Your data. Your household. Always.
LifeOS holds some of the most sensitive information about your life. We treat it that way — here's exactly what we collect, how we use it, and the rights you have over it.
Household-level isolation
Your data is scoped to your household at the database level. No other user can ever see it.
Encrypted at rest & in transit
PostgreSQL on Railway with encryption at rest. All traffic over TLS 1.2+.
Never sold. Never advertised.
We don't sell your data. We don't use it for advertising. Full stop.
Export & delete anytime
Download a full copy of your household's data or permanently delete it — no questions asked.
What we collect
We only collect what's needed to provide the service:
- Account data — your name, email address, and household name on signup.
- Financial data you enter — income, goals, property, vehicles, bills, insurance policies, and any other records you add manually.
- Open Banking data (via TrueLayer) — if you choose to connect your bank, we request read-only access to your accounts, balances, and transactions. We never request payment initiation permissions.
- Usage data — page visits, feature use, and error logs. Used to improve the product. No advertising profiles.
Open Banking — TrueLayer
Bank connection is powered by TrueLayer
TrueLayer is authorised and regulated by the Financial Conduct Authority (FRN 901096) as an Account Information Service Provider under the Payment Services Regulations 2017. They are a trusted Open Banking provider used by thousands of financial apps across the UK.
When you connect your bank through LifeOS:
- You authenticate directly with your bank — LifeOS never sees your banking credentials or passwords.
- TrueLayer requests read-only access to accounts, balances, and transactions. Payment initiation is never requested or possible.
- Your bank connection token is stored securely and used only to pull transaction data into Pulse (bills & subscriptions) and your account balances.
- You can revoke your bank connection at any time — from within LifeOS or directly through your bank's app.
- TrueLayer's own privacy policy is available at truelayer.com/privacy.
How we use your data
- To provide the LifeOS service — financial projections, module calculations, dashboard metrics.
- To send essential emails: signup confirmation, partner invitations, renewal reminders you configure.
- To improve the product — anonymised, aggregated usage patterns only.
- Never for advertising, data brokering, or sale to third parties.
Data storage & sub-processors
Your data is stored in the UK/EU on:
- Railway — application hosting and PostgreSQL database (encrypted at rest).
- TrueLayer — Open Banking connectivity (FCA-regulated, see above).
We do not use third-party analytics tools (no Google Analytics, no Meta Pixel).
Your rights (UK GDPR)
As a UK-based data controller, you have the right to:
- Access — request a copy of all data we hold about you.
- Rectification — correct inaccurate data.
- Erasure — delete your account and all associated data permanently. This is irreversible.
- Portability — export your household's data as a structured file.
- Restriction & objection — limit or object to specific processing.
To exercise these rights, email privacy@life-os.app. We will respond within 30 days.
Data retention
We retain your data for as long as your account is active. When you delete your account, all household data is permanently and irrecoverably erased within 30 days. Backups are purged on a rolling 30-day cycle.
Cookies
LifeOS uses a single session cookie to keep you logged in. No third-party tracking cookies. No advertising cookies.
Contact
Questions about your data: privacy@life-os.app
To report a security issue: security@life-os.app
Last updated: June 2026. LifeOS is a trading name. Registered in England & Wales.