Privacy Policy
Last updated: July 1, 2026
At Aurum, privacy is the core of the design. Your financial information is processed and stored exclusively on your device: it never reaches our servers, not even when you enable Google Drive backup. We keep no databases with your data and no copies of your information on any server of our own.
1. Identification and Contact
This website and the Aurum application are managed in order to provide a local-first financial management tool.
For any query related to privacy or technical operation, you can contact us exclusively through:
- Email: [email protected]
2. "Zero Collection" Data Policy
Aurum is not a traditional cloud-based service (SaaS). It is a local management tool.
- No Registration and Local Processing: It is not necessary to create an account on our servers to use the application.
- For certain specific functions, such as retirement estimates, the application may request data such as your name or date of birth. However, we do not store this data; it is used exclusively to perform calculations in real time and is processed locally on your device.
- No Proprietary Databases: We do not store your financial information, passwords, balances, or movements in any database managed by us.
3. Storage and Custody (Google Drive)
The user is the sole owner and custodian of their information.
- User Control: If you decide to use the backup function, the data is saved in a file within your personal Google Drive account.
- Your backup content is point-to-point: The application reads and writes that file directly from your device to your Google Drive. The content of your backups never passes through our servers nor is it stored on them.
- Authentication service (so you don't have to log in repeatedly): To keep your Drive session alive without asking you to sign in over and over, we use our own authentication service (a serverless function hosted on Cloudflare) that only handles the Google sign-in step. This service stores nothing on our servers: the credential that keeps your session alive (the refresh token) is stored encrypted inside a cookie in your own browser, not in a database of ours. For transparency: this service holds the application key (client secret) needed to renew access and, technically, takes part in the authentication step; by design it neither accesses nor stores the content of your backups, which always travel directly between your browser and your Google Drive.
- Minimal scope: The permission requested from Google (
drive.file) limits access exclusively to the files the application itself creates. Aurum cannot see or access the rest of your Google Drive. - File Management and Deletion: The user can deactivate synchronization at any time from the application settings. If you wish to delete the file permanently and prevent the application from automatically regenerating it when performing new operations, you must disconnect the application from your Google Drive account.
- Revocation of Access: When you disconnect Drive from the settings, we revoke the credential at Google and delete the session cookie. You can also remove Aurum's access to your Drive at any time through your Google account security settings.
4. Statistical Analysis and Browsing (Anonymous)
To understand how our website is used and to improve the tool, we use Cloudflare Web Analytics.
- Total Anonymity: This analysis tool does not use cookies or track users across different websites.
- Data Collected: We only collect aggregated and anonymous information, such as the country of access, the type of operating system, the type of device, and the pages visited.
- Purpose: This data is used exclusively for statistical purposes to optimize the technical performance of the website.
- In no case is this data linked to your identity or your financial activity within the application.
5. User Rights
Given that we do not collect identifiable personal or financial data, we do not store information that we can rectify or delete on your behalf.
The management of financial data is carried out entirely from the application interface by the user themselves on their own storage.
6. Security
The security of your information depends on factors external to Aurum:
- The physical and digital security of your device.
- The security and access credentials of your Google Drive account.
- We strongly recommend the use of two-factor authentication (2FA) on your Google account.