FSA Saver

Privacy Policy

Last updated: November 29, 2025

Introduction

FSA Saver ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web application and browser extension (collectively, the "Service"). By using the Service, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Account Information

When you create an account, we collect your email address for authentication purposes. We use passwordless authentication via magic links, so we do not store passwords.

Order Data

When you use our browser extension to import Amazon orders, we collect:

  • Order dates and totals
  • Order URLs and invoice URLs
  • Item titles, prices, and product links
  • Payment method information (if available)
  • Screenshots of invoices (stored as images)
  • FSA/HSA eligibility information

User Settings

When you configure your account settings, we may collect:

  • Full name
  • Email address
  • Phone number
  • Employee ID
  • Mailing address
  • FSA/HSA provider preference (Navia or Fidelity)

Claim Information

When you generate FSA/HSA claim forms, we collect and store:

  • Selected orders for claims
  • Signature images
  • Generated PDF claim forms

Browser Extension Data

Our Chrome extension stores your email address locally in your browser using Chrome's local storage API. This data is only used to link your extension activity to your account and is not transmitted to third parties except when you explicitly import orders.

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Service
  • Authenticate your identity and manage your account
  • Process and store your Amazon order data
  • Generate FSA/HSA claim forms and PDFs
  • Populate claim forms with your saved information
  • Enable address autocomplete functionality
  • Respond to your inquiries and provide customer support

Data Storage and Security

Your data is stored securely using Supabase, a third-party cloud service provider. All data is:

  • Stored in encrypted form
  • Organized by your email address (which is sanitized for storage paths)
  • Accessible only through authenticated API requests
  • Protected by industry-standard security measures

We use authentication tokens and session management to ensure only you can access your data. We never share your data with third parties except as described in this policy.

Third-Party Services

Supabase

We use Supabase for user authentication and data storage. Supabase's privacy practices are governed by their own privacy policy. Your data is stored in Supabase's secure cloud infrastructure.

Google Places API

We use Google Places API to provide address autocomplete functionality. When you use this feature, your address queries are sent to Google. Google's use of this data is governed by Google's Privacy Policy.

Amazon

Our browser extension accesses Amazon order pages that you visit. This data is only collected when you explicitly choose to import orders through the extension. We do not have any relationship with Amazon, and Amazon is not responsible for our collection or use of this data.

Data Retention

We retain your data for as long as your account is active or as needed to provide you with our Service. You may request deletion of your data at any time by contacting us or deleting your account. We will delete your data within 30 days of such a request, except where we are required to retain it for legal or regulatory purposes.

Your Rights

You have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Request correction of inaccurate or incomplete data
  • Erasure: Request deletion of your personal data
  • Portability: Request transfer of your data to another service
  • Objection: Object to processing of your personal data
  • Withdrawal: Withdraw consent at any time (where processing is based on consent)

To exercise these rights, please contact us using the information provided in the "Contact Us" section below.

Children's Privacy

Our Service is not intended for children under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately so we can delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@fsahelper.com

Website: https://fsahelper.com

← Back to home