing countries, and document numbers you enter
- Legacy data: Financial accounts, assets, debts, insurance policies, medications, secure notes, and contacts you choose to store
- Family data: Family group membership, member names and roles
2.2 Information Collected Automatically
- Device information: Device type, operating system version, app version, and unique device identifiers for push notification delivery
- Usage data: App feature usage patterns for improving the Service (no content of your data is included)
- Crash data: Anonymized crash reports to improve app stability
2.3 Auto-Capture Data (Opt-In Only)
If you enable auto-capture features, the following applies:
| Source |
What's Processed |
Where It's Processed |
What's Stored |
| Notifications |
Bank/payment app notifications from your whitelist only |
On your device only |
Amount, merchant, date, category only |
| SMS |
Bank transaction SMS matching known patterns |
On your device only |
Amount, merchant, date, category only |
| Email |
Receipt emails from whitelisted senders only |
Server-side (momentary processing) |
Amount, merchant, date, category only |
What we never collect or store: full notification content, personal messages, social media notifications, full SMS content, email body text, bank account numbers, credit/debit card numbers, bank login credentials, account balances, or any content from non-financial notifications.
2.4 Third-Party Data
- Flight data: We receive flight status information from third-party aviation data providers based on flight numbers you enter
- AI-generated content: When you request travel intelligence, we send only the destination, travel dates, and anonymous traveler composition (e.g., "2 adults, 1 child age 5") to Google Gemini. No names, IDs, or personal identifiers are sent.
3. How We Use Your Information
We use your information solely to:
- Provide and maintain the Service
- Process and display your expenses, flights, documents, and other data you enter
- Send you notifications you've opted into (flight alerts, document expiry reminders, expense drafts)
- Deliver subscription entitlements and manage your account
- Improve app performance and fix bugs
- Respond to your support requests
We do not: sell your personal data to anyone, share your data with advertisers, use your data for targeted advertising, use your data to train AI models, share your financial data with third parties, or profile you for marketing purposes.
4. Data Sharing
We share your data only in the following limited circumstances:
- Family members: Data you explicitly share with your family group (family expenses, shared flights, shared documents) is visible to other members of your family group. Personal data remains private unless you choose to share it.
- Group members: Expense data in groups you join is visible to other group members.
- Infrastructure providers: We use Supabase for database hosting and authentication, and Google Cloud for AI processing. These providers process data on our behalf under data processing agreements.
- Legal requirements: We may disclose information if required by law, legal process, or government request.
We do not share your data with any other third parties.
5. Encryption and Security
We implement multiple layers of security to protect your data:
- In transit: All data transmitted between your device and our servers is encrypted using TLS (Transport Layer Security)
- At rest: Database data is encrypted at rest by our infrastructure provider
- Legacy vault: Sensitive legacy data (financial accounts, insurance policies, secure notes, medications) is encrypted with AES-GCM-256 using keys stored in your device's secure hardware (Android Keystore / iOS Keychain). We cannot read your encrypted vault data.
- Document attachments: Document files and ledger attachments are encrypted before upload using your family's encryption key
- Email OAuth tokens: Stored encrypted, in a separate table from your data, accessible only by server-side processes
While we implement industry-standard security measures, no system is completely secure. We cannot guarantee absolute security of your data.
6. Data Retention
We retain your data for as long as your account is active. When you delete your account:
- Your personal data is deleted from our servers
- Your encrypted vault data and encryption keys are permanently deleted
- Data you shared in family groups or expense groups may remain visible to other members (as their copy of shared records)
- Anonymized, aggregated usage analytics may be retained
Auto-capture draft expenses that are not confirmed are automatically deleted after 30 days.
7. Your Rights
Regardless of where you are located, you have the following rights:
- Access: You can view all data stored in your account through the App at any time
- Correction: You can edit or correct any data in your account at any time
- Deletion: You can delete your account and all associated data at any time through the App settings
- Data portability: You can export your data from the App
- Withdraw consent: You can disable any auto-capture feature, revoke notification access, disconnect email, or revoke any permission at any time
- Opt out of communications: You can manage notification preferences in the App settings
To exercise any of these rights, use the relevant features in the App or contact us at hello@junto.family.
8. Children's Privacy
Junto is not directed at children under 18. Only adults (18 years or older, or the age of majority in your jurisdiction) may create accounts. Adult family members may add minors as family members, but minors cannot independently create accounts or access auto-capture features.
We do not knowingly collect personal information from children under 18 without parental consent through the family membership structure. If we become aware that we have collected personal information from a child without appropriate consent, we will take steps to delete that information.
9. International Data Transfers
Your data may be processed and stored on servers located outside your country of residence. Our infrastructure providers operate globally and may process data in jurisdictions that may have different data protection laws than your own.
We ensure appropriate safeguards are in place for international data transfers, including data processing agreements with our service providers that include standard contractual clauses where applicable.
10. Regulatory Compliance
Junto is designed to comply with applicable data protection laws, including:
- Qatar Personal Data Protection Law (Law No. 13 of 2016): We process personal data based on explicit user consent, collect only what is necessary for the Service, and provide mechanisms for data access, correction, and deletion
- GDPR principles: We follow data minimization, purpose limitation, storage limitation, and accountability principles. Users in the EU/EEA may exercise their rights under GDPR by contacting us
- Google Play and Apple App Store policies: Our use of notification access, SMS permissions (Android), and email access complies with platform policies, with declared use cases and explicit user consent
11. Cookies and Tracking
The Junto website (junto.family) does not use cookies, tracking pixels, or analytics trackers. The App does not contain any third-party advertising SDKs or tracking frameworks.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our Website and, where practicable, through the App. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.
13. Contact Us
For questions, concerns, or requests related to this Privacy Policy or your personal data, please contact us at:
Email: hello@junto.family
Website: junto.family