Privacy Policy

Last updated: 18/06/2026

What we collect

To detect your subscriptions, Subgent processes the bank transactions you choose to share with us — either by connecting your bank account through our Open Banking provider (GoCardless Bank Account Data) or by importing a CSV file.

• Your email address and basic profile (name, avatar).
• Bank transaction data (dates, amounts, descriptions).
• Bank connection metadata (institution, consent expiry).

What we never do

• We never store your bank login credentials.
• We never expose Open Banking access tokens to your browser.
• We never cache private banking data at the edge.
• We never run third-party analytics on your financial pages.

Where your data lives

Subgent is EU-first. Application functions run in Frankfurt (fra1) and data is stored in the EU (eu-central-1). Sensitive provider data is encrypted at rest.

Your control

You can delete all of your financial data, or your entire account, at any time from your account page. Deleting financial data also revokes your bank consent with our Open Banking provider.

Audit logging

We keep audit logs of bank connection and sync events for security. We avoid logging raw transaction data.

Contact

For privacy questions, contact [email protected].