Legal

Privacy policy

Effective May 9, 2026 · Last updated May 9, 2026

Saielo helps you plan your finances years ahead. To do that, Saielo needs to handle some information about you. This page explains exactly what we collect, what we don't, where it goes, and how to delete it.

The short version

Saielo does not connect to your bank. Saielo does not sell your data. Your financial plan is encrypted at rest in our database using AES-256-GCM; Saielo holds the encryption key and decrypts your data server-side when your session or our AI features need it. We are explicit about this rather than claim a zero-knowledge model we do not deliver today (see Section 4). You can delete your account at any time, and we will hard-delete your data within 30 days.

Contents

Who we are
What we collect
What we do not collect
How encryption works
Where your data lives
Third parties
Your rights
How to delete your account
Children
Changes to this policy
Contact

1. Who we are

Saielo is a long-horizon financial planning app, currently in private beta. Saielo is operated as a sole-proprietor business based in Riyadh, Saudi Arabia. The contact for any privacy question is [email protected].

2. What we collect

Saielo collects the minimum information needed to operate the app:

Account identifier. Either an email address (for magic-link sign-in) or an Apple ID identifier (for Sign in with Apple). We never see or store your Apple ID password.
Encrypted plan content.Your financial plan — the answers you've given Saielo, the projections it has computed, the check-in history — is encrypted at rest in our database using AES-256-GCM. Saielo holds the encryption key and decrypts your content server-side when your authenticated session or our AI features need it. See Section 4 for the full architecture.
Anonymous usage diagnostics — none today. Saielo does not currently run a crash reporter, analytics SDK, or any other diagnostic capture tool. If we add one in future, we will list it here, describe exactly what it collects, and confirm explicitly that the captured events carry no personal identifiers, no plan content, and no AI-interaction content.
Subscription state, when applicable. Whether your subscription is active, trial, expired. We process this through Apple — we never see your payment method.

3. What we do not collect

Saielo deliberately does not collect:

Bank account credentials. Saielo does not integrate with Plaid, Yodlee, MX, or any aggregator. We do not screen-scrape banks. We do not request your routing or account numbers.
Bank balances or transactions.We never see what's in your accounts. The plan you build with Saielo is based on what you tell Saielo — Saielo does not verify against your bank.
Location data. Saielo does not track where you are.
Device contacts, photos, calendar, or microphone. Saielo does not request access to any of these.
Behavioral or advertising profiles. Saielo does not build or sell user profiles. There are no ads in Saielo.

4. How encryption works

Your plan content (onboarding answers, projections, conversation threads) is encrypted at rest in our database using AES-256-GCM, an industry-standard authenticated encryption algorithm.

Each Saielo account has a unique 256-bit Data Encryption Key (DEK), generated server-side on first use and stored in our database in encrypted (wrapped) form. The DEK is wrapped using a single master key that Saielo holds as a server-side secret in our Supabase Edge Functions environment.

When your authenticated mobile session opens, our server unwraps your DEK and returns the plaintext DEK to your device over the secure session. Your device decrypts the plan locally. We do not store the plaintext DEK on the server beyond the duration of the unwrap call.

What this means in practice: a database-only compromise (for example, a Postgres dump exfiltrated without our Edge Function secrets) would yield ciphertext the attacker cannot read. An attacker who additionally obtains our master key — or a Saielo operator with secret access — can decrypt your plan. The protection against the second scenario is operational (Supabase access controls, least-privilege secret handling, a small operator footprint) rather than cryptographic.

We are deliberately not calling this end-to-end encryption. End-to-end encryption, by the standard definition, would require that Saielo not hold any key capable of decrypting your data. We do hold such a key today. We are evaluating a future architecture in which that would no longer be true (see the security page).

5. Where your data lives

Saielo's servers are operated by Supabase, with data stored in their Singapore region.

Your encrypted plan, your account identifier, and your subscription state are stored in our Supabase database. Diagnostics are stored separately and contain no identifying information.

6. Third parties

Saielo uses these third-party services:

Supabase — database and authentication. Their privacy policy.
Anthropic— AI processing for your conversational input. We do not transmit your plan content to any third-party AI provider in plaintext outside of model requests you have initiated. When you use Saielo's AI features, the relevant decrypted plan content is sent to our model provider (Anthropic) under their standard API terms: your content is not used to train any of Anthropic's models, and Anthropic retains request and response data for up to 30 days for trust-and-safety review before deletion. Saielo has not opted into Anthropic's user-feedback program or Development Partner Program, both of which would otherwise share content beyond the standard retention period. We do not have Zero Data Retention enabled at this time; if and when we do, this page will be updated. Their privacy policy.
Apple — App Store distribution, Sign in with Apple, in-app purchase processing. Their privacy policy.
Vercel — hosting for this website (saielo.com). Their privacy policy.

We do not use advertising networks, analytics platforms with cross-site tracking, or any service that profiles users.

7. Your rights

You have the right to:

Access the data Saielo holds about you
Correct inaccurate data
Export your data — on request, we will provide your data within 30 days. The process is currently manual; email [email protected].
Delete your account and all associated data
Withdraw consent for any data processing at any time

To exercise any of these rights, email [email protected]. We will respond within 30 days, and usually much faster.

8. How to delete your account

You can delete your account in two ways:

From inside the app: Settings → Delete account. Confirms with you, then triggers immediate deletion.
By email: Send a request from your account email to [email protected]. We will action it within 7 business days.

When you delete your account: your encrypted plan blob, your account identifier, and your subscription history are scheduled for hard-deletion. Hard deletion completes within 30 days, after which Saielo retains nothing about you. Saielo itself does not maintain backups of deleted accounts. Our database provider retains automated platform backups for operational recovery for a defined retention window, after which user data is also purged from those.

9. Children

Saielo is not intended for users under 16. We do not knowingly collect data from anyone under 16. If you believe a minor has signed up, contact us and we will delete the account.

10. Changes to this policy

If we change this policy in any material way, we will notify users by email at least 30 days before the change takes effect. The “Last updated” date at the top of this page reflects the most recent change.

11. Contact

Privacy questions, data requests, or anything else: [email protected].