Last Updated: December 18, 2024

1. Introduction

Welcome to CashCalm ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application CashCalm (the "App").

By using CashCalm, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use the App.

2. Information We Collect

2.1 Personal Information You Provide

When you register for an account, we collect:

• Email Address: Required for account creation and authentication
• Name: Optional, for personalization
• Password: Encrypted and stored securely

2.2 Financial Information

To provide our budgeting services, we collect:

• Transaction Data: Income, expenses, amounts, dates, categories, and notes you enter
• Budget Information: Monthly budgets, category budgets, and spending limits you set
• Preferences: Currency, notification settings, and theme preferences
• Custom Categories: Any custom expense or income categories you create (Premium feature)

2.3 Automatically Collected Information

• Device Information: Device type, operating system, app version
• Usage Data: App features used, session duration (via Firebase Analytics)
• Crash Reports: Technical logs to improve app stability

2.4 Information We Do NOT Collect

• Bank account credentials or banking login information
• Credit card numbers or payment information (except for subscription processing)
• Social Security numbers or government IDs
• Precise location data

3. How We Use Your Information

We use the information we collect to:

• Provide Services: Enable core budgeting features, sync data across devices
• User Authentication: Verify your identity and secure your account
• Personalization: Customize your experience based on preferences
• Analytics: Understand how users interact with the app to improve features
• Subscription Management: Process and manage Premium subscriptions
• Customer Support: Respond to your questions and technical issues
• App Improvements: Fix bugs, add features, and enhance performance
• Legal Compliance: Comply with applicable laws and regulations

4. Data Storage and Security

4.1 Where Your Data is Stored

• Cloud Storage: Firebase Cloud Firestore (Google Cloud Platform)
• Local Storage: Encrypted cache on your device for offline access
• Location: Data centers in the United States

4.2 Security Measures

We implement industry-standard security measures:

• End-to-end encryption for data in transit (HTTPS/TLS)
• Encryption at rest for stored data
• Firebase Authentication with secure token management
• Regular security audits and updates
• Access controls and user authentication

Note: While we use best practices to protect your data, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

5. Third-Party Services

CashCalm integrates with the following third-party services:

5.1 Firebase (Google)

• Purpose: Authentication, database, analytics, crash reporting
• Data Shared: Email, user ID, app usage data
• Privacy Policy: firebase.google.com/support/privacy

5.2 RevenueCat

• Purpose: Subscription management and in-app purchases
• Data Shared: User ID, purchase transactions, subscription status
• Privacy Policy: revenuecat.com/privacy

5.3 Google Sign-In

• Purpose: Alternative authentication method
• Data Shared: Google account email and name (optional)
• Privacy Policy: policies.google.com/privacy

5.4 Apple App Store / Google Play Store

• Purpose: App distribution and subscription processing
• Data Shared: Purchase information managed by Apple/Google
• Privacy Policies: Apple | Google

6. Data Sharing and Disclosure

6.1 We Do NOT Sell Your Data

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

6.2 When We May Share Your Information

• With Your Consent: When you explicitly authorize us to share information
• Service Providers: Third-party services listed above that help us operate the app
• Legal Requirements: If required by law, court order, or government request
• Business Transfers: In the event of a merger, acquisition, or sale of assets
• Safety and Security: To protect rights, property, or safety of users

7. Your Rights and Choices

7.1 Access and Update

• View and edit your profile information in Settings
• Update your email or password anytime
• Change your preferences (currency, notifications, theme)

7.2 Data Export

• Premium users can export all transaction data to CSV format
• Request a complete data export by contacting us

7.3 Data Deletion

You can request deletion of your account and all associated data:

• In-App: Settings → Account → Delete Account
• Email Request: Contact us at privacy@cenadz.com
• Timeline: Data will be permanently deleted within 30 days

7.4 Opt-Out of Analytics

• Go to Settings → Privacy → Disable Analytics (if implemented)
• Note: This may limit our ability to improve the app

8. Children's Privacy

CashCalm is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will delete such information.

9. International Users

CashCalm is operated in the United States. If you are located outside the United States, please be aware that information we collect will be transferred to and processed in the United States. By using the App, you consent to the transfer of your information to the United States.

10. California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

• Know what personal information we collect, use, and disclose
• Request deletion of your personal information
• Opt-out of the sale of personal information (we do not sell data)
• Non-discrimination for exercising your privacy rights

To exercise these rights, contact us at privacy@cenadz.com.

11. European Users (GDPR)

If you are in the European Economic Area (EEA), you have additional rights under GDPR:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate personal data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing of your personal data
• Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at privacy@cenadz.com.

12. Data Retention

• Active Accounts: We retain your data as long as your account is active
• Inactive Accounts: Deleted after 2 years of inactivity (with prior notice)
• Deleted Accounts: Data permanently deleted within 30 days of deletion request
• Legal Requirements: Some data may be retained longer if required by law

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy in the App
• Updating the "Last Updated" date
• Sending an in-app notification or email for significant changes

Your continued use of the App after changes constitutes acceptance of the updated policy.

14. Contact Us