Parse My Statement

Legal

Privacy Policy

Effective date: March 12, 2026

1. Data we collect

We collect account data such as your email address, authentication identifiers, subscription status, usage counters, uploaded PDF bank statements, and structured outputs generated from those statements.

2. What is uploaded

Uploaded files may contain bank transaction data, account holder names, account numbers, balances, references, and other personal or financial information present in the source statement.

3. How processing works

Parse My Statement receives your PDF, processes native text pages directly when possible, uses Mistral OCR for scanned pages, and uses OpenAI to normalize extracted content into structured transaction data for CSV, Excel, and JSON export.

4. Third-party processors

We use third-party subprocessors to provide the service, including:

  • Mistral AI for OCR on scanned statement pages.
  • OpenAI for structured extraction and normalization.
  • Our hosting, database, and queue infrastructure providers for application delivery and temporary storage.
  • Authentication and billing providers when you create an account or subscribe.

5. Retention and deletion

Uploaded PDF bank statements and generated outputs may be retained for up to 24 hours to support processing, download history, troubleshooting, and re-downloads. After that period, they are scheduled for automatic deletion. Guest conversion results are stored only briefly in queue infrastructure while the request completes.

6. AI provider processing

Because the service uses third-party AI providers, uploaded content or extracted statement text may be transmitted to OpenAI and Mistral AI as part of the conversion workflow. Provider-side logging or retention may vary based on the API endpoint and provider terms in effect at the time of processing.

7. Security measures

Data is transmitted over TLS and stored using encrypted infrastructure controls. Where supported by the infrastructure provider, storage encryption is designed to use AES-256-class protection at rest. We do not perform routine human review of uploaded documents as part of normal product operation. See the Security page for additional details.

8. AI training

We do not use uploaded documents or generated outputs to train our own AI models. Third-party AI providers may process data according to their API terms, and that third-party processing is disclosed in this policy.

9. Your choices and rights

Depending on your location, you may have rights to request access, correction, deletion, or restriction of personal data. You may also stop using the service at any time.

10. Updates

We may update this Privacy Policy from time to time. Material changes take effect when posted with a revised effective date on this page.