Last Updated: 1st September 2025
Effective Date: 1st September 2025
Smooth Money ("we", "our", "us") is an AI-driven financial companion that helps users ("you", "your") achieve financial goals by analysing data, recommending wealth instruments (FDs, Mutual Funds, Stocks, Bonds, Savings Accounts, etc.), and providing personalised financial insights.
Your privacy and data security are central to everything we do. This Privacy Policy explains what information we collect, how we use it, how it is secured, and the choices you have.
Information We Collect
We collect information only to provide you with secure and meaningful financial services.
1.1 Information We Collect
Account registration details (e.g., name, email, phone number).
Financial goals, preferences, or investment choices you set within Smooth Money.
1.2 Data From Integrated Sources
With your explicit consent, we may securely access:
Gmail / Outlook inbox: Limited to financial transaction emails (mutual fund statements, investment confirmations, expense receipts).
SMS messages: Only financial-related messages (bank alerts, card transactions, UPI receipts).
Bank account data: Accessed via the Account Aggregator (AA) framework as per RBI guidelines, with your consent.
Other financial accounts: Data imported through APIs (e.g., brokers, mutual fund platforms).
1.3 System Data
Device and log data (IP address, browser type, OS version).
Usage metrics to improve app experience.
2. Gmail API Use (Google Data Policy Compliance)
Access to Gmail Data
Smooth Money may request access to your Gmail account via Google OAuth. You remain in control at all times. We request only the following scopes:
https://www.googleapis.com/auth/gmail.readonly– to read financial transaction emails.https://www.googleapis.com/auth/gmail.metadata– to access headers for classification.
We never request access to send, delete, or modify your emails.
How We Use Gmail Data
Extract structured financial information (expense receipts, mutual fund statements, confirmations)
Present this back as reports, dashboards, and financial insights.
We do not read personal conversations, attachments, or unrelated emails.
Data Storage & Security
Gmail data is encrypted in transit and at rest (TLS, AES-256)
Raw Gmail data is deleted after processing; only derived insights (like expense categories or portfolio values) are stored.
No Sharing or Advertising
Gmail data is not shared with third parties
Gmail data is not used for advertising
User Control
You can revoke access at any time in your Google Security Settings.
You may request deletion of Gmail-derived data by contacting support@smooth.money.
Compliance
Smooth Money complies with Google's Limited Use Requirements:
Data is used only for user-facing features.
No sharing, unless required by law
No ads
Access strictly based on user consent
Retention Policy - Raw Gmail data is deleted within 48 hours of processing; derived insights (e.g., expense categories, portfolio values) are retained for up to 90 days unless earlier deletion is requested
3. Outlook API Use
For users integrating Microsoft Outlook, we follow the same principles:
Access only after explicit consent via Microsoft OAuth.
Limited to transaction-related emails for financial insights.
Data is encrypted, processed minimally, and never used for advertising.
4. SMS Data Access
If you grant SMS read permissions:
Only financial SMS are processed (e.g., "₹5,000 spent on your credit card")
Non-financial SMS are ignored and never stored
5. Bank Data (Account Aggregator Framework)
We integrate with the RBI-regulated Account Aggregator (AA) network.
Access is consent-based and limited to accounts/periods you authorise.
Data fetched is used only for financial insights (cashflow analysis, portfolio tracking).
No storage of raw statements beyond processing.
6. Use of Information
We use the collected information to:
Provide personalised financial insights and recommendations
Track expenses, investments, and savings
Enhance AI-driven predictions and advice
Improve app functionality and performance
Comply with legal or regulatory requirements
Disclaimer - AI-generated predictions are educational/informational only and do not constitute financial, investment, tax, or legal advice
7. Data Security
We implement industry-standard measures:
Encryption in transit (TLS 1.2+) and at rest (AES-256).
Role-based access controls.
Periodic audits and monitoring
We undergo annual third-party audits (e.g., VAPT, CASA assessments as required by Google for Restricted Scope apps)
8. Data Sharing & Disclosure
We do not sell or share your personal data with advertisers. We may share data only:
With regulators or law enforcement, if legally required.
With trusted third-party processors under strict confidentiality agreements.
9. User Rights & Controls
Access & Portability: Request a copy of your processed data.
Correction: Update incorrect or incomplete data.
Deletion: Request deletion of your data at any time.
Revocation: Withdraw consents (Gmail, Outlook, AA, SMS) at any time.
10. Children's Privacy
Our services are not intended for individuals under 18.
11. Data Residency (No International Transfers)
All data collected and processed by Smooth Money resides exclusively within India.
We use secure data centres located in India.
No personal data is transferred or stored outside of India.
This ensures compliance with RBI, SEBI, and applicable Indian data protection laws
Where applicable, we align with international standards (GDPR principles) for transparency, though Indian law prevails
12. Updates to Privacy Policy
We may update this Privacy Policy from time to time. Significant changes will be notified within the app or by email.
Contact Information
If you have any questions about these Terms of Service, please contact us at: