MyPelican is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your information when you use the MyPelican app.
1. About MyPelican
MyPelican is run by Apoorv Kumar trading as MyPelican (ABN 65 983 953 179), based in Perth, Western Australia.
2. Information We Collect
We collect only what we need to run the service:
- Your name and email when you sign up
- Your bank account data — only with your explicit consent via Australia's open banking (CDR) framework
- Basic device info to fix bugs and improve the app
3. How We Use Your Information
We use your data to:
- Show your accounts, balances and transactions
- Generate AI savings insights
- Send you account and security updates
- Meet our legal obligations under Australian law
We do not use your data for advertising. Ever.
4. Open Banking (CDR)
We access your bank data through Australia's Consumer Data Right framework via Basiq.
You control everything:
- You choose what data to share and for how long
- You can disconnect at any time from Settings
- We never sell your banking data
- Disconnecting deletes all your data immediately
5. Data Storage and Security
Your data is stored in Australia on Supabase infrastructure with:
- AES-256 encryption at rest
- TLS 1.3 encryption in transit
- Row-level security — only you can see your data
We never store your banking password.
6. Third Party Services
We use three trusted services:
- Basiq — retrieves your bank data via CDR
- Supabase — stores your data securely in Australia
- Anthropic Claude — generates insights from anonymised spending summaries only
None of these services receive your raw personal data for advertising purposes.
7. Your Rights
Under Australian privacy law you can:
- See what data we hold about you
- Correct any wrong information
- Delete your account and all data
- Withdraw bank consent at any time
- Complain to the OAIC at oaic.gov.au
8. Contact Us
Questions or concerns? We respond within 3-4 business days.