Last updated: May 2025
All data you enter — transactions, categories, budgets, recurring rules, and your PIN — is stored exclusively in an encrypted SQLite database on your device. It never leaves your device unless you explicitly export it.
Privvy Ledger does not include any third-party advertising, analytics, or tracking SDKs. The only network-capable dependency is the Expo runtime itself, which may check for over-the-air update manifests from Expo's servers. No user data is included in those requests.
When you enable biometric unlock (fingerprint or Face ID), authentication is handled entirely by your device's secure enclave via the operating system API. Privvy Ledger never has access to your biometric data — only the OS result (success / failure) is returned to the app.
You can export your data at any time from Settings → Export. Exported files are plain CSV or PDF and are saved to a location you choose. We have no visibility into what you do with exported files.
All data is deleted permanently when you use Settings → Erase all data, or when you uninstall the app. There is no server-side copy to request deletion of.
Privvy Ledger is not directed at children under 13. We do not knowingly collect any data from anyone, including children.
If this policy changes materially (e.g. a cloud sync feature is added), we will update the "Last updated" date and note the change in the app's release notes.
Questions or concerns? Reach us at adeolaastephen@gmail.com or via the contact form at stephenadeniji.com.