Privacy Policy

Kept (“we”, “us”, or “our”) is a personal finance tracking application for iOS and Android. This Privacy Policy explains how we handle information in connection with your use of the Kept app (“App”) and website (“Site”). Where behavior differs between platforms, we say so explicitly.

The short version: we collect almost nothing. Your financial data is stored exclusively on your device and, if you choose to enable it, in your own personal cloud (iCloud on iOS, or Google Drive on Android). We have no access to your transactions, budgets, or any other financial information you enter into Kept. On Android only, the App includes optional crash reporting that you can turn off at any time — described in Section 2.4.

2.1 Financial Data

All financial data — including transactions, budgets, categories, and account settings — is stored locally on your device: using Apple's SwiftData framework on iOS, and a private, encrypted on-device database on Android. We do not collect, access, or transmit this data in any way.

2.2 Optional Cloud Backup

Kept can optionally back up your data to a cloud location that you own and control. This is never enabled by default — you choose if and when to use it.

• iOS — iCloud: if you enable iCloud Sync, your data is stored in your personal iCloud account, managed entirely by Apple and accessible only to you. Use of iCloud is governed by Apple's Privacy Policy.
• Android — Google Drive: if you enable backup, Kept uploads a copy of your data to your own Google Drive, into a private app folder that only the App can access. The backup is encrypted on your device before it is uploaded (AES-256), so we never receive a readable copy of your financial data. Use of Google Drive is governed by Google's Privacy Policy. To enable backup we ask you to sign in with Google; we receive only the email address of the account you choose, used solely to identify the Drive used for backup and restore.

2.3 Support Communications

If you contact us by email for support, we receive your email address and the content of your message. We use this information solely to respond to your inquiry and do not share it with third parties.

2.4 Crash & Diagnostic Reporting (Android only)

The Android version of Kept includes Google Firebase Crashlytics to help us detect and fix crashes and bugs. When enabled, it collects crash logs and basic diagnostic information — device model, operating-system version, app version, and a Crashlytics installation identifier used to group reports. It never includes your financial data.

Crash reporting is optional. It is on by default, but you can turn it off at any time in Settings → Advanced → Send Crash Reports; once off, no crash or diagnostic data is collected. Data is processed by Google as our service provider, governed by Google's Firebase Privacy and Security policy, and is retained for no more than 90 days. The iOS version of Kept does not include crash reporting.

2.5 Store Analytics

Apple (App Store) and Google (Google Play) may collect aggregated, anonymized analytics about downloads and usage as part of standard app store operations. This data is aggregated and anonymized; we have no control over its collection, and it is governed by Apple's and Google's respective privacy policies.

We use the limited information described above only for the following purposes:

• To respond to support requests and inquiries you initiate.
• To enable optional cloud backup and restore when you choose to turn it on.
• On Android, to diagnose and fix crashes and bugs via optional crash reporting that you can disable at any time.
• To understand general usage trends via aggregated, anonymized store analytics provided by Apple and Google, which helps us improve the App.

We do not use your information for advertising, profiling, or any purpose beyond what is described in this policy. We do not sell or share your personal information with third parties for their own purposes.

Your financial data is stored on-device — using Apple's SwiftData framework on iOS (protected by iOS device encryption), and a private, encrypted database on Android. If App Lock is enabled, access to the App requires biometric authentication (Face ID, Touch ID, or fingerprint) or a PIN code.

We do not maintain servers that store your financial data. If you enable cloud backup, the data is protected in transit by HTTPS/TLS; on Android it is additionally encrypted on your device with AES-256 before upload, so it is never readable by us or by Google. Your Apple ID / Google account credentials and encryption keys are never shared with us.

Depending on your platform, Kept integrates with the following third-party services, each subject to its provider's privacy policy:

• Apple App Store / Google Play — used to distribute, update, and (if you make a purchase) bill for the App.
• Apple iCloud (iOS) — used for optional data sync across your Apple devices. You control whether this is enabled.
• Google Drive (Android) — used for optional, client-side-encrypted backup to your own Drive. You control whether this is enabled.
• Google Firebase Crashlytics (Android) — used for optional crash and diagnostic reporting. You can disable it in Settings.

We do not integrate with any advertising networks, advertising-ID based tracking, social media SDKs, or other third-party tracking services on either platform.

Kept is not directed to children under the age of 13 (or the applicable minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at the email address below so we can delete it.

Because your financial data is stored on your device, you have full control over it:

• Access and export: Use the Export feature within the App to export your data as CSV or JSON at any time.
• In-app erase: Use Settings → Erase Data to permanently delete all data stored in the App on your device.
• Deletion: Deleting the App removes all locally stored data. If you enabled cloud backup, you can also turn it off and delete the backup from your iCloud (iOS) or Google Drive (Android).
• Crash reporting (Android): Turn off Settings → Advanced → Send Crash Reports to stop collection; existing reports are retained no more than 90 days.
• Support communications: Contact us at the email below to request deletion of any support messages we hold.

Depending on where you live, you may have additional rights under applicable law (such as GDPR or CCPA). Please contact us if you have any such requests.

Because we do not collect or store your financial data on our servers, there are no international data transfers of your financial information. Optional crash and diagnostic data on Android is processed by Google (Firebase), which may process and store it on servers located in the United States or other countries, subject to Google's safeguards. Support emails are stored securely by our email provider in accordance with standard industry practices.

We may update this Privacy Policy from time to time. When we do, we will update the “Effective Date” at the top of this page. Continued use of Kept after changes constitutes your acceptance of the revised policy. For significant changes, we may provide notice via an update to the App.

If you have any questions, concerns, or requests about this Privacy Policy, please contact us at: ashik4339@gmail.com. We will respond to your inquiry within one business day.