Steady

Privacy Notice

Last updated: May 16, 2026

This Privacy Notice explains how Raleway Ventures LLC ("Steady", "we", "us", "our") collects, uses, and shares personal data when you use Steady (the "Service"). Raleway Ventures LLC is the data controller.

1. Personal Data We Collect

  • Account data: name, email address, password (hashed), authentication identifiers.
  • Financial data you import: transactions, balances, account names, debt and budget entries you connect or upload.
  • Support data: messages you send us.
  • Usage & telemetry: pages viewed, features used, error logs, device and browser identifiers, IP address.
  • Billing data: processed by Paddle (see below); we receive limited metadata such as subscription status and last 4 digits of the card.

2. How We Use Personal Data

  • To create and operate your account and provide the Service.
  • To process payments and manage subscriptions via Paddle.
  • To send service-related communications and alerts you enable.
  • To secure the Service, prevent fraud and abuse, and comply with law.
  • To analyze and improve the Service.

3. Legal Bases

Where applicable law requires a legal basis, we rely on: performance of a contract (providing the Service), our legitimate interests (security, product improvement), consent (where required, e.g. certain marketing), and compliance with legal obligations.

4. How We Share Personal Data

  • Service providers / subprocessors: hosting, database, analytics, email delivery, and customer support tooling.
  • Merchant of Record: Paddle.com processes payments, manages subscriptions, handles tax compliance, and issues invoices on our behalf. Paddle is a separate controller for the data it collects during checkout. See the Paddle Privacy Policy.
  • Bank-connection providers: if you choose to connect a bank, the connection provider (e.g. Teller) processes the credentials you supply directly with them.
  • Professional advisers: legal, accounting, and similar advisers when needed.
  • Authorities: where required by law, court order, or to protect rights and safety.
  • Business transfers: in connection with a merger, acquisition, or sale of assets.

We do not sell personal data.

5. Data Retention

We keep personal data for as long as your account is active and for a limited period afterward as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. When no longer needed, data is deleted or anonymized.

6. Your Rights

Subject to applicable law, you may have the right to access, correct, delete, restrict, or port your personal data, to object to certain processing, and to withdraw consent. You may also have the right to lodge a complaint with a supervisory authority. Contact us through in-app support to exercise these rights. We will respond within the time required by law (typically one month under GDPR).

7. International Transfers

Personal data may be processed in the United States and other countries. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions for transfers outside the UK/EEA.

8. Security

We implement appropriate technical and organizational measures designed to protect personal data, including encryption in transit, access controls, and monitoring. No method of transmission or storage is completely secure.

9. Cookies

We use cookies and similar technologies that are strictly necessary for the Service to function (e.g. session and authentication), and limited analytics cookies to understand how the Service is used. You can manage cookies in your browser settings.

10. Children

The Service is not directed to children under 16, and we do not knowingly collect personal data from them.

11. Changes

We may update this Notice. Material changes will be communicated via the Service or by email.

12. Contact

Raleway Ventures LLC — for privacy questions or to exercise your rights, please contact us via in-app support.