Privacy Policy
Last updated: 21 February 2026
Overview
SubTracker ("we", "us", "our") is an Australian subscription tracking service. We take your privacy seriously. This policy explains what data we collect, how we use it, and your rights regarding that data.
What We Collect
Account information: When you sign up via Clerk (our authentication provider), we store your email address and display name. This is used to identify your account and send you renewal reminder emails.
Subscription data: The subscription details you save (merchant name, amount, frequency, category, renewal date, business/personal tag) are stored in our database (Convex) and associated with your account.
Payment information: Payments are processed by Stripe. We store a reference to your Stripe session for fulfilment purposes. We never see or store your card details.
Bank Statement Processing
When you upload a bank statement (PDF or CSV), the text content is extracted in memory on our server and sent to Google's Gemini AI for analysis. We do not store your bank statement. The file is processed in a single request and immediately discarded. Only the extracted subscription details (merchant name, amount, frequency) are retained — and only the ones you explicitly approve during the review step.
Third-Party Services
- Clerk — Authentication and user management. See Clerk's Privacy Policy.
- Convex — Real-time database for storing your subscription data. See Convex's Privacy Policy.
- Google Gemini — AI processing of bank statement text for subscription extraction. Statement text is sent to Google's API and processed per Google's AI Terms.
- Resend — Transactional email delivery for renewal reminders. See Resend's Privacy Policy.
- Stripe — Payment processing. See Stripe's Privacy Policy.
Email Reminders
We send renewal reminder emails the day before a tracked subscription is due to renew. These are sent to the email address associated with your account. Reminders are enabled by default for all active subscriptions.
Data Retention
Your subscription data is retained for as long as your account is active. If you delete your account, all associated data (subscriptions, upload history) will be permanently removed. Bank statement files are never stored — they are processed in memory and discarded immediately.
Your Rights
You can:
- Access all your stored subscription data through the dashboard
- Edit or delete any subscription at any time
- Export your data as CSV
- Request account deletion by contacting us
Data Security
We use industry-standard security practices including encrypted connections (HTTPS), authenticated API endpoints, and secure third-party services. We do not require or store bank login credentials — SubTracker works with downloaded statement files only.
Changes to This Policy
We may update this policy from time to time. Changes will be reflected on this page with an updated date. Continued use of SubTracker after changes constitutes acceptance of the revised policy.
Contact
For privacy-related questions, contact us at privacy@subtracker.com.