Last updated: 21 April 2026
Brightfield Software respects user privacy and is committed to protecting it through thoughtful design and responsible data practices. This Privacy Policy explains how information is handled when you use SpendFox.
Brightfield Software acts as the data controller for personal data processed in connection with SpendFox, except where third-party providers such as Enable Banking AS act as independent data controllers or processors under their own legal obligations.
SpendFox is built with a strong emphasis on privacy and on-device processing. Wherever possible, functionality is designed to operate without collecting or transmitting personal data.
SpendFox does not have user accounts. There is no sign-up, no email address, no username, and no password. This is a deliberate design choice - it means that the data passing through our servers during a bank synchronisation cannot be tied to a named person by us, because we do not know who you are in the first place.
If the app requires data to function, that data is handled deliberately and transparently.
Minimal Data Collection
SpendFox is designed to operate with minimal data collection. Most features function entirely on your device and do not require us to collect or store personal data on our servers.
Certain optional features - such as connecting a bank account for automatic transaction synchronisation - require the temporary processing of financial data through third-party services at your explicit request.
Bank Account Connections
When you choose to connect a bank account, we use a third-party financial connectivity provider, Enable Banking AS, to securely authenticate your bank and retrieve account balances and transaction history. This provider acts as an intermediary between SpendFox and your bank and enables secure access to financial data without sharing your banking credentials with us.
Enable Banking AS operates as a regulated financial service provider and processes your data in accordance with applicable financial regulations and its privacy policy:
This process is initiated only with your explicit consent. Brightfield Software does not store your banking credentials, transaction amounts, account balances, or transaction history on its servers. Financial data retrieved through this provider is transmitted securely to your device.
How Your Transactions Appear in the App
During a bank synchronisation, two things happen to make your transactions easier to read:
Tidying up transaction names. Banks often provide messy transaction descriptions like "BCK*ETOS VATHORST 1234". To turn these into readable names like "Etos", we use a service provided by Mistral AI. Only the store name is sent - never your name, account number, the amount you spent, or when you spent it. Each request is an anonymous list of store names with no way to link it back to you. We have a Zero Data Retention agreement with Mistral AI, which means they do not store or use any data we send - it is processed and immediately discarded on their end.
Showing merchant logos. To display a logo next to each transaction, we look up the store name against our own merchant catalog hosted on Brightfield Software infrastructure within the European Union. Only the store name is sent - never any information about you or your transaction. Lookups are shared across all SpendFox users, so if two people shop at the same store, only one lookup is needed. The catalog is general-purpose and is not connected to any individual user.
Where Your Data is Processed
Brightfield Software's own infrastructure is hosted entirely within the European Union. This is a deliberate choice - it means that any data passing through our infrastructure is processed and stored under EU data protection law, regardless of where you are located.
When you connect a bank account, your financial data is processed by Enable Banking AS, a company based in Norway. Norway is subject to the European Economic Area (EEA) data protection framework, and this transfer does not leave the EEA.
Transaction name tidying (Mistral AI) is processed within the EU under a Zero Data Retention agreement - Mistral does not store or retain any data we send.
Many features in SpendFox are designed to operate entirely on your device. This means:
App Verification
Because SpendFox has no user accounts (see Section 1), we need another way to protect our servers from abuse - without requiring you to identify yourself. We use Apple's App Attest framework for this. It allows us to confirm that a request is coming from a genuine, unmodified copy of SpendFox, without knowing who is using it.
To do this, a verification key for your device is stored on our server. This key answers one question only: "is this a real copy of SpendFox?" It does not tell us who you are, what you do in the app, or anything about your transactions. It is not connected to your name, email, or any personal profile - because we don't collect those things.
This key is retained for up to one year and can be deleted on request (see Section 11).
Brightfield Software uses third-party services only where necessary to provide features you explicitly choose to enable. The table below summarises each service and what information it does and does not receive.
| Service | What it does | What it receives | What it never receives |
|---|---|---|---|
| Enable Banking AS (Norway/EEA) | Connects European bank accounts | Your bank's authentication flow | Your banking credentials are never shared with us |
| Mistral AI (EU, Zero Data Retention) | Tidies up transaction names (Section 2) | Store names only, stripped of personal details. Nothing is stored by Mistral. | Amounts, dates, your identity, account numbers |
| Apple App Attest | Verifies app integrity (Section 3) | A verification check from your device | Your identity or transaction data |
We do not sell, rent, or share personal data for advertising, marketing, or profiling purposes. Third-party services are used solely to perform the limited functions described above.
Apple and the App Store
SpendFox is distributed through the Apple App Store. Apple may independently collect certain data in connection with your use of the App Store and your device, including diagnostics and performance information, in accordance with Apple's Privacy Policy. This data is collected by Apple acting as an independent data controller and is not accessible to or controlled by Brightfield Software.
SpendFox is not directed at children under the age of 13 and is not knowingly designed to collect personal data from children. If you believe a child has provided personal data through the app, please contact us at hello@spendfoxapp.com and we will take steps to delete such information.
SpendFox is designed to minimise data retention.
We do not store your transactions, the names of places you've shopped, what you spent, when you spent it, your account balances, or your banking credentials on our servers.
A small amount of operational data is stored to keep the app working:
We apply appropriate technical and organisational measures to protect any data processed in connection with the app, including encryption and secure authentication mechanisms.
We do not use financial data for behavioural tracking, advertising, or user profiling.
If something goes wrong, you can report a problem from within the app. There are two levels of reporting, and you choose which one to use:
Basic report
You describe the issue in your own words. We receive your description along with basic device information (app version, phone model, operating system). No transaction data is included.
Detailed support session
If we need more information to investigate a specific issue, you can choose to open a support session. This gives our team a closer look at what happened during your next bank synchronisation.
This is entirely optional and works like this:
The recorded data is automatically and permanently deleted within 72 hours, whether or not our team has had time to review it. There is no way to extend this. Each support session is a one-off - it covers only the specific issue you reported and only the synchronisation that occurs during the session.
Because SpendFox has no user accounts, the information collected in a support session is tagged with a random reference number only. Our engineering team can see what went wrong during the sync, but they cannot see who it happened to.
If SpendFox crashes, you may be asked on your next launch whether you'd like to send a crash report.
If you choose to send it, we receive a technical snapshot of what went wrong - the kind of information Apple collects automatically for all apps. This includes the app version, your phone model, and the operating system version. It does not include any of your transaction data, account information, or personal details.
Crash reports are automatically deleted after 30 days and are used solely to find and fix bugs.
You are always asked before a report is sent. If you choose not to send it, nothing leaves your device.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware, as required under GDPR Article 33. Where a breach is likely to result in a high risk to your rights and freedoms, we will also notify affected users without undue delay in accordance with GDPR Article 34.
Connecting a bank account is optional and requires your explicit consent. You may choose not to enable this feature and continue using SpendFox with manually entered data.
If you connect a bank account, you may revoke access at any time within the app. Once disconnected, no new financial data will be retrieved.
Because financial data is processed and stored locally on your device, deleting the app removes access to any previously retrieved account information.
The legal basis for processing financial data is your explicit consent under Article 6(1)(a) of the General Data Protection Regulation (GDPR). You may withdraw your consent at any time by disconnecting your bank account within the app.
Under the General Data Protection Regulation (GDPR), you have the right to:
Seeing what we hold
SpendFox includes a built-in feature that shows you exactly what data we hold for your device. You can find it in Settings within the app. Because we store so little, the response is short - it shows your app verification key, any active bank connection references, any open support sessions, and a list of everything we deliberately do not store.
You may also exercise your rights by contacting hello@spendfoxapp.com.
Requesting deletion
You can ask us to delete all data we hold for your device, including your app verification key and any active bank connection references. To do so, use the in-app feature or contact hello@spendfoxapp.com. We will process deletion requests within 30 days.
Health counters (described in Section 6) are anonymous totals that are not linked to any individual, so they cannot be deleted on a per-user basis - but they also cannot be used to identify you.
You also have the right to lodge a complaint with your local data protection supervisory authority. For EU residents, a list of supervisory authorities is available at edpb.europa.eu.
For US residents, data protection rights and remedies vary by state. Where applicable state privacy laws apply, you may exercise your rights by contacting us at hello@spendfoxapp.com.
This Privacy Policy may be updated if app functionality or data practices change. Any material changes will be reflected on this page, and the "Last updated" date will be revised accordingly.
If you have questions about this Privacy Policy or our data practices, please contact:
hello@spendfoxapp.com
Brightfield Software