FinSnap Privacy Policy

1. Introduction

This Privacy Policy ("Policy") describes how the developer of the FinSnap application ("Developer", "we", "us", "our") collects, uses, stores, and protects personal data of users of the FinSnap mobile application (hereinafter referred to as the "Application").

By using the Application, you agree to the terms of this Policy. If you do not agree with any terms, please do not use the Application.

2. What Data We Collect

Data You Provide

When using the Application, we collect the following types of data that you provide directly:

• Account credentials: email address (when registering), Apple ID or Google ID (when using social login)
• Financial data: transactions (income and expenses), amounts, dates, descriptions, categories, accounts

Automatically Collected Data

When using the Application, we automatically collect the following data:

• Usage data: how you use the Application, which features you activate, usage time
• Technical data: device type, operating system version, Application version, unique device identifier
• Error data: information about crashes and errors to improve Application stability
• Analytics data: aggregated statistics on Application feature usage

IMPORTANT: IMPORTANT: We do NOT collect bank card data, payment credentials, bank account passwords, or other sensitive financial information that is not directly entered by you into the Application.

Pro Features Data

When using Pro features (receipt scanning, voice input, bank statement parsing), we process the following data:

• Receipt photos: uploaded for recognition through OpenAI API
• Voice recordings: recorded for text conversion through OpenAI API
• Bank statements: PDF and CSV files uploaded for parsing through OpenAI API
• IMPORTANT: This data is NOT stored on our servers. It is used only for processing through OpenAI API and is deleted immediately after processing.

Data We Do NOT Collect

We consciously do NOT collect the following types of data:

• Bank card data or payment credentials
• Passwords for bank accounts or other services
• Biometric data (fingerprints, Face ID) — used only locally on your device
• Geolocation data — the Application does not request access to geolocation

3. How We Use Collected Data

We use collected data solely for the following purposes:

Providing Core Features

• Tracking and displaying your transactions (income and expenses)
• Synchronizing data between your devices (for registered users)
• Providing analytics and statistics on your finances
• Processing Pro features: receipt recognition, voice input, bank statement parsing

Improving Application Performance

• Analyzing errors and crashes to improve Application stability
• Studying user experience to improve interface and features
• Developing new features based on user needs
• Optimizing Application performance

Security and Compliance

• Ensuring security of your account and data
• Preventing fraud and abuse

IMPORTANT: IMPORTANT: We do NOT use your data for advertising, marketing, or transfer to third parties for their commercial purposes. All data is used solely to ensure the Application operates.

4. Local Storage and Synchronization

Local Data Storage

All your data is stored locally on your device in secure storage:

• Expo Secure Store — for storing confidential data (authorization tokens, encryption keys) • Expo SQLite — for storing transactions, categories, accounts, and other financial information • AsyncStorage — for storing user settings and preferences

Server Synchronization

For registered users, data is also synchronized with our server to ensure:

• Access to data from multiple devices
• Data backup in case of device loss or replacement
• Data recovery when logging in on a new device
• Real-time synchronization of changes between all your devices

Anonymous Usage

The Application can be used anonymously without registration. In this case:

• All data is stored only locally on your device
• Server synchronization is not available
• Data cannot be recovered if the device is lost

5. Cookies and Analytics

Website Cookies

Our website (landing page) uses cookies and similar technologies to collect information about visits. We use a cookie banner that allows you to choose which cookies to allow.

Google Analytics

On the website, we use Google Analytics to collect anonymous statistics about visits:

• Number of visitors and page views
• Traffic sources (where users come from)
• Time spent on the site
• Geographic location of visitors (at country level)

Google Analytics is activated only after your consent through the cookie banner. You can withdraw consent at any time. Data is collected anonymously and does not allow identification of a specific user.

Application Analytics

In the mobile application itself, we use the following analytics services:

• Sentry — for tracking errors and crashes in the Application
• Segment — for analyzing user experience and behavior in the Application

6. Third-Party Data Sharing

We share data with third parties only in the following cases and solely to ensure the Application operates:

Analytics Services

• Sentry — for error tracking (only technical error data is transmitted, without personal information)
• Segment — for user experience analysis (aggregated data on feature usage is transmitted)

These services help us improve the Application but do not have access to your financial data or personal information.

OpenAI API

• OpenAI API — for processing Pro features (receipt recognition, voice input, statement parsing)
• IMPORTANT: All data is transmitted to OpenAI API anonymously, without user information. Receipt photos, voice recordings, and statement files are NOT stored on our servers and are deleted immediately after processing.

The use of OpenAI API is governed by OpenAI's privacy policy. We recommend reviewing their policy for complete information.

Payment Platforms

• App Store (Apple) — for processing subscription payments on iOS
• Google Play — for processing subscription payments on Android
• We do not have access to your bank card data or payment credentials. All payment information is processed by the platforms.

Payment processing is carried out in accordance with the privacy policies of the respective platforms.

7. Data Retention

Data Retention Period

We retain your data for the following periods:

• While your account is active — data is stored on the server to ensure synchronization and backup
• After account deletion — all data is deleted from the server immediately, without the possibility of recovery
• For users with lifetime subscriptions — data is stored on the server until account deletion, even with prolonged non-use of the Application

Local Storage

Data on your device is stored until:

• You delete the Application from the device
• You select the "Delete All Data" option in the Application settings
• You perform a device data reset

Data Deletion

You can delete your data at any time:

• Through Application settings by selecting the "Delete All Data" option
• With a checkbox to delete data from the server (for registered users)
• By sending a data deletion request to: support@finsnap.app

After data deletion, recovery is not possible. Make sure you have a backup of your data if you need it.

8. Data Security

We apply various security measures to protect your data from unauthorized access, alteration, disclosure, or destruction:

Technical Security Measures

• Data encryption during transmission (HTTPS/TLS)
• Data encryption on the server
• Secure storage of authorization tokens in secure device storage

Organizational Measures

We limit access to your data:

• Only authorized personnel have access to servers with data
• Access is granted only to the extent necessary to perform job duties
• All data actions are logged to ensure accountability

Device Protection

To protect data on your device, we recommend:

• Using screen lock (password, fingerprint, Face ID)
• Not transferring the device to third parties without your control

9. Your Rights

In accordance with international standards for personal data protection, you have the following rights:

Right to Access

You have the right to obtain information about what personal data we store about you:

• Request a copy of all your data stored on our servers
• Learn how we use your data

Right to Rectification

You have the right to correct inaccurate or incomplete data:

• Correct data directly in the Application
• Request correction of data that cannot be changed in the Application
• Update information in your account

Right to Deletion

You have the right to delete your personal data:

• Delete data through Application settings
• Request deletion of account and all associated data
• Withdraw consent for data processing

Right to Data Portability

You have the right to export your data:

• Export all transactions in CSV format through Application settings
• Obtain a copy of all your data in a structured format
• Transfer data to another application or service

Right to Restrict Processing

You have the right to restrict processing of your data in certain cases:

• Contest data accuracy and request suspension of processing until verification
• Request restriction of processing if data is processed unlawfully
• Withdraw consent for data processing for certain purposes
• Use the Application anonymously without registration, which limits data collection

10. Email Communications

Technical Emails

We send emails only for the following technical purposes:

• Account registration confirmation
• Password recovery (if used)
• Notifications about important changes in the Application or Privacy Policy

Marketing Communications

WE DO NOT SEND marketing emails, promotional messages, or spam.

• We do not send product news
• We do not send promotional offers
• We do not send information about partner programs
• We do not share your email with third parties for marketing purposes

If you receive an email from us that appears to be marketing, please notify us at support@finsnap.app.

11. Children"s Privacy

The FinSnap Application is intended for users aged 6 years and older. We do not knowingly collect personal data from children under 6 years of age without parental or legal guardian consent.

If we learn that we have collected personal data from a child under 6 years of age without appropriate consent, we will immediately delete such data. If you are a parent or guardian and believe your child has provided us with personal data, please contact us: support@finsnap.app

12. Changes to Privacy Policy

We may periodically update this Privacy Policy. We will notify you of any significant changes:

• Through a notification in the Application
• By email (if you have a registered account)
• By publishing an updated version on this page
• By changing the "Last updated" date at the beginning of the Policy

It is recommended to periodically check the current version of the Privacy Policy. Continued use of the Application after changes are made constitutes your agreement with the updated Policy.

13. International Data Transfers

The FinSnap Application is intended for use worldwide. Your data may be stored and processed on servers located in different countries, including countries outside your jurisdiction.

By providing us with your data, you agree to its transfer and storage on servers in any country where we or our service providers operate. We apply appropriate security measures to protect your data regardless of its location, in accordance with this Privacy Policy and applicable law.