Tweet
Hey,
I've been creating a mobile app over the past 1 and half years for personal use, and its got the the point where i find it incredibly useful and am thinking about releasing it.
But I'm unsure about the legality of some of its features.
Bit of background:
The app is a financial 'budgeting' type app similar to Emma or Yolt.
The way it works is by connecting to the users financial accounts and aggregating all their data together under 1 app, so you can easily see where all your money is, where your growth is, where your debt is ect.
So the question I have is:
Am I allowed to connect to the users account via the website rather than the official API?
IE.
The other apps use either the official APIs, or Open Banking to connect to the users data (this has extra security and doesn't require the user inputting their password).
My app essentially logs into the website 'on the users behalf' and reads the information off the webpage almost like its pretending to be the user.
My worry is that this type of 'impersonating' the user (even with the users permission) is not legal and would require the website owners permission to access it this way.
Hope that makes sense
Thanks
I've been creating a mobile app over the past 1 and half years for personal use, and its got the the point where i find it incredibly useful and am thinking about releasing it.
But I'm unsure about the legality of some of its features.
Bit of background:
The app is a financial 'budgeting' type app similar to Emma or Yolt.
The way it works is by connecting to the users financial accounts and aggregating all their data together under 1 app, so you can easily see where all your money is, where your growth is, where your debt is ect.
So the question I have is:
Am I allowed to connect to the users account via the website rather than the official API?
IE.
The other apps use either the official APIs, or Open Banking to connect to the users data (this has extra security and doesn't require the user inputting their password).
My app essentially logs into the website 'on the users behalf' and reads the information off the webpage almost like its pretending to be the user.
My worry is that this type of 'impersonating' the user (even with the users permission) is not legal and would require the website owners permission to access it this way.
Hope that makes sense
Thanks
