Cookie Policy of Conspicuous
This document informs Users about the technologies that help this Application to achieve the purposes described below. Such technologies allow the Owner to access and store information (for example by using a Cookie) or use resources (for example by running a script) on a User’s device as they interact with this Application.
For simplicity, all such technologies are defined as "Trackers" within this document – unless there is a reason to differentiate.
For example, while Cookies can be used on both web and mobile browsers, it would be inaccurate to talk about Cookies in the context of mobile apps as they are a browser-based Tracker. For this reason, within this document, the term Cookies is only used where it is specifically meant to indicate that particular type of Tracker.
Some of the purposes for which Trackers are used may also require the User's consent, depending on the applicable law. Whenever consent is given, it can be freely withdrawn at any time following the instructions provided in this document.
This Application uses Trackers managed directly by the Owner (so-called “first-party” Trackers) and Trackers that enable services provided by a third-party (so-called “third-party” Trackers). Unless otherwise specified within this document, third-party providers may access the Trackers managed by them.
The validity and expiration periods of Cookies and other similar Trackers may vary depending on the lifetime set by the Owner or the relevant provider. Some of them expire upon termination of the User’s browsing session.
In addition to what’s specified in the descriptions within each of the categories below, Users may find more precise and updated information regarding lifetime specification as well as any other relevant information — such as the presence of other Trackers — in the linked privacy policies of the respective third-party providers or by contacting the Owner.
How this Application uses Trackers
Necessary
This Application uses so-called “technical” Cookies and other similar Trackers to carry out activities that are strictly necessary for the operation or delivery of the Service.
Trackers managed by third parties
-
Stripe (Stripe, Inc.)
Stripe is a payment service provided by Stripe, Inc.
Personal Data processed: email address, first name, last name, Trackers and Usage Data.
Place of processing: United States – Privacy Policy.
Trackers duration:
- 1: indefinite
- __Host-LinkSession: 2 years
- __stripe_mid: 1 year
- __stripe_sid: 30 minutes
- _mf: indefinite
- dashboard.banner-dismissals: duration of the session
- link.auth_session_client_secret: duration of the session
- m: 2 years
- pay_sid: 1 year
-
Supabase (Supabase, Inc.)
Supabase is a hosting and backend service provided by Supabase, Inc.
Personal Data processed: Trackers, Usage Data and various types of Data as specified in the privacy policy of the service.
Place of processing: Singapore – Privacy Policy.
Trackers duration:
- sb-access-token: duration of the session
- sb-refresh-token: duration of the session
Other Trackers
-
Stripe (Payment Processing)
Payments and in-app donations are processed by Stripe, Inc. (“Stripe”). Payment card details are transmitted directly to Stripe and are not stored on the Owner’s servers. Stripe processes transactions in accordance with PCI DSS Level 1 standards. The Owner receives non-sensitive payment metadata (e.g., amount, currency, status) for record-keeping, fraud prevention, and customer support.
-
Supabase (Hosting and Database Services)
Supabase, Inc. provides managed hosting, database, and authentication infrastructure used by this Application. Personal Data (e.g., user identifiers, profile data, encrypted access tokens, and Application usage metadata) may be stored on Supabase infrastructure and is protected by encryption in transit and at rest. Supabase acts on documented instructions from the Owner and does not use Personal Data for independent purposes.
-
Security Summary
The Owner implements technical and organizational measures appropriate to the risk to ensure the confidentiality, integrity, and availability of Personal Data.
Security safeguards include:
Encrypted communication over SSL/TLS
Storage encryption using AES-256
Role-based access control
Regular security audits and automatic backups.
While the Owner strives to maintain industry-standard protections, users acknowledge that no online transmission or storage system can be guaranteed to be 100 % secure.
Experience
This Application uses Trackers to improve the quality of the user experience and enable interactions with external content, networks and platforms.
Trackers managed by third parties
-
Automatic Data Refresh
For users who have linked financial accounts, this Application may periodically refresh authorized data (e.g., updated transactions or balances) to provide current results in competitive features. Users can pause or stop refresh by unlinking accounts in settings. Refresh frequency may vary by user settings and by the availability of financial institutions.
-
Community Standards and User Conduct
To maintain a safe and transparent environment, users of this Application agree to interact respectfully with other participants.
Content or behavior that is fraudulent, defamatory, hateful, sexually explicit, or otherwise unlawful is prohibited.
The Owner reserves the right to remove or restrict content or accounts that violate these standards, at its discretion and without prior notice.
Reports of abuse can be submitted through in-app reporting tools or by email at tasso@conspicuous.app
.
-
Third-Party Links and External Content
This Application may contain links to third-party websites or user-generated content that lead to external platforms (for example, social-media profiles or other online services).
Such external resources are not operated or controlled by the Owner, and their privacy practices may differ.
Users who follow external links do so at their own risk and should review the privacy policies of the respective sites.
The Owner does not permit or endorse links to content that violates its Community Standards or applicable law.
Marketing
This Application uses Trackers to deliver personalized ads or marketing content, and to measure their performance.
Trackers managed by third parties
-
Account and Data Deletion
Users may delete their account or unlink financial accounts at any time through in-app settings or by contacting tasso@conspicuous.app
. Upon deletion, Plaid access tokens and associated financial data are erased within 30 days, except where retention is required by law (e.g., payment records). Public displays linked to the user’s handle cease for future periods once deletion is processed.
-
Children's Privacy
This Application is not directed to individuals under the age of 18. The Owner does not knowingly collect Personal Data from minors. If a parent or guardian believes that a minor has provided this Application with Personal Data without their consent, they should contact the Owner at tasso@conspicuous.app ; the Owner will delete such data promptly.
-
Mailchimp (Intuit Inc.)
Mailchimp is an email address management and message sending service provided by Intuit Inc.
Personal Data processed: email address, Trackers and Usage Data.
Place of processing: United States – Privacy Policy.
Trackers that do not fit the above categorizations
-
Firebase Analytics (Google LLC)
Used to analyze anonymized app interactions and performance (session duration, device type, crashes). No financial or personally identifiable banking data is transmitted.
-
Plaid (Financial Data Retrieval)
This Application connects to users’ financial accounts through Plaid Inc. (“Plaid”) to retrieve read-only financial information. When a user links an account, Plaid provides the Owner with transaction and balance data such as merchant name, transaction amount, date, and category, as well as non-sensitive account identifiers (e.g., financial institution name and last four digits). The Owner does not receive or store bank login credentials. A short-lived public token is exchanged server-side for an access token, which is stored encrypted (AES-256) and used solely to refresh user-authorized data. For more information, see Plaid’s privacy policy at https://plaid.com/legal/
-
Public Display of User-Selected Financial Data (Leaderboards and Profiles)
Certain features of this Application (e.g., leaderboards, rankings, match results, public profiles) display information that a user has chosen to make public. Users select a handle (display name) and may opt to display financial outcomes derived from their linked accounts (for example, total spend, rank/position, badges, or summaries) in a pseudonymous or identified manner according to their profile settings. Underlying bank credentials, full account numbers, and raw transaction identifiers are never displayed.
Users can change visibility preferences or withdraw from public displays at any time in the Application settings. Where a user withdraws, future public display ceases; previously published items may remain visible for audit, community integrity, or legal compliance, consistent with this policy.
How to manage preferences and provide or withdraw consent on this Application
Whenever the use of Trackers is based on consent, users can provide or withdraw such consent by setting or updating their preferences via the relevant privacy choices panel available on this Application.
With regard to any third-party Trackers, Users can manage their preferences via the related opt-out link (where provided), by using the means indicated in the third party's privacy policy, or by contacting the third party.
How to control or delete Cookies and similar technologies via your device settings
Users may use their own browser settings to:
- See what Cookies or other similar technologies have been set on the device;
- Block Cookies or similar technologies;
- Clear Cookies or similar technologies from the browser.
The browser settings, however, do not allow granular control of consent by category.
Users can, for example, find information about how to manage Cookies in the most commonly used browsers at the following addresses:
Users may also manage certain categories of Trackers used on mobile apps by opting out through relevant device settings such as the device advertising settings for mobile devices, or tracking settings in general (Users may open the device settings and look for the relevant setting).
How to opt out of interest-based advertising
Notwithstanding the above, Users may follow the instructions provided by YourOnlineChoices (EU and UK), the Network Advertising Initiative (US) and the Digital Advertising Alliance (US), DAAC (Canada), DDAI (Japan) or other similar services. Such initiatives allow Users to select their tracking preferences for most of the advertising tools. The Owner thus recommends that Users make use of these resources in addition to the information provided in this document.
The Digital Advertising Alliance offers an application called AppChoices that helps Users to control interest-based advertising on mobile apps.
Consequences of denying the use of Trackers
Users are free to decide whether or not to allow the use of Trackers. However, please note that Trackers help this Application to provide a better experience and advanced functionalities to Users (in line with the purposes outlined in this document). Therefore, if the User chooses to block the use of Trackers, the Owner may be unable to provide related features.
Owner and Data Controller
The Conspicuous Company
1111B S Governors Ave STE 39278
Dover, DE 19904
Owner contact email: tasso@conspicuous.app
Since the use of third-party Trackers through this Application cannot be fully controlled by the Owner, any specific references to third-party Trackers are to be considered indicative. In order to obtain complete information, Users are kindly requested to consult the privacy policies of the respective third-party services listed in this document.
Given the objective complexity surrounding tracking technologies, Users are encouraged to contact the Owner should they wish to receive any further information on the use of such technologies by this Application.