Privacy Policy

Last updated: April 20, 2026

DineroBook (“DineroBook”, “we”, “us”, or “our”) provides bookkeeping software for money-service businesses (“MSBs”) such as remittance storefronts and small retailers. This Privacy Policy explains what information we collect when you or your business uses our service at dinerobook.com (the “Service”), how we use it, and the choices you have.

By using the Service you agree to the practices described here. If you do not agree, please do not use the Service.

1. Who this policy covers

This policy applies to:

Store owners and administrators — the account holders who subscribe to DineroBook;
Store employees — users invited by an administrator to log transfers and reports;
Multi-store owners — individuals who connect multiple stores under a single account;
Customers of participating stores — individuals whose money-transfer details are recorded by store staff in the Service.

2. Information we collect

2.1 Account and business information

When you sign up or manage a store, we collect your full name, email address, password (stored hashed, never in plain text), phone number, store name, and store contact information.

2.2 Customer and transaction records

Store staff may enter information about their own customers into the Service, including:

Sender name, phone number with country code, address, and date of birth;
Recipient name, country, and phone number;
Amounts sent, fees, commissions, federal tax, and confirmation numbers;
Internal notes recorded by staff.

This information is entered and controlled by the store. DineroBook stores it on behalf of the store so it can be retrieved, reconciled, and reported later.

2.3 Bank account information (Stripe Financial Connections)

If you connect a bank account to DineroBook, we use Stripe Financial Connections to authenticate with your bank and retrieve account information. We do not see, store, or ever have access to your online banking username or password. The bank login happens entirely on Stripe’s secure hosted screens.

We receive and store only:

The institution name and the last four digits of the account;
A non-reversible account identifier issued by Stripe;
Balance snapshots (refreshed when you click Refresh, or when you open the Bank page).

We currently do not pull individual bank transactions; if we begin to, we will update this policy and notify affected accounts. You can disconnect a bank account at any time from the Bank page, which revokes our access via Stripe immediately.

2.4 Billing information

Paid subscriptions are processed by Stripe. DineroBook receives a subscription identifier and plan status from Stripe; we do not store full payment-card numbers. Stripe’s own privacy policy is available at stripe.com/privacy.

2.5 Technical information

When you access the Service we automatically collect standard server logs: IP address, browser user agent, requested pages, response status, and timestamps. We use this data to operate, secure, and debug the Service.

3. How we use information

To provide the Service — authenticate users, display the right store’s data, generate daily books and monthly P&L reports, reconcile ACH batches, and render bank balances.
Billing — process subscription payments and send receipts via Stripe.
Customer support — respond to questions, investigate issues, and restore access.
Security and fraud prevention — detect abuse, protect against unauthorized access, and audit administrator actions.
Service improvement — analyze aggregate, non-identifying usage data to improve features and performance.
Legal compliance — comply with applicable laws and respond to valid legal requests.

4. How information is shared

DineroBook does not sell personal information. We share information only as follows:

Within the owner umbrella — a sender logged at one of your stores is visible at sibling stores under the same owner. Unrelated stores cannot see each other’s customers.
With service providers who help us run the Service:
- Stripe — billing, Stripe Financial Connections for bank data, and email receipts;
- Our cloud hosting and database provider — to store and deliver the Service;
- Email delivery — for transactional emails such as password-reset links.
These providers are contractually limited to processing data on our behalf.
To comply with the law — when required by subpoena, court order, or other legal process, or to protect the rights, property, or safety of DineroBook, our users, or others.
In a business transfer — if DineroBook is involved in a merger, acquisition, or asset sale, user information may be transferred as part of that transaction; we will notify affected users beforehand.

5. Data retention

While your subscription is active we retain all information for as long as needed to provide the Service. If a store cancels its subscription, we keep the store’s data for six (6) months so the business can come back without losing history. At the end of that window all per-store records — transfers, daily reports, monthly P&L, ACH batches, employees, and bank-connection metadata — are permanently deleted from our production database.

Customer rows entered by stores (senders and recipients) are subject to the same retention window as the store they belong to. Limited records may be kept longer if required for legal, regulatory, tax, or fraud-prevention purposes.

6. Security

We use a layered approach to protect your data:

Passwords are stored using industry-standard hashing (never in plain text).
Password-reset tokens are stored as a hash, are single-use, and expire after one hour.
All traffic is encrypted in transit with HTTPS.
Administrative actions taken on the platform are written to an append-only audit log.
Access to production systems is restricted to personnel who require it to operate the Service.

No online service can guarantee absolute security. If we become aware of a breach affecting your account we will notify you in accordance with applicable law.

7. Your choices and rights

Depending on where you live, you may have the right to:

access the personal information we hold about you;
correct information that is inaccurate or incomplete;
delete your personal information, subject to legitimate retention needs;
export a copy of your information in a common format;
object to or restrict certain processing;
withdraw consent where processing is based on consent.

To exercise these rights, contact us at the address in Section 11. Administrators can also manage most of their store’s information directly from the Settings page inside the Service.

8. Children’s privacy

The Service is not directed to individuals under 13 years of age, and we do not knowingly collect personal information from anyone under 13. If you believe a child has provided us personal information, please contact us and we will delete it.

9. International users

DineroBook is operated from the United States. If you access the Service from outside the United States, your information will be transferred to, stored, and processed in the United States. Where required by applicable law, we use appropriate safeguards for international data transfers.

10. Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top reflects the most recent version. Material changes will be communicated in-app or by email before taking effect. Continued use of the Service after an update constitutes acceptance of the revised policy.

11. Contact us

If you have questions about this policy or our privacy practices, email us:

DineroBook Privacy
Email: dinerobook26@gmail.com

This Privacy Policy is provided as a starting point. Before launching publicly, please have it reviewed by counsel familiar with U.S. money-services businesses (BSA/AML), state MSB regulation, and the privacy laws applicable to your customers (e.g. CCPA/CPRA, GDPR). Also update the contact email, mailing address, and the specific list of subprocessors to match your actual vendors.