Privacy Policy
This policy explains what data FinPair collects, why, how long we keep it, who can access it, and what rights you have. It applies to the FinPair Android application and the supporting backend services. If anything is unclear, contact us at privacy@finpair.app.
1. Who we are
FinPair is an Android application that helps small groups — primarily couples — track shared expenses, settlements, budgets, goals, and recurring payments. The application is operated by the individual developer behind FinPair (the “Operator”, “we”, “us”). For the purposes of the EU General Data Protection Regulation (GDPR), the Operator is the data controller.
Contact for privacy questions and data-subject requests: privacy@finpair.app.
2. Important: FinPair is not a payment service
FinPair records claims about money between users (who owes whom). It does not hold customer funds, does not initiate, process, settle, or facilitate any transfer of money, and does not act as a bank, payment institution, money transmitter, or e-money issuer. When a user marks a debt as “settled” inside FinPair, the actual payment between the users occurred outside FinPair through their own means.
3. What data we collect
3.1 Account data
- Email address
- Display name
- Profile photo URL (optional)
- Default currency and language preferences
- Authentication credentials (handled by Firebase Authentication; we never see your password in plain text)
3.2 Financial records you create
- Transactions (amount in minor units, currency, category, date, notes, visibility level)
- Splits between members of a Space (group)
- Settlement records (claims that a debt was paid outside the app)
- Budgets, goals, recurring payment templates
- Activity events (audit log entries inside a Space)
- Receipt photos you choose to attach (uploaded to Firebase Cloud Storage)
3.3 Communication content
- Chat messages exchanged with members of your Space
- Annotations on monthly reports
3.4 Device and technical data
- Device push token (Firebase Cloud Messaging) for notifications
- App Check tokens (Play Integrity API in release builds) to protect the backend from abuse
- Crash reports (Firebase Crashlytics): stack trace, OS version, device model, app version
- Analytics events (Firebase Analytics): named events such as
onboarding_completed,invite_sent,transaction_created,settlement_completed. We do not include email, amounts, or financial values in analytics event parameters.
3.5 Data we do not collect
- We do not collect government identifiers, payment card numbers, bank account numbers, or biometric data.
- We do not collect contacts, location, microphone, or files outside the photos you explicitly attach.
- We do not show third-party advertising and do not share data with advertising networks.
4. How we use the data
| Purpose | Legal basis (GDPR Art. 6) |
|---|---|
| Provide the app's core functionality (record-keeping, sharing, settlements) | Performance of contract |
| Authenticate users and protect accounts | Performance of contract; legitimate interest |
| Send transactional and reminder push notifications | Performance of contract |
| Diagnose crashes and stability issues | Legitimate interest in a stable product |
| Product analytics for feature usage | Legitimate interest; no personal data in events |
| Prevent abuse of the backend (App Check) | Legitimate interest in service integrity |
| Respond to support requests | Legitimate interest; consent for sensitive disclosures |
| Comply with legal obligations | Legal obligation |
5. Who sees your data
5.1 Other members of your Spaces
Each transaction has a visibility level you choose: private (only you), shared total (other members see the amount but no category, note, or attachment), or shared detailed (other members see the full record). Settlements, balances, and chat are visible to all members of a Space. The visibility level is enforced both in the app and on the server.
5.2 Sub-processors
We use the following service providers to operate FinPair. They process data on our behalf and are bound by their own data-processing terms:
- Google LLC / Google Cloud (Firebase) — authentication, database (Cloud Firestore), storage (Cloud Storage), serverless functions (Cloud Functions), crash reporting (Crashlytics), analytics (Firebase Analytics), push notifications (Firebase Cloud Messaging), abuse protection (App Check). Data is hosted in the Google Cloud
eur3European multi-region.
5.3 Other disclosures
We disclose personal data outside the categories above only when (i) you ask us to, (ii) the law requires it, or (iii) it is necessary to defend legal claims. We do not sell personal data. We do not share personal data for cross-context behavioral advertising.
6. Where data is stored
Your account data, financial records, and content are stored in the Google Cloud Firestore eur3 multi-region, which is geographically restricted to data centers in the European Union. Backups and operational copies are kept within the same multi-region. Push notification tokens are processed by Google's Firebase Cloud Messaging infrastructure, which is global; the message payloads are minimal (event name and Space identifier) and do not include amounts.
7. How long we keep data
- Account, financial records, chat, receipts: kept while your account exists.
- Account deletion: on deletion, your account record, profile, all Spaces where you are the sole member, your private Space data, your transactions, settlements, splits, goals, contributions, receipts, and chat messages are removed. In Spaces shared with other members, outstanding debts you owed are automatically marked as “forgiven on leave” so the remaining members can close their books, and your authored content is retained pseudonymously where required for the shared history.
- Crash reports: retained for up to 90 days by Crashlytics, then deleted.
- Analytics: retained by Firebase Analytics for the period you can configure in the Firebase Console (currently up to 14 months).
- Backup logs and operational logs: retained for up to 30 days for incident investigation, then deleted.
- Legal compliance: if a specific record must be retained to comply with a legal obligation or to defend a legal claim, we keep only the minimum required for the minimum required period.
8. Your rights
If you are in the European Union, the United Kingdom, or another jurisdiction that grants comparable rights (for example California under the CCPA/CPRA, Brazil under the LGPD), you have the following rights regarding your personal data:
- Access — receive a copy of the personal data we hold about you.
- Rectification — correct inaccurate or incomplete data.
- Erasure — delete your account and the associated data. You can do this yourself in Settings → Delete account, or by writing to delete@finpair.app.
- Restriction — ask us to stop or limit certain processing.
- Portability — receive a machine-readable export of your data.
- Object — object to processing based on legitimate interest.
- Withdraw consent — where processing is based on consent.
- Lodge a complaint — with your local data-protection authority. In the EU, you can find your authority via edpb.europa.eu.
To exercise any of these rights, write to privacy@finpair.app. We respond within 30 days; for complex requests we may extend the period by up to two further months and notify you. Identity verification may be required to protect your account.
9. Security
Communication between the app and the backend uses TLS. The Firebase platform encrypts stored data at rest. Access to the production environment is limited to the Operator and is protected by multi-factor authentication. Server-authored events (settlements, chat messages, audit log entries, monthly report snapshots) are validated by server-side functions. Client uploads to Cloud Storage are scoped to the user and size-limited.
No service can guarantee absolute security. If we become aware of a personal-data breach that is likely to result in a risk to your rights, we will notify the relevant supervisory authority and, where required, you, in accordance with applicable law.
10. Children
FinPair is not directed at children under the age of 16 and we do not knowingly collect personal data from them. If you believe a child has provided us with personal data, contact privacy@finpair.app and we will delete the account and the associated data.
11. International transfers
Personal data is stored in the European Union as described above. When Google's backend processes data outside the EU (for example, message routing for push notifications), Google relies on its own framework of European Commission Standard Contractual Clauses and additional safeguards.
12. California residents (CCPA / CPRA)
Within the past twelve months we have collected the categories of personal information described in section 3 for the purposes described in section 4, and disclosed them to the sub-processors described in section 5. We do not sell or share personal information for cross-context behavioral advertising. You have the right to know, to delete, to correct, and to limit the use of sensitive personal information. To exercise these rights, contact privacy@finpair.app. We will not discriminate against you for exercising your CCPA rights.
13. Changes to this policy
If we change this policy, we update the “Last updated” date at the top of this page. For material changes, we will additionally notify active users in the app at next launch. Continued use of the app after the change means you accept the updated policy.
14. Contact
Privacy questions, data-subject requests, complaints: privacy@finpair.app.
Account deletion: delete@finpair.app or use Settings → Delete account in the app.