Privacy Policy

Your privacy is important to us. Here's how we protect your data.

Last Updated: December 28, 2025 • Effective Date: December 28, 2025

Introduction

Welcome to lleven! We're committed to protecting your financial data and being completely transparent about how we handle it. This policy explains exactly what we do with your mobile money statements - in plain English.

1. What Data We Collect

1.1 Information You Provide

  • Email Address: Used for account identification and communication
  • Mobile Money Statement (PDF): Your uploaded MTN/Vodafone/Telecel mobile money transaction history
  • Transaction Categories: Categories you assign to your transactions (e.g., "Food", "Transport")
  • Payment Information: Handled securely through Paystack (we don't store card details)

1.2 What's in Your Statement

When you upload your mobile money statement PDF, it contains:

  • Transaction dates, times, and amounts
  • Recipient/sender names and phone numbers
  • Transaction types (payments, transfers, cash-outs, etc.)
  • Account balance history
  • Transaction references

1.3 Information We Generate

  • Financial Analytics: Spending patterns, trends, and insights derived from your transactions
  • Wrapped Report: AI-generated personalized financial story

2. How We Protect Your Data

2.1 Encryption - Triple Layer Security

Your data is encrypted THREE times:

  1. File Encryption (Layer 1): Every PDF you upload is immediately encrypted with a unique encryption key using industry-standard Fernet encryption (AES-128). Each file gets its own random key.
  2. Key Encryption (Layer 2): Your file's encryption key is encrypted again with our master encryption key before being stored.
  3. Storage Encryption (Layer 3): Encrypted files are stored in secure cloud storage with additional server-side encryption.

Result: Your statement is protected by three layers of military-grade encryption.

2.2 Data Processing Security

  • In-Memory Processing: When analyzing your data, we decrypt it temporarily in secure server memory (RAM), never saved to disk in plain text
  • Automatic Cleanup: Decrypted data is automatically removed from memory after processing
  • Secure Caching: We cache your processed data in encrypted in-memory storage for 1 hour for faster loading - then it's automatically deleted
  • No File Downloads: We never download your raw PDF files to our servers' hard drives - they stay encrypted in cloud storage

2.3 Access Controls

  • Email-Based Isolation: You can ONLY access your own data - every query checks your email first
  • No Admin Access: Our admins cannot view your transaction details - only metadata (status, upload date)
  • Secure Sessions: All API requests require authentication tokens
  • HTTPS Only: All data transmission is encrypted using TLS/SSL

3. How We Use Your Data

3.1 Analytics & Insights (100% On Our Servers)

Your transaction data is analyzed on our servers to provide:

  • Spending breakdowns by category
  • Cash flow analysis (income vs expenses)
  • Recurring payment detection (subscriptions)
  • Transaction patterns (peak spending times, habits)

Your raw transactions never leave our infrastructure.

3.2 AI-Powered Wrapped Report

We use AI to create your personalized "Wrapped" experience.

What we send to AI:

  • Aggregated statistics ONLY (total spending, category breakdowns, peak times)
  • Transaction counts and averages
  • NO personal identifiers (no names, no phone numbers, no account numbers)

AI Provider: Groq (using Llama 3.3 70B model)
Data retention by AI: Zero - Groq doesn't store your data after processing
Privacy Policy: https://groq.com/privacy-policy

3.3 Smart Categorization

We automatically detect patterns in your transactions to identify recurring payments and merchants. All processing happens on our servers.

4. Data Storage & Retention

4.1 Where Your Data Lives

  • Cloud Storage: Encrypted files in secure cloud infrastructure (Cloudflare R2 & Hetzner)
  • Database: Encrypted database with metadata and analytics results
  • Data Location: Processed and stored in Europe (Hetzner Germany) and global edge network (Cloudflare)

4.2 Retenton & Deletion

We retain uploaded PDFs and processed data until you delete the report or your account. Cache data expires after 1 hour.

Payment records are kept for 7 years for tax compliance.

When you delete a report:

The encrypted PDF file, analytics, and wrapped data are permanently deleted immediately.

5. Data Sharing

ServiceWhat They GetWhy
Groq AIAnonymized transaction statistics onlyGenerate personalized Wrapped insights
PaystackEmail, amount, referenceProcess payments securely
Cloud StorageEncrypted file blobsStore your data securely

What We DON'T Share

  • ❌ We NEVER sell your data to advertisers
  • ❌ We NEVER share your transactions with banks or mobile money providers
  • ❌ We NEVER use your data to train machine learning models
  • ❌ We DON'T share data with other users (your data is 100% private)

6. Payment Processing

Payments are processed securely via Paystack. We DO NOT store credit/debit card numbers, CVV codes, or bank account details. All card data is handled exclusively by Paystack (PCI DSS compliant).

7. Your Rights & Controls

  • Access Your Data: View all data in the app under "Reports"
  • Download Your Data: You retain your original PDF statement
  • Delete Your Data: Delete individual reports or your entire account in app settings
  • Portability: You can keep your original PDF statement; it's yours!

8. Cookies & Security

We use only essential authentication cookies and session tokens. No third-party tracking or advertising cookies.

Security Measures: HTTPS (TLS), HSTS, Rate Limiting, Input Validation, and regular security audits.

10. Contact Us

Questions or Concerns?