Privacy Policy

Last updated: April 9, 2026

NoJoke.Cash ("we", "us", "our") operates the website nojoke.cash and provides debt-payoff calculators, budgeting tools, bank-account linking, and related personal-finance services (the "Service"). This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information.

By creating an account or using the Service you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

1. Information We Collect

1.1 Account Information

When you register for an account we collect your name, email address, and a password (stored only in hashed form). We also store a session token (JWT) so you stay signed in.

1.2 Financial Data You Provide

You may manually enter debt balances, interest rates, monthly payments, budget amounts, and other financial figures into our calculators and planning tools. If you upload a bank or credit-card statement (CSV or PDF), we parse its contents to extract transaction data. We do not retain the raw uploaded file after processing.

1.3 Financial Data via Stripe Financial Connections

If you choose to link a bank account, we use Stripe Financial Connections to securely retrieve information from your financial institution. You authenticate directly with your bank through Stripe's interface — we never see or store your bank login credentials.

Through Stripe Financial Connections, we may access the following categories of data, depending on the permissions you grant:

  • Account details — institution name, account name, account type and subtype, last four digits, currency
  • Balance information — current (ledger) and available balances
  • Ownership information — account holder name and mailing address on file with your bank
  • Transaction history — date, description, amount, and type (credit/debit) of transactions

We access this data solely to provide the features you requested: populating your dashboard, categorizing spending, tracking balances, calculating net worth, and generating budget insights. We do not sell, rent, or share your financial data with third parties for their own marketing or advertising purposes.

1.4 Payment Information

If you subscribe to a paid plan (Pro or Boss), payment is processed entirely by Stripe. We do not receive, handle, or store your credit card number or bank payment details. Stripe's handling of your payment information is governed by the Stripe Privacy Policy.

1.5 Automatically Collected Information

Our servers automatically log standard request data such as IP address, browser type, referring URL, and timestamp when you visit the site. We use this data for security monitoring, abuse prevention, and basic aggregate analytics. We do not currently use any third-party analytics or tracking services (such as Google Analytics).

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Authenticate your identity and secure your account
  • Display your financial dashboard, balances, transactions, budgets, and net-worth calculations
  • Categorize and analyze your spending patterns
  • Generate debt-payoff projections and budget recommendations
  • Process subscription billing (via Stripe)
  • Send essential account notifications (e.g., trial expiration, security alerts)
  • Detect, prevent, and respond to fraud, abuse, or security incidents
  • Comply with legal obligations

We do not use your financial data for advertising, profiling for third parties, or any purpose unrelated to delivering the Service to you.

3. Stripe Financial Connections — Additional Disclosures

When you connect a bank account through Stripe Financial Connections:

  • Your bank credentials are handled entirely by Stripe and your financial institution. NoJoke.Cash never receives, processes, or stores your bank username or password.
  • Stripe may periodically refresh your account data (balances, transactions) to keep your dashboard current. You can learn more about how Stripe handles this data in the Stripe Privacy Policy.
  • We request only the data permissions necessary to deliver the features you use (e.g., balances for net-worth tracking, transactions for spending categorization).
  • We will not sell any data obtained through Stripe Financial Connections.
  • You may disconnect a linked account at any time from the Accounts page in your dashboard. Disconnecting stops all future data retrieval from that account.
  • Upon disconnection or account deletion, we will delete the associated financial data from our systems within 30 days, except where retention is required by law.

4. How We Share Your Information

We do not sell, rent, or trade your personal information. We share data only in the following limited circumstances:

  • Stripe — for payment processing, bank-account linking via Financial Connections, and related financial infrastructure. Stripe may collect data including via cookies and similar technologies. Stripe uses this information to operate and improve its services, including for fraud detection, analytics, and enhancing the user experience. See the Stripe Privacy Policy.
  • Legal requirements — we may disclose information if required by law, regulation, legal process, or governmental request.
  • Safety and security — we may share information to investigate fraud, protect rights and safety, or enforce our Terms of Service.

5. Data Security

We implement industry-standard administrative, technical, and physical safeguards designed to protect your data, including:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Passwords stored using one-way cryptographic hashing — we cannot read your password
  • Authentication via short-lived JSON Web Tokens (JWT)
  • Server access restricted to authorized personnel
  • Regular vulnerability assessments

No method of electronic transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

6. Data Retention

We retain your account and financial data for as long as your account is active and as needed to provide the Service. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal, tax, or compliance purposes.

Transaction data imported via Stripe Financial Connections is retained only while your account is active and your bank connection is linked. Disconnecting an account or deleting your NoJoke.Cash account triggers deletion of the associated data.

7. Cookies and Local Storage

We use browser localStorage (not cookies) to store:

  • Your authentication token (to keep you signed in)
  • Your user profile (name, email, role — for faster page loads)
  • Your theme preference (color scheme selection)
  • A flag indicating you've acknowledged the first-visit disclaimer

We do not use advertising or third-party tracking cookies. Stripe may set its own cookies when you interact with its payment or bank-linking interface — see the Stripe Privacy Policy for details.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate or incomplete data
  • Delete your account and associated data
  • Disconnect linked bank accounts at any time, stopping further data collection
  • Export your data in a portable format
  • Withdraw consent for data processing where consent is the legal basis
  • Object to processing or request restriction of processing

To exercise any of these rights, email us at privacy@nojoke.cash. We will respond within 30 days.

9. California Residents (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) grants you additional rights, including the right to know what personal information we collect and how we use it, the right to request deletion, and the right to opt out of the sale of personal information. We do not sell personal information. To make a CCPA request, contact us at privacy@nojoke.cash.

10. Children's Privacy

The Service is not intended for anyone under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 18, we will delete it promptly. If you believe a child has provided us with personal information, please contact us at privacy@nojoke.cash.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you via email or an in-app notice. Your continued use of the Service after changes take effect constitutes acceptance of the updated policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, contact us at:

NoJoke.Cash
Email: privacy@nojoke.cash

Skip to main content