Privacy Policy

When you create a MetaSpend account, we collect:

• Email address and a hashed password (if you sign up with email/password), or
• Your Ethereum wallet address (if you sign in with "Sign-In with Ethereum" — we never see or store your private keys; wallet sign-in only proves you control the address via a signed message).

The MetaSpend browser extension reads the MetaMask Card and MetaMask Portfolio web pages (card.metamask.io and portfolio.metamask.io) that you have open in your own browser, and extracts the transaction history already visible to you on those pages. Specifically, the extension reads:

• Merchant name
• Transaction date, time, amount, and status (pending/settled/declined/refunded)
• Masked card number (last digits only, as shown on the MetaMask Card page) and funding source
• Crypto amount spent and network gas fee
• Your card balance, as displayed on the page

This data is sent to MetaSpend's servers over an encrypted (HTTPS) connection, authenticated with a private pairing token generated from your MetaSpend account (Settings → Browser extension). The extension does not collect your browsing history, location, or any data from websites other than the two MetaMask domains listed above, and does not use cookies or third-party tracking.

To automatically sort your transactions into spending categories, MetaSpend uses a combination of (a) categories you've manually assigned in the past, (b) simple built-in matching rules, and (c) for merchants it hasn't seen before, an AI categorization step that sends the merchant name (not the transaction amount, date, or any other transaction detail) to OpenAI's API to suggest a category. You can review, correct, or override any AI-suggested category at any time.

Your account and transaction data are stored in a private Postgres database operated by MetaSpend. We do not sell, rent, or share your personal or transaction data with third parties for advertising or any other purpose. Data is retained for as long as your account is active; you may request deletion of your account and all associated data at any time (see Contact, below).

• OpenAI — receives merchant names only (see Section 3), used solely to suggest spending categories.
• We do not use any analytics, advertising, or tracking pixels on the MetaSpend dashboard.

• You can disconnect the browser extension at any time from the extension popup or from Settings in the web app, which immediately revokes its access token.
• You can delete individual transactions, categories, or your entire account from the web app.
• You can request a copy or deletion of your data by contacting us (below).

Passwords are stored using industry-standard hashing (bcrypt) and never in plain text. API access uses short-lived authentication tokens. The browser extension's pairing token is scoped only to the transaction-sync endpoint it needs and can be revoked at any time.

We may update this policy as MetaSpend evolves. Material changes will be reflected by updating the "Last updated" date above.

Questions about this policy or your data? Contact us at privacy@metaspend.app.