← Back to App

Privacy Policy

Effective Date: June 7, 2026  ·  Last Updated: June 7, 2026

1. Who We Are

Card Command Pro ("the App," "we," "us," or "our") is a personal finance management application developed and operated by Neuro Lab Games LLC ("Company"), based in Land O' Lakes, Florida, United States. Contact us at: cardcommandpro@gmail.com

2. Information We Collect

2a. Information You Enter Directly

You may voluntarily enter the following into the App:

• Credit card names, issuer names, last 4 digits of card numbers
• Account balances, credit limits, APR, minimum payments, and due dates
• Bill names, amounts, and due dates
• Transaction descriptions and amounts
• Your chosen username and hashed password
• Reward program names (optional)

This information is stored exclusively in your device's local storage (localStorage/IndexedDB). It is never transmitted to our servers, third parties, or any external service in Phase 1 of the App.

2b. Biometric Data

If you enable biometric authentication (Touch ID, Face ID, fingerprint, or Windows Hello), the App uses the Web Authentication API (WebAuthn/FIDO2). Biometric data — your actual fingerprint or facial geometry — is processed exclusively by your device's secure hardware (Secure Enclave on iOS/Mac, TrustZone on Android, TPM on Windows). The App only stores a cryptographic credential identifier. We never receive, process, or store your biometric data.

2c. Information We Do NOT Collect

• Full credit card numbers, CVV codes, or expiry dates
• Social Security Numbers or government IDs
• Bank account numbers or routing numbers
• Location data
• Device identifiers or advertising IDs
• Usage analytics or behavioral tracking data
• Crash reports (Phase 1)

3. How We Use Information

All data entered into the App is used solely to provide the features you request:

• Displaying your credit card balances, utilization, and due dates
• Calculating interest estimates and payoff projections
• Generating payment reminders and notifications on your device
• Tracking bills and monthly obligations
• Authenticating you via password or biometrics

We do not use your data for advertising, profiling, machine learning, or any purpose other than operating the App features you have chosen to use.

4. Data Storage and Security

Your data is stored in your device's browser localStorage, namespaced to your username. Key security measures include:

• Zero server transmission: No financial data is sent over any network in Phase 1
• Password hashing: Your password is hashed before storage — we cannot recover it
• WebAuthn biometrics: Credential processing occurs in device Secure Hardware only
• NFC: Card serial numbers read via NFC are used only to pre-fill forms and are not stored or transmitted
• HTTPS enforcement: The App checks for secure context before enabling sensitive features
• No third-party SDKs: No advertising, analytics, or tracking libraries are included

Important: Because all data is stored locally, if you clear your browser data, uninstall the App, or lose your device, your data cannot be recovered by us. We strongly recommend using the Export Data feature in Settings to maintain your own backups.

5. Data Sharing and Disclosure

We do not sell, rent, trade, or share your personal information with any third parties. We will disclose information only in the following limited circumstances:

• Legal compliance: If required by valid legal process (court order, subpoena) — however, because we do not receive your data on our servers, we have no data to provide
• Safety: To prevent imminent harm to you or others where legally permitted

6. Phase 2 — Bank Connectivity (Plaid)

7. Children's Privacy

The App is not directed at children under 13 years of age. We do not knowingly collect information from children. If you believe a child has provided information through the App, please contact us at hello@cardcommandpro.com.

8. Your Rights and Choices

Because all data is stored locally on your device, you have complete control:

• Access: All your data is visible within the App at all times
• Export: Use Settings → Export My Data to download a JSON copy
• Delete: Use Settings → Clear All Data to remove all data, or clear your browser/app storage
• Portability: Your exported JSON file is human-readable and can be imported into other tools

California residents (CCPA): You have the right to know what personal information is collected, to delete it, and to opt out of its sale. We do not sell personal information. To exercise your rights, use the in-app controls above or contact us.

EU/EEA residents (GDPR): Your legal basis for data processing is your explicit consent (entering data into the App). You have rights to access, rectification, erasure, and portability — all exercisable via the in-app controls above.

9. Financial Disclaimer

10. Beta Program

The current version of Card Command Pro is offered as a beta release. During the beta period:

• Features may change without notice
• The App is provided "as is" without warranty of any kind
• Beta users accept a higher risk of bugs or data issues and should export data regularly
• Feedback submitted during beta may be used to improve the product

11. Changes to This Policy

We may update this Privacy Policy as the App evolves, particularly when Phase 2 bank connectivity launches. Material changes will be communicated via an in-app notice. Continued use of the App after changes constitutes acceptance of the updated policy.

12. Contact Us

For privacy questions, data requests, or concerns:

• Contact: cardcommandpro@gmail.com
• Developer: Neuro Lab Games LLC
• Location: Land O' Lakes, Florida, United States

---