You agree to provide the Provider always only accurate, truthful and current personal data and keep it up to date.
Service provision You acknowledge that Bilance ("Provider") may, as a data controller, process your personal data in a scope specified hereunder as necessary for the performance of a contract arising out of these Terms.
The purpose of this personal data processing is service provision which includes, but is not limited to, setting up and keeping your Bilance account, ensuring Bilance features and providing support. Minimum scope of your personal data required for a conclusion of a contract with the Provider and setting up and keeping your Bilance account include your first name, last name, e-mail address, login credentials, language, currency and subscription details. Provision of other personal data is completely voluntary and therefore the scope of the data being processed by the Provider depends mainly on the Bilance features you want to use.
The scope of the collected data is first name, last name, sex, birth number, or date of birth if the birth number is not applicable, place of birth, permanent address, and citizenship. The purpose of this personal data processing is to comply with the legal obligation to which Bilance is subject.
In case you want to use login through Facebook or Google account, the Provider will process identification details of the respective social media account. As long as you will use the financial tracking and budgeting feature of Bilance the Provider will process your personal financial information (such as incomes, expenses and their details, budgets etc.) based on your input. In case you will use the payment account synchronization feature of Bilance the Provider will process also credentials to access the payment account, transaction details (such as amount, description, note, date and currency) and the payment account details (such as account number, account name, balance, currency, and type of account).
In order to get more personalized experience and better financial advice, you can also fill out your Bilance account and let us process your personal data including profile photo, birth date, sex, family status, place of residence, housing situation, education and employment details, property details and economic situation.
You furthermore acknowledge that as a part of the personal data processing for the purpose of service provision the Provider may use profiling to analyse or predict aspects concerning your family status, housing situation, education and employment, property details and economic situation, as well as behaviour in order to deliver you the best personalised experience and financial advice. This profiling doesn't result in any automated decision-making which would produce legal effects to you or would have similarly significant consequence.
All personal data categories mentioned above in this section can be hereinafter referred to as "Personal data". The Personal data will be processed by the Provider for the purpose of service provision until you delete it or until you or the Provider will terminate the Agreement.
2. Sending marketing communications
You acknowledge that the Provider, as a data controller, may use your email address and its details it has obtained in the course of registration to send you direct marketing communications regarding Bilance. Your e-mail may be used by the Provider until you opt out. You can opt out at any time by clicking on the "unsubscribe" link in the respective e-mail or by another action described therein.
You can give the Provider, as a data controller, consent to process your Personal data for marketing purposes, particularly in order to create audiences and otherwise personalise your ad experience, including marketing communications. The Personal data will be processed by the Provider for marketing purposes until you withdraw your consent. You can withdraw your consent at any time within the Bilance application.
You acknowledge that as a part of the personal data processing for marketing purposes the Provider may use profiling to analyse or predict aspects concerning your family status, housing situation, education and employment, property details and economic situation, as well as behaviour in order to deliver you the best ad experience. This profiling doesn't result in any automated decision-making which would produce legal effects to you or would have similarly significant consequence.
4. Service improvement and development
You acknowledge that the Provider may, as a data controller, process your Personal data for the purposes of legitimate interests in improving and developing Bilance pursued by the Provider, which includes also anonymization of the data. Where possible the Provider will use for this purpose only anonymized data. The Personal data will be processed by the Provider for the purposes of legitimate interests in improving and developing Bilance only for the necessary period of time, maximum until you or the Provider will terminate the Agreement.
You acknowledge that as a part of the personal data processing for purposes of legitimate interests in improving and developing Bilance the Provider may use profiling to analyse or predict aspects concerning your family status, housing situation, education and employment, property details and economic situation, as well as behaviour in order to develop new features and test them. This profiling doesn't result in any automated decision-making which would produce legal effects to you or would have similarly significant consequence.
5. Recipients and transfers to third countries
The Provider may appoint third parties – data processors to perform some of the personal data processing operations, however only for the purposes specified in this Policy, on a basis of written agreement and under statutory conditions.
Otherwise the Provider does not transfer or disclose your Personal Data to any third parties unless you have consented otherwise under this Policy or initiated the disclosure or except as required by the applicable laws.
Sharing your Personal Data with other users of Bilance is completely under your control.
Data processors being used by the Provider include:
Nordigen (Nordigen - SIA "Nordigen Solutions" (registration No.40103982535), a limited liability company registered under laws of the Republic of Latvia and operating as an authorized account information service provider, supervised by the Financial and Capital Market commission of the Republic of Latvia).
To provide access to the data necessary for provision of the Service, each user will be presented with a clear and visible consent screen which will enable user to acknowledge and agree that the user’s payment account information will be retrieved by Nordigen and provided to the Provider prior to performing the services.
Google Cloud Platform (Google Cloud EMEA Limited, 70 Sir John Rogerson’s Quay, Dublin 2, Ireland) Bilance infrastructure is built on the Google Cloud Platform (GCP), which is used by leading financial companies worldwide. GCP adheres to industry standard security, privacy and compliance controls, including:
ISO/IEC 27001, 27017 and 27018
6. Your rights
You acknowledge that in relation to the Personal data processing you have the right to access your Personal data. If you find or presume that the Provider or any of data processors is carrying out processing of your Personal data which is in contradiction with the protection of your private and personal life or with the law, you are entitled to contact them with a complaint concerning the processing of your Personal data and ask for explanation and/or require them to remedy the arisen state of affairs, in particular by blocking (from 25. 5. 2018 "restriction of the processing"), rectification, supplementing or liquidation (from 25. 5. 2018 "erasure") of your personal data.
You acknowledge that you have also right to object, on grounds relating to your particular situation, to processing based on legitimate interest (service improvement and development), including profiling (from 25. 5. 2018). You furthermore acknowledge that you have also right to object to processing for direct marketing purposes (from 25. 5. 2018). Where you object to processing, the Provider will no longer process your Personal data for the respective purposes.
You acknowledge that you have the right to receive your Personal data, which you have provided to the Provider, in a structured, commonly used format and the right to transmit those data to another controller without hindrance from the Provider (from 25. 5. 2018). In exercising this right, you have the right to have your Personal data transmitted directly from the Provider to another controller, where technically feasible. The export feature of Bilance allows you to receive your personal financial information data at any time.
We will need to verify your identity to process your information, access, and deletion requests. To exercise any of the above mentioned rights, please send us e-mail to: firstname.lastname@example.org.
We will answer you within 30 days.
7. Payment information and on-line banking credentials
When you make purchases through Bilance, your credit card information and other data are not collected and stored by the Provider, but only by third party payment processors.
In case you use the payment account synchronization feature of Bilance, your on-line banking credentials are by default used only upon your manual entry and are not stored by Provider or Nordigen as a data processor.
Some of the Bilance features may access and collect your current location data, including GPS coordinates or other similar information regarding the location of your device. Some features of Bilance may not function properly if use of location data is blocked or disabled.
9. Facebook & Google login
You may also sign up for Bilance with your personal Facebook or Google account. In that case, you shall give Provider all the requested permissions to collect your Personal Data.
10. Technical data
You acknowledge that Provider may collect and use technical data, including but not limited to information about your mobile device and system, Internet connection or your use of Bilance application. The purpose of the collection of technical data is to ensure quality, increase your comfort and further analyse and develop Bilance and related services. Technical data is anonymous and stored separately from the Personal Data, therefore it cannot be linked back to you in any way in order to identify you.
Cookies are small pieces of data that are stored on your device to help mobile phone applications like Bilance to remember certain information. Cookies may contain Personal data.
Bilance application is using cookies in order to keep your settings, for security reasons, to analyse your use of Bilance and for targeting advertisement.
12. Data security
Your Personal Data is stored and processed automatically in electronic form on secure servers with firewall protection and physical security measures. Provider's database servers are located within the European Union and in the USA. Provider has to always comply with its high data protection standards. You acknowledge, that even Provider, Nordigen and other data processors use all standard security measures, the security of your Personal Data and other information can't be 100% guaranteed. Contact information If you have any queries relating to the protection and security of your data, please contact Provider email@example.com.
13. Data Retention
In general, Bilance only keeps your personal data for the time necessary to fulfil the purpose of collection or further processing, namely providing the required services. To determine data retention periods Bilance takes into account:
whether personal data is processed based on your consent;
our legal obligations under applicable law;
our contractual obligations and rights;
our legitimate interests;
potential disputes, necessity to be able to investigate any fraud, illegal activity or wrongdoing in connection with the services;
If you wish you can request to delete your personal data you have provided to Bilance by sending an e-mail to: firstname.lastname@example.org
However, some data may be kept for a longer period when it is necessary to fulfill Bilance’s legal obligations, for example the applicable anti-money laundering laws.