Privacy Policy

Last updated July 12, 2026

The short version

What we collect, and why

Wagerless exists to help you stay away from gambling. To do that we collect: your name and contact details (to run your account); your self-reported baseline spending (to show you what you're keeping); device protection status and tamper events (so your person knows the protection is real); and — only if you connect a bank — transaction data, which we scan for gambling-related charges.

Because this service relates to recovery from gambling, information about you here may be considered consumer health data under laws like Washington's My Health My Data Act. We treat all of it that way: collected only with consent, used only for the service you asked for, shared only as this policy describes, and never sold.

Bank connections

Bank connections run through Plaid, the same infrastructure most budgeting apps use. We never see or store your bank password. Our access is read-only: we can see transactions; we cannot move money. Bank access tokens are encrypted at rest. Plaid's handling of your data is described in Plaid's End User Privacy Policy.

What your chosen person sees

Your ally sees: protection status, your streak, milestones, tamper events, and gambling-related flags — written plainly and respectfully. They do not see your full transaction history, balances, or anything unrelated to gambling. When a charge is flagged, you get a window to tell them yourself first. If you revoke consent, they're told monitoring stopped — never why, never more.

What we don't do

Honesty about detection

Detection may catch gambling activity; it cannot catch everything. Cash, some payment apps, and disguised merchants can slip through. We'd rather tell you that here than let anyone believe this is a guarantee.

Your rights

You can revoke either consent at any time from your portal. You can ask us for a copy of your data, correct it, or delete your account entirely — deletion removes your data from our systems within 30 days, except records we're legally required to keep. Contact us at [email protected].

Security

All traffic is encrypted in transit. Bank tokens are encrypted at rest with keys held separately from the database. Access to production systems is limited and audited. No system is perfect; if a breach ever affects your data, we will tell you promptly and plainly.

Changes

If this policy changes in a way that matters, we'll tell you before it takes effect — in the product, in plain language.