Legal
Privacy Policy
We built Spendaq around one principle: your financial data is yours. This policy explains exactly what we collect, what we don't, and why.
Last updated: March 25, 2026
1. Who we are
Spendaq is a privacy-first expense tracking application for iOS. The developer can be reached at support@spendaqapp.com.
2. What data Spendaq does NOT collect
To be unambiguous:
- We do not collect your financial transactions, budgets, or categories
- We do not require a bank account connection or any financial credentials
- We do not have access to your iCloud data — it is stored in your personal Apple iCloud account
- We do not sell any data to third parties
- We do not use your data to train machine learning models
- We do not run advertising
3. What data we collect
3.1 Anonymous usage analytics
We use PostHog (self-hosted on EU servers) to collect anonymous, aggregated analytics about how features are used. This helps us improve the app. Examples: which screens are opened, which features are tapped, and how often certain flows are completed.
What we never include in analytics: transaction amounts, merchant names, category names, balances, or any information that could identify your financial situation. Each analytics session is assigned a random anonymous ID not linked to your Apple ID, iCloud account, or any personal identifier.
3.2 Crash reports
We use Sentry (EU endpoint) to capture crash reports when the app unexpectedly closes. Crash reports contain stack traces and device context (iOS version, device model) but are scrubbed of any financial data before transmission.
3.3 Purchase information
Subscriptions and in-app purchases are managed by RevenueCat and Apple's App Store. RevenueCat receives anonymized purchase events (which product was purchased, when) to manage your subscription entitlement. No financial transaction data from inside the app is shared with RevenueCat.
3.4 iCloud Sync (optional)
If you enable iCloud sync, your Spendaq data (transactions, budgets, categories, vault settings) is stored in your personal iCloud account via Apple's CloudKit. This data is governed by Apple's Privacy Policy. Spendaq does not have server-side access to this data.
4. Where data is stored
| Data Type | Storage Location | Who can access it |
|---|---|---|
| Transactions, budgets, categories | On your iPhone (encrypted SQLite) | Only you |
| iCloud-synced records | Your Apple iCloud account | Only you (Apple E2E encryption) |
| Partner-shared vault | Your Apple iCloud (CloudKit share) | You and your invited partner |
| App settings | On your iPhone (UserDefaults) | Only you |
| Anonymous analytics | PostHog — EU servers | Spendaq team (aggregated only) |
| Crash reports | Sentry — EU endpoint | Spendaq team (no financial data) |
| Purchase history | Apple App Store + RevenueCat | Apple + Spendaq (subscription status only) |
5. Third-party services
5.1 RevenueCat
Manages subscription entitlements. Receives anonymized purchase events. No financial transaction data is shared. RevenueCat Privacy Policy.
5.2 PostHog
Self-hosted analytics on EU infrastructure. Anonymous feature usage only. No financial data. PostHog Privacy Policy.
5.3 Sentry
Crash reporting via EU endpoint. Crash stack traces only — no financial data in breadcrumbs. Sentry Privacy Policy.
5.4 Apple / iCloud
iCloud sync, App Store purchases, and biometric authentication (Face ID / Touch ID) are handled by Apple. Apple Privacy Policy.
6. Apple Privacy Nutrition Labels
| Data Category | Collected | Linked to User | Used for Tracking |
|---|---|---|---|
| Financial Info (transactions, budgets) | No — never collected | — | — |
| Anonymous user ID (analytics) | Yes | No | No |
| Usage data (feature interactions) | Yes | No | No |
| Crash data (stack traces) | Yes | No | No |
| Purchase history (subscription status) | Yes | Yes (your subscription) | No |
7. On-device processing
The following features are processed entirely on your device and never send data to any server:
- Transaction categorization — Machine learning inference runs on-device using Core ML
- Face ID / Touch ID — Biometric evaluation is handled by Apple's Secure Enclave. Spendaq never receives your biometric data
- Currency conversion — Exchange rates are fetched once daily and cached locally; all calculations happen on-device
8. Data retention and deletion
Because Spendaq does not store your financial data on its servers, there is no server-side data to delete. Your transactions, budgets, and categories exist only on your device (and in your iCloud if enabled).
To delete your data:
- Delete app data: Settings → Clear Data in the Spendaq app (selectively delete transactions, budgets, or vaults)
- Delete iCloud data: Disabling iCloud sync in Spendaq and deleting the app removes the iCloud container
- Delete analytics data: Contact support@spendaqapp.com to delete your anonymous analytics session
9. Children's privacy
Spendaq is rated 4+ on the App Store. The app does not collect personal information from anyone, including children under 13. Spendaq complies with COPPA.
10. GDPR (EU users)
If you are located in the European Economic Area (EEA), you have the following rights under GDPR: access to your data, erasure ("right to be forgotten"), data portability (use CSV export), right to object to processing, and the right to opt out of analytics.
To exercise any of these rights, contact support@spendaqapp.com. Our analytics provider (PostHog) operates on EU infrastructure in compliance with GDPR.
11. Security
Your financial data is protected by iOS file encryption at Data Protection class Complete (inaccessible when the device is locked), optional biometric lock via Apple's Secure Enclave, iCloud sync using Apple's end-to-end encryption, and no Spendaq server that could be breached to expose your financial data.
12. Changes to this policy
We will update this policy when our data practices change. Significant changes will be communicated via an in-app notification or App Store update notes.
13. Contact
Questions about this privacy policy? Email us at support@spendaqapp.com.