arrow_back Back to home

Privacy Policy

Version 1
Effective: 17.04.2026

1. Data Controller

The controller of your personal data under Regulation (EU) 2016/679 (GDPR) is:

Jan Zítko Company ID (IČO): 76665496 Skuteckého 1383/8, 163 00 Prague - Řepy, Czech Republic Self-employed individual (OSVČ) Contact: info@treziqo.com

2. What Data We Collect

  • Identification: first name, last name, nickname, email, phone (optional), secondary email (optional)
  • Authentication: password (stored hashed — we never see plaintext), avatar (optional)
  • Financial records you enter: accounts, transactions, categories, budgets, notes
  • Billing: PayPal subscription ID, transaction IDs and amounts (we do not store card numbers — they stay at PayPal)
  • Preferences: language, theme, currency, transactions per page, default sorting
  • Operational: registration date, last login, terms acceptance timestamp, IP address (server logs only)

3. Purpose and Legal Basis

  • Service delivery (GDPR Art. 6(1)(b) — contract performance): all data you enter to use the app
  • Billing (Art. 6(1)(b) + legal obligation under Czech accounting law 563/1991 Coll. — Art. 6(1)(c)): subscription and payment data, retained 10 years
  • Security and fraud prevention (Art. 6(1)(f) — legitimate interest): server logs, login records
  • Customer support (Art. 6(1)(b)): email communication

4. Who Else Sees Your Data (Processors)

We share your data only with providers necessary to operate the service:

  • PayPal (Europe) S.à r.l. et Cie, S.C.A. — payment processing (own Privacy Policy at paypal.com)
  • SvetHostingu.cz, s.r.o. — hosting infrastructure (data stored in EU)
  • SMTP provider — sending transactional emails (password reset, invoices)

We do not sell, rent, or share your data with advertising or marketing partners.

5. Retention

  • Active account: data kept while the account exists
  • After account deletion: most data deleted immediately; billing records retained 10 years (accounting law)
  • Server logs: 90-day rolling

6. Your Rights (GDPR)

  • Access (Art. 15): see all data we have about you — via self-service export in /settings
  • Rectification (Art. 16): correct data via /settings
  • Erasure (Art. 17): delete account via /settings (billing records kept per legal duty)
  • Portability (Art. 20): export all records as ZIP via /settings
  • Object (Art. 21): contact us by email
  • Complaint (Art. 77): Czech Data Protection Authority — www.uoou.cz

7. Cookies

See separate Cookie Policy.

8. Changes to This Policy

We may update this policy. Material changes will be notified by email and in-app banner at least 30 days before taking effect.

Effective from: 2026-04-17