This Privacy Policy describes how SC Flow ("we," "our," or "us") collects, uses, shares, and protects information when you use our mobile application SC Flow (the "App"). By using the App, you agree to the collection and use of information in accordance with this policy.
Summary of Data Collection
We believe in transparency. Here is a summary of the data we collect:
- Collected and transmitted: Device advertising ID, app-generated user ID, push notification token, installation source, attribution data
- Stored locally only (never transmitted): Your financial data including transactions, budgets, accounts, categories, and receipt photos
Information We Collect
We are committed to protecting your privacy. The App is designed to function primarily with locally stored data on your device. However, certain features require the collection of limited information:
Automatically Collected Information
- Google Advertising ID (GAID): We collect your device's advertising identifier for analytics, attribution, and to measure the effectiveness of advertising campaigns. This identifier is collected automatically when you use the App. You can reset or opt out of personalized advertising through your device settings (Settings > Google > Ads).
- App-Generated User ID: We generate a random unique identifier (UUID) stored on your device to distinguish users for analytics purposes. This ID is not linked to your personal identity and is generated upon first launch of the App.
- Push Notification Token: If you enable push notifications, we collect your Firebase Cloud Messaging (FCM) token to send you notifications about budgets, reminders, and app updates.
- Installation Source: We collect information about where the App was installed from (e.g., Google Play Store) for attribution purposes.
- Device Information: We may collect basic device information such as device model, operating system version, language settings, and user agent string for app functionality and analytics.
- Attribution Data: We collect marketing attribution data including media source, campaign information, and AppsFlyer user ID to understand how users discover the App.
User-Generated Content (Stored Locally)
All financial data you enter in the App is stored locally on your device and is never transmitted to our servers:
- Transaction records (expenses and income)
- Budget settings and financial goals
- Account information and balances
- Category preferences
- Recurring transaction rules
- Receipt photos and attachments
- Achievement progress and statistics
How We Use Your Information
We use the collected information for the following purposes:
- App Functionality: To provide and maintain the App's core features, including budget tracking, expense management, and financial reporting.
- Push Notifications: To send you reminders about budgets, recurring transactions, and important app updates (with your consent).
- Analytics: To understand how users interact with the App, identify issues, and improve user experience.
- Attribution and Marketing: To measure the effectiveness of marketing campaigns and understand how users discover the App.
- Customer Support: To respond to your inquiries and provide technical assistance.
Data Sharing
We do not sell your personal information to third parties.
We share limited data with the following categories of service providers:
- Analytics Providers: We share device identifiers, app usage data, and attribution information with analytics services (such as AppsFlyer, Firebase, and AppMetrica) to analyze app performance and marketing effectiveness.
- Push Notification Services: We share your FCM token with Firebase to deliver push notifications.
We do not share your locally stored financial data (transactions, budgets, accounts) with any third parties.
Local Data Storage
Your financial data is stored exclusively on your device using local database storage. This includes:
- Transaction records (expenses and income)
- Budget settings and spending limits
- Category preferences and customizations
- Account information and balances
- Recurring transaction rules
- Receipt photos and attachments
- Achievement progress and statistics
- App preferences and settings
This financial data is never transmitted to our servers or any third parties. You can delete this data at any time by clearing app data through your device settings or by uninstalling the App.
Analytics and Third-Party Services
The App may use third-party analytics services to help us understand how users interact with the App, measure advertising effectiveness, and improve app performance. These services may collect:
- Device identifiers (Google Advertising ID)
- App usage statistics and events
- Crash reports and performance data
- Installation and attribution data
The following third-party services may be used:
- Firebase: We use Firebase Cloud Messaging for push notifications and may use Firebase Analytics for app analytics. Firebase collects device identifiers and app usage data. For more information, please review the Firebase Privacy Policy.
- AppsFlyer: We use AppsFlyer for attribution and marketing analytics. AppsFlyer collects device identifiers, installation data, and attribution information. For more information, please review the AppsFlyer Privacy Policy.
- AppMetrica: We may use AppMetrica for analytics and crash reporting. AppMetrica may collect device identifiers and app usage data. For more information, please review the AppMetrica Privacy Policy.
These third-party services have their own privacy policies governing the use of your information. We encourage you to review their policies.
Push Notifications
The App may send push notifications to remind you about budgets, recurring transactions, or app updates. When you enable notifications:
- We collect your Firebase Cloud Messaging (FCM) token to deliver notifications to your device.
- Notification tokens are used solely for delivering app-related notifications.
- We may subscribe you to notification topics based on your device's language settings to provide localized content.
- You can disable notifications at any time through your device settings or within the App.
- We do not share your notification tokens with third parties for marketing purposes.
On Android 13 and above, the App will request your permission before sending notifications.
Calendar and Reminders
The App may allow you to save budget reminders and financial events to your device's system calendar. When used:
- All calendar data remains on your device and is not transmitted to our servers or any third parties.
- Calendar integration requires your explicit permission through your device's permission system.
- You can control calendar permissions through your device settings at any time.
- We do not access, read, or store your existing calendar entries.
Photos and Camera Access
The App requests access to your device's camera for the following purposes:
- Receipt Scanning: You can photograph receipts to attach them to transactions. These photos are stored locally on your device and are not uploaded to our servers.
- Contact Form: When contacting support through the App, you may optionally use the camera to capture and attach photos to help describe issues. Photos submitted through the contact form are sent to our support team.
You have full control over camera access:
- The App will request camera permission when you attempt to use camera features.
- You can remove photo attachments from transactions at any time within the App.
- Camera access can be revoked through your device settings at any time.
- The App will not access your camera without your explicit action.
Data Security
We take reasonable measures to protect your information:
- Local data is stored using your device's built-in security features.
- We do not store sensitive financial data on external servers.
- Any data transmission uses industry-standard HTTPS encryption protocols.
- We implement appropriate technical and organizational measures to protect transmitted data.
However, no method of electronic storage or transmission is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
Third-Party Links and Content
The App may contain links to third-party websites or services. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party services you access through the App.
Children's Privacy
The App is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can take appropriate action to delete such information.
Data Retention
We retain different types of data for different periods:
- Local Financial Data: Your transaction records, budgets, and other financial data remain on your device until you choose to delete them or uninstall the App. We do not retain copies of this data on our servers.
- Device Identifiers and Analytics Data: Analytics data including device identifiers may be retained by our third-party analytics providers according to their respective data retention policies (typically up to 24 months).
- Push Notification Tokens: FCM tokens are retained as long as you have the App installed and notifications enabled.
- Support Communications: If you contact us for support, we may retain communication records to improve our services.
Your Rights and Choices
You have the following rights regarding your data:
- Access: You can view all data stored by the App on your device through the App's interface.
- Deletion: You can delete your local data by clearing app data through your device settings (Settings > Apps > SC Flow > Storage > Clear Data) or by uninstalling the App.
- Opt-Out of Personalized Advertising: You can reset your Google Advertising ID or opt out of personalized ads through your device settings (Settings > Google > Ads > Reset advertising ID or Delete advertising ID).
- Notification Control: You can disable push notifications through your device settings or within the App.
- Permission Management: You can revoke camera and other permissions through your device settings (Settings > Apps > SC Flow > Permissions) at any time.
- Data Portability: Your financial data is stored locally on your device and can be accessed directly.
To exercise any of these rights or if you have questions, please contact us using the information below.
International Data Transfers
Our third-party analytics providers may process data in countries outside your country of residence. These providers maintain appropriate safeguards to protect your information in accordance with applicable data protection laws.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For significant changes, we may provide additional notice through the App. You are advised to review this Privacy Policy periodically for any changes.
Contact Us
If you have any questions about this Privacy Policy, our data practices, or wish to exercise your privacy rights, please contact us at:
Email: [email protected]
Last Updated: December 17, 2024