Privacy Policy
This document explains what data we process when you use Duitku, why we process it, and what control you retain over your personal financial data.
We only process the data needed to operate the app and its core features.
Your financial data stays isolated per user and is not shared across accounts.
You can request account deletion through the process available in the app.
01
Scope of Data
When you create an account and use Duitku, we may process basic identity data, authentication details, and financial data that you intentionally enter into the app.
That financial data may include account names, income sources, expense categories, transaction records, and usage metadata required to maintain service security.
02
How We Use Data
We use your data to provide Duitku's core features, including authentication, account data synchronization, transaction recording, and dashboard summaries.
We also process relevant data to prevent abuse, enforce account security, and maintain audit logs for important actions related to security and data integrity.
- Handling login, password reset, and session management.
- Displaying financial data only for the relevant user account.
- Keeping audit trails for important and sensitive activities.
03
Protection and Security
We apply reasonable technical and organizational safeguards to protect data, including access restrictions, server-side validation, and per-user data separation.
Even with those efforts, no digital system can be guaranteed to be entirely risk-free. You are therefore also responsible for keeping your account credentials confidential.
04
Storage and Retention
We retain data while your account is active or as long as it is needed for legitimate operational, security, and internal compliance purposes.
Audit records related to security and material activity may be retained longer to preserve the integrity of the action history within the system.
05
User Rights
You can update certain data through the features available in the app. Subject to operational process limits and our internal obligations, you may also request account deletion.
When an account deletion request is approved and processed, data that is no longer needed will be deleted or anonymized, except for data that must be retained for security, auditability, or dispute resolution.
06
Policy Updates
We may update this Privacy Policy from time to time to reflect changes in the product, operations, or relevant legal requirements.
The latest version will always be published on this page together with its effective date, and continued use of the service after an update is treated as acceptance of the revised version.