Integritetspolicy

Controller

Finaplanr is operated by Testute AB, based in Stockholm, Sweden.

For privacy-related questions, please contact us at testuteab@gmail.com or use the contact form on this site.

Data We Collect

When you use Finaplanr, we collect and process the following data:

  • Account email address (used for authentication and account recovery)
  • Account password (stored only as a cryptographic hash — we never store or have access to your plain-text password)
  • Company profile data (company name, municipality, founder age, ownership percentage)
  • Financial scenario inputs entered into the planner (salary, dividend, tax context, and related planning parameters)

Why We Use This Data

We use your data for the following purposes:

  • To authenticate your identity and maintain your session
  • To provide the Finaplanr planning service
  • To store and reopen your scenarios across sessions
  • To send password reset emails when you request them
  • To improve the product and user experience

Authentication and Sessions

Finaplanr uses email and password authentication. Your password is stored as a cryptographic hash using industry-standard algorithms. We never store or transmit your password in plain text.

When you log in, a session cookie (finaplanr_session) is set in your browser. This cookie is HttpOnly and is used to maintain your authenticated session. It does not contain personal data — only a random session identifier.

Password reset emails are sent through Resend, a third-party email delivery service. These emails contain a time-limited reset link and are sent only when you explicitly request a password reset.

Legal Basis

We process your data based on:

  • Performance of a contract — to operate your account and provide the service you signed up for
  • Legitimate interests — to maintain, operate, and improve the product

Storage

We store user data in a PostgreSQL database hosted in the European Union.

Retention

Your data is retained for as long as your account is active. You may request deletion of your account and associated data at any time by contacting us.

Your Rights

Under applicable data protection law, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data

Contact

For privacy-related questions, please contact us at testuteab@gmail.com or use the contact form on this site.