Privacy Policy
Last updated: March 14, 2026
Moneylogue ("we", "our", "the app") is a spending narrative app that helps you understand your financial habits. We take your privacy seriously — especially given the sensitive nature of financial data.
1. Data Controller
The data controller responsible for your personal data is:
Moneylogue
Email: support@moneylogue.app
2. Data We Collect
| Data | Purpose | Stored |
|---|---|---|
| Email address | Authentication (optional — anonymous sign-in available) | Firebase Auth |
| Transactions | Core app functionality (imported by you via CSV) | Cloud Firestore (EU) |
| Receipt images | AI text extraction — processed and discarded, not stored | Not stored |
| Category preferences | Improve categorization accuracy | Cloud Firestore (EU) |
| Stories | AI-generated summaries of your spending patterns | Cloud Firestore (EU) |
| Subscription data | Verify and manage your subscription status | Cloud Firestore (EU) |
| Usage data | Understand app usage and improve the product | Firebase Analytics |
| App integrity data | Protect against abuse and automated traffic | Firebase App Check |
| Device info & crash logs | Error tracking (if enabled) | Firebase Crashlytics |
We do not collect your name, phone number, physical address, GPS location, or advertising identifiers.
Providing transactions is required to use Moneylogue’s core features. Providing receipts is optional; if you do not provide receipts, receipt-based extraction and categorization features may not work.
3. Legal Basis for Processing
We process your personal data on the following legal grounds (GDPR Article 6):
- Contract performance — processing your transactions is necessary to provide the core service you signed up for
- Consent — where required, for crash reporting, analytics, and AI-powered categorization. You can withdraw consent at any time (for example, via in-app settings where available or by contacting us).
- Legitimate interest — for security measures (App Check) to protect against abuse
4. How We Use Your Data
- To provide core app features: importing, categorizing, and visualizing your transactions
- To send transaction data (descriptions, amounts, dates, categories, comments, and receipt line items) to Google's AI services (Gemini) for automatic categorization and spending narrative generation
- To track app usage patterns and screen navigation (Firebase Analytics)
- To verify your device is genuine and protect against abuse (Firebase App Check)
- To diagnose crashes and improve app stability (Firebase Crashlytics, if enabled)
- To generate personalised stories that summarise your financial habits over weekly, monthly, and yearly periods
- To verify and manage your subscription via the Google Play Billing API
AI-powered categorization is used to suggest categories based on the information you provide. These suggestions do not have legal or similarly significant effects, and you can review and change categories. Stories are AI-generated summaries of your transaction patterns — they do not make automated decisions and are provided for informational purposes only.
5. Third-Party Services
| Service | Provider | Data Shared | Region |
|---|---|---|---|
| Authentication | Firebase Auth (Google) | Email, user ID | EU configurable |
| Database | Cloud Firestore (Google) | All user data | europe-west1 |
| AI Categorization & Narratives | Google Gemini (Vertex AI) | Transaction data (descriptions, amounts, dates, categories, comments, receipt items), receipt images | europe-west1 |
| Subscription Billing | Google Play Billing API | Purchase tokens, subscription status | Google Cloud |
| Analytics | Firebase Analytics (Google) | Usage events, screen views | Google Cloud |
| App Integrity | Firebase App Check (Google) | Device attestation tokens | Google Cloud |
| Crash Reporting | Firebase Crashlytics (Google) | Device info, crash logs | Google Cloud |
All third-party services are provided by Google. Data transfers outside the EU are covered by Google's Data Processing Agreement and Standard Contractual Clauses (SCCs), ensuring an adequate level of data protection.
6. Data Security
All data transmitted between the app and our servers is encrypted in transit using TLS. Data stored in Cloud Firestore is encrypted at rest by Google. Access to your data is restricted to your authenticated account through Firestore security rules.
7. Data Storage & Retention
- All user data is stored in the EU (europe-west1)
- Your data is isolated — no other user can access it
- Transaction data is kept until you delete your account
- Receipt images are processed in real-time and never stored on our servers
- AI-generated stories are stored until you delete your account
- Subscription purchase tokens are stored to verify your subscription status and prevent misuse
- Analytics and crash reporting data is retained according to Firebase settings and deleted or anonymized over time
8. Your Rights
Under GDPR and applicable data protection laws, you have the right to:
- Access — request a copy of all your data
- Rectification — correct inaccurate data
- Restriction — request that we restrict processing of your data in certain cases
- Objection — object to certain processing in certain cases
- Erasure — delete your account and all associated data
- Data portability — export your data
- Withdraw consent — disable crash reporting, analytics, or AI features at any time (where applicable)
- Lodge a complaint — you have the right to file a complaint with your local data protection supervisory authority
To exercise any of these rights, contact us at support@moneylogue.app.
9. Account Deletion
How to delete your account
You can delete your account directly from the app: go to Settings → Delete Account. This will immediately and permanently delete all your data.
When your account is deleted, the following data is removed:
- All transactions
- Category cache and preferences
- User settings and preferences
- AI-generated stories
- Subscription and purchase data
- Firebase Auth account
- Crash reporting data (where technically possible)
10. Children
Moneylogue is not intended for users under the age of 18. We do not knowingly collect data from children.
11. Changes to This Policy
We may update this policy from time to time. The "last updated" date at the top of this page reflects the most recent revision. Continued use of the app after changes constitutes acceptance.
12. Contact
For privacy-related questions or requests, contact us at support@moneylogue.app.