Privacy Policy

Overview

PuppyByte ("we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we handle information in connection with the Xpenses mobile application ("App") available on Apple's App Store. Xpenses is a privacy-focused expense tracking application designed to keep your financial data completely private and under your control.

Key Privacy Principles

• Privacy by Design: Your financial data remains on your devices and in your personal iCloud account only
• No Server Storage: We do not collect, store, or process your financial data on our servers
• End-to-End Encryption: When using iCloud sync, your data is protected with end-to-end encryption
• User Control: You decide what data to store, where to store it, and whom to share it with

Information We Collect

Personal Information

We do not collect personal information. The App operates without requiring account creation, email addresses, or any personal identifiers.

Financial Data

We do not collect or access your financial data. All expense tracking information, categories, budgets, and related financial data you enter into the App remains exclusively under your control and is stored as follows:

• Local Storage: By default, stored only on your iOS device using SwiftData
• iCloud Storage (Optional): If you enable iCloud sync, stored in your personal iCloud account using CloudKit with end-to-end encryption
• Shared Data (Optional): If you choose to share with family members, stored in iCloud shared databases that you control

Usage Information

We do not collect usage analytics or crash reports. The App does not track how you use it, what features you access, or gather any behavioral data.

Device Information

The App may access standard iOS device capabilities required for functionality (such as notifications permissions), but this information is not transmitted to us or stored outside your device.

How We Use Information

We do not use your information because we do not collect it. The App functions entirely on your device and in your personal iCloud account. We have no access to your financial data, usage patterns, or personal information.

App Functionality

The App uses your financial data solely to provide expense tracking services to you, including:

• Displaying your expenses, income, and budgets
• Generating reports and analytics for your personal use
• Syncing data between your devices (if you enable iCloud sync)
• Sharing data with family members (if you choose to share)
• Exporting data for backup purposes (if you use this feature)

All processing occurs locally on your device or within your iCloud account using Apple's secure infrastructure.

Information Sharing and Disclosure

We do not share your information with third parties because we do not have access to it.

No Third-Party Sharing

We do not:

• Share data with advertisers or marketing companies
• Sell personal information to data brokers
• Provide information to analytics services
• Share data with business partners or affiliates
• Transfer data to other companies or organizations

User-Controlled Sharing

The only data sharing that occurs is when you explicitly choose to share your financial data with other iCloud users through the App's family sharing feature. This sharing:

• Is entirely voluntary and controlled by you
• Uses Apple's iCloud sharing infrastructure
• Can be revoked by you at any time
• Is limited to users you specifically invite
• Is protected by the same end-to-end encryption

Legal Requirements

Since we do not collect or have access to your personal data, we cannot be compelled to provide information we do not possess. Your data in iCloud is subject to Apple's legal obligations and privacy policies.

Data Storage and Security

Storage Options

Xpenses offers flexible storage options to suit your privacy preferences:

• Local Storage (Default): Your data remains stored locally on your iOS device using SwiftData, Apple's secure data persistence framework
• iCloud Sync (Optional): Must be explicitly enabled by you; stores data in your private iCloud account
• CSV Export/Import (Premium Feature): Allows manual backup and transfer of data under your complete control

Security Measures

We implement industry-standard security practices:

• End-to-End Encryption: When using iCloud sync, your data is protected using Apple's CloudKit encryption support
• Private Database: Your iCloud data is stored in your private CloudKit database, not shared storage
• No Server Access: We have no servers that could be compromised or accessed
• Apple's Security: Benefits from Apple's iOS and iCloud security infrastructure

Data Encryption

Your financial information is encrypted such that:

• We cannot access your data
• Apple cannot access your encrypted financial data
• Only you and devices with your iCloud Keychain can decrypt the data
• Data in transit and at rest is protected by encryption

Important Security Notice: Due to end-to-end encryption, if you lose access to your iCloud Keychain and don't have recovery options configured, your encrypted data may be permanently inaccessible. We strongly recommend:

• Setting up Apple ID account recovery options
• Maintaining iCloud Keychain recovery methods
• Keeping at least one device with the App installed and synced
• Regularly exporting data for backup purposes (Premium feature)

Data Export and Backup

As a Premium feature, Xpenses provides tools to help you maintain control and backup of your data:

• CSV Export: Export your complete financial data as CSV files at any time
• CSV Import: Import data from properly formatted CSV files to restore from backups
• Manual Sync: Use export/import functionality to manually transfer data between devices if you prefer not to use iCloud
• Backup Responsibility: All exported data remains your responsibility once it leaves the App

Security Recommendation: Securely store any exported CSV files and protect them with appropriate measures, as they contain sensitive financial information. Consider encrypting exported files or storing them in secure, password-protected locations.

Family Sharing and Data Sharing

As a Premium feature, Xpenses offers the ability to share expense information with family members or trusted individuals. Here's how data sharing works:

User-Controlled Sharing

• Voluntary: Sharing is completely optional and under your control
• Explicit Choice: You explicitly choose with whom to share your data
• iCloud Infrastructure: Sharing uses Apple's iCloud shared database functionality
• Invitation-Only: Only specifically invited iCloud users can access your shared data
• Revocable: You can revoke access at any time through the App
• Same Encryption: Shared data maintains the same end-to-end encryption protection

Shared Data Scope

When you enable sharing, the shared data comprises:

• Expenses and income information
• Configured categories
• Budgets configuration

Sharing Security

Shared data remains secure through:

• End-to-end encryption using Apple's CloudKit
• Access limited to invited iCloud accounts only
• No intermediary storage on our servers
• Your ability to immediately revoke access

App Store and In-App Purchases

Xpenses offers different pricing tiers through Apple's App Store:

Purchase Information

• Free Tier: Basic expense tracking functionality
• Premium Subscription: Monthly or yearly subscription for advanced features
• Premium Lifetime: One-time purchase for permanent access to premium features

Payment Processing

All purchases are processed exclusively through Apple's App Store:

• We do not collect payment information
• We do not store credit card or payment details
• Apple handles all payment processing and security
• Refunds and subscription management are handled through Apple

Subscription Information

The App may receive basic subscription status information from Apple to provide appropriate features, but this does not include personal or payment information.

Analytics and Crash Reporting

We do not collect usage analytics or crash report data. The App operates without any telemetry, tracking, or data collection mechanisms.

No Data Collection

We do not collect:

• Usage statistics or behavioral data
• Crash reports or error logs
• Performance metrics
• Feature usage information
• Device identifiers or advertising IDs

Apple's Optional Analytics

If you have enabled "Share iPhone Analytics" in your iOS settings, Apple may collect standard app usage information as part of their system-wide analytics program. This is controlled entirely by your iOS settings and Apple's privacy policy, not by our App.

Your Rights and Control

You maintain complete control of your data with the following rights:

Data Control Rights

• Access: View all your financial data within the App at any time
• Portability: Export your data in CSV format (Premium feature)
• Deletion: Delete any or all of your data from the App at any time
• Modification: Edit, update, or correct any information in the App
• Sharing Control: Control sharing permissions with other users
• Storage Choice: Choose between local-only storage or iCloud sync

Since We Don't Collect Data

Traditional privacy rights like data access requests, deletion requests, or opting out of data collection don't apply because:

• We don't collect your personal information
• We don't store your data on our servers
• We don't have access to your financial information
• All data remains under your direct control

How to Exercise Your Control

• Delete Local Data: Use the App's settings to clear all local data
• Delete iCloud Data: Disable iCloud sync and delete data through the App
• Revoke Sharing: Remove shared access through the App's sharing settings
• Export Data: Use the CSV export feature (Premium) to backup your information

International Data Transfers

Since we do not collect or store your personal data on our servers, traditional international data transfer concerns do not apply to our service.

iCloud Data Location

If you enable iCloud sync, your data storage location is determined by:

• Your Apple ID country/region settings
• Apple's iCloud data center locations
• Apple's data residency policies

For information about where your iCloud data is stored, please refer to Apple's privacy policy and iCloud documentation.

Children's Privacy

The App is designed for general use and does not specifically target children under 13 years of age. We do not knowingly collect personal information from children under 13 because we do not collect personal information from any users.

Family Accounts

If the App is used on a device associated with a family Apple ID or if data is shared with family members:

• Parents/guardians maintain control over their children's data through Apple's Family Sharing controls
• The same privacy protections apply to all users regardless of age
• No additional data collection occurs for child users

European Union Users

For users in the European Union, this section provides additional information about your privacy rights under the General Data Protection Regulation (GDPR).

Legal Basis for Processing

Since we do not process personal data on our servers, traditional GDPR processing bases don't apply to our service. Any data processing occurs:

• Locally on your device for App functionality
• In your iCloud account under your control (if you enable sync)
• Through Apple's services subject to their privacy policies

Data Controller

For any personal data stored in iCloud (if you enable sync), you are the data controller of your own financial information. Apple acts as a data processor for iCloud services.

GDPR Rights

While traditional GDPR rights don't apply to us (since we don't collect your data), you maintain full control over your information through the App's features as described in the "Your Rights and Control" section above.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or App features. When we make changes:

Notification of Changes

• We will post the updated Privacy Policy on this page
• We will update the "Last updated" date at the top of this policy
• For significant changes, we may provide additional notice through the App or App Store updates

Effective Date

Changes to this Privacy Policy will be effective immediately upon posting the updated version. Your continued use of the App after we post any modifications constitutes your acceptance of the updated Privacy Policy.

Previous Versions

If you would like to review previous versions of this Privacy Policy, please contact us using the information provided below.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Developer Contact

Contact PuppyByte

Response Time

We aim to respond to privacy-related inquiries within 30 days. Since we do not collect your personal data, most privacy requests can be addressed by using the App's built-in data control features.

Jurisdiction

PuppyByte operates from Europe. For EU users with privacy concerns that cannot be resolved through direct contact, you may have the right to lodge a complaint with your local data protection authority.