How we protect your data
Monse never asks for your bank password, does not use Open Finance, and does not connect directly to your account. You only upload a statement, bill, or screenshot that you already have, and we process only the content needed to generate the analysis.
Each uploaded file is stored in a user-isolated area in Supabase Storage. No other user can access your files. Access is controlled by Row Level Security (RLS) in the database.
All communication between your browser and our servers uses HTTPS with TLS. Stored data is protected by Supabase infrastructure, including encryption at rest.
Passwords are managed by Supabase Auth using modern authentication practices. We also support social login through OAuth, and session tokens expire automatically.
Your financial data is never sold, rented, or shared with third parties for advertising. We also do not use your files to train external AI models.
When you delete your account, your Monse data, including uploaded files and processed transactions, is permanently removed within up to 30 days.
Found a security issue? Please send a responsible report to: [email protected]