Privacy Policy — FamArca

This Privacy Policy describes how the FamArca application (hereinafter — the "App"), developed by Pikiti Development (hereinafter — "we", "us"), collects, uses, stores, and protects user data (hereinafter — "you", "user").

By using the App, you agree to the terms of this Policy. If you do not agree with any of the terms, please stop using the App.

2.1. Account and Profile Data

When signing in with Google, we receive and store:

• Email address
• Display name
• Google profile photo URL
• Internal user identifier (Firebase UID)
• Sign-in provider

The profile also stores:

• Onboarding completion status
• Selected app language
• User's primary currency

2.2. Financial Data

All financial data is created exclusively by the user within the App. We do not obtain financial data from external sources. This includes:

• Transactions: operation type, amount, currency, date, category, subcategory, description, and other related parameters
• Categories and subcategories: names, icons, type, display settings
• Budgets: limit, currency, period, notification threshold, linked category
• Goals: name, target and current amount, currency, target date, status
• Debts: type, counterparty, amount, remaining balance, currency, terms, status
• Recurring payments: type, amount, category, frequency, dates, reminder settings
• Quick entry templates: name, type, amount, category, description
• Exchange rate data and user-selected currencies

2.3. Family and Group Data

When using family sharing features:

• Family group name
• Member data: email, display name, nickname, photo, role, invitation status, join date
• Invitation data: group identifier, invitee email, status
• Shared group transactions and budgets

2.4. Settings and Personalization

• App theme (dark/light)
• App language
• Primary currency
• Cloud sync toggle
• Notifications toggle
• User's nickname in the group
• AI features consent (flag and date)

2.5. Security Data

• App PIN code
• Biometric authentication toggle
• Failed PIN attempt counter
• Lock timeout
• Last unlock time

All security data is stored exclusively on the device in encrypted form and is never transmitted to external servers.

2.6. Subscription Data

• Subscription status (free/premium)
• Trial period, premium subscription, and grace period expiration dates
• Technical data required for Google Play Billing
• Monthly AI usage counters and purchased pack balance

2.7. Automatically Collected Technical Data

Firebase Analytics may automatically process:

• App instance identifier (app instance ID)
• App interaction events (screen views, feature usage)
• Approximate geolocation derived from network information (masked IP address)
• Device and operating system information

Firebase Crashlytics may collect:

• App crash and error data
• Device information and app state at the time of the crash

2.8. AI Feature Data (Premium)

The App provides two Premium AI features:

• Voice transaction entry — converts a voice recording into a structured transaction.
• Receipt scanning — extracts fields (amount, date, merchant, category) from a photo of a receipt.

Use of AI features requires explicit user consent, requested through a dedicated screen before first use. Without consent, AI features are unavailable.

When AI features are used, the following data is temporarily processed:

• Audio recordings, no more than 30 seconds each — only when using voice entry
• Recognized text from the receipt — extracted locally on the device via Google ML Kit (the photo does not leave the device in the primary path)
• Receipt photo — transmitted to the AI provider only in rare cases (fallback path) when local recognition produced a poor result
• User context — your list of categories, accounts, and interface language — sent to the AI for accurate categorization

Audio recordings and photos are not stored on FamArca servers or with AI providers after the result is returned. The file is automatically deleted from your device after sending.

Collected data is used exclusively for:

• Providing the App's core functionality (finance tracking, budgeting, analytics)
• Syncing data across user devices (when cloud sync is enabled)
• Enabling family groups and shared access
• Processing and confirming subscriptions and purchased AI packs
• Recognizing voice messages and receipt photos for the AI premium features (only with user consent)
• Improving App quality and stability (analytics and crash diagnostics)
• Sending local notifications (payment and budget reminders)

We do not use your data for:

• Displaying advertisements
• Selling or sharing with third parties for marketing purposes
• Profiling for advertising targeting
• Training AI models (the AI features use paid provider tiers with a contractual no-training guarantee on user data)

4.1. Local Storage (on device)

The following data is stored only on your device:

• PIN code and lock settings (encrypted)
• Local database with all financial entities
• Export and import files (JSON, Excel) created by the user
• Widget state
• Scheduled local notifications
• Some user settings

4.2. Cloud Storage (Firebase / Firestore)

Data transmitted to Firebase upon account sign-in (always):

When signing in via Google Sign-In, the following data is automatically saved to Firebase regardless of sync settings:

• User profile: ID, email, display name, photo URL, primary currency, language, onboarding status
• AI features consent flag (date + boolean only, never request contents)
• Subscription status and AI usage counters

Data transmitted only when cloud sync is enabled:

The following data is transmitted to Firebase Firestore only if the user has manually enabled cloud sync in the App settings:

• Categories and subcategories
• Transactions
• Budgets
• Goals
• Debts
• Family group data, invitations, group transactions, and group budgets

Recurring payments and templates are currently processed locally and are not synced to the cloud.

4.3. Transient AI Processing (Not Stored)

AI feature data (audio, photos, context) is processed transiently only:

• On the App side — files are deleted from the device immediately after the result is received
• On the FamArca server (Supabase) — only request proxying, no original data is stored
• At AI providers (Google Gemini / OpenAI) — short-term retention of up to 30 days strictly for abuse prevention. Not used for model training.

The AI request log on the FamArca server records only technical metadata (timestamp, success/failure, cost), with no user request contents.

The App uses the following third-party services:

We do not sell, rent, or share your personal data with third parties, except:

• Use of third-party services listed in Section 5, which are necessary for the App to function
• When using AI features — transmission of audio recordings, receipt OCR text, and context (categories, accounts, language) to Google Gemini API (primary AI provider) and, if it is unavailable, to OpenAI API (backup). Data is transmitted over encrypted channels and is not used for model training
• Requirements of applicable law or orders from authorized authorities

We take reasonable measures to protect your data:

• Security data (PIN, biometrics) is stored locally in encrypted form
• Cloud data is protected by Firebase Security Rules
• Data transmission between the App and servers uses encrypted channels (HTTPS/TLS)
• Android system backup is disabled (allowBackup=false) to prevent unauthorized access to data through backups
• AI provider requests go through the FamArca server-side proxy with Firebase user token verification — provider API keys are never stored in the App

The App does not collect or request access to:

• Precise location (GPS)
• Contacts
• Calendar
• SMS/MMS and call logs
• Browser history
• List of installed apps
• Health and fitness data
• Files other than those the user selects for import/export

Microphone and camera access is requested only when using AI features (voice entry and receipt scanning) and only with the user's explicit consent. Audio recordings and photos are not stored and are deleted immediately after processing.

The App is not intended for children under 13 years of age. We do not knowingly collect personal data from children under 13. If you are a parent or guardian and believe your child has provided us with their data, please contact us at pikiti.dev@gmail.com, and we will delete that data.

You have the right to:

• Access — view all your data within the App
• Correction — edit any data you have created
• Export — export your financial data in JSON and Excel formats via Settings → Backup
• Deletion — delete your account and all associated data (see Section 11)
• Disable sync — turn off cloud sync in settings, after which data will be stored locally only
• Withdraw AI features consent — disable AI features in Settings → AI features. After withdrawal AI stops working, but existing transactions are retained. You can re-enable AI at any time

To exercise your rights, you may also contact us at pikiti.dev@gmail.com.

You can delete your account directly in the App:

Settings → Profile → Delete Account

Upon account deletion:

• All your data in Firebase (profile, transactions, categories, budgets, goals, debts, group memberships) will be permanently deleted
• Local data on the device remains until the App is uninstalled or its data is cleared
• Data already processed by Firebase Analytics and Crashlytics may be retained in aggregated and anonymized form in accordance with Google's policies

AI data deletion: AI usage counters and the AI request log on the FamArca server are deleted together with the account. Data transmitted to AI providers (retained ≤ 30 days) is auto-deleted by them after that period. If you wish to request early deletion of AI data, email pikiti.dev@gmail.com — we will fulfill the request within 30 days.

We may update this Policy from time to time. When significant changes are made, we will notify you through the App or update the "Last updated" date at the top of this document.

We recommend periodically reviewing this Policy to stay informed about how we protect your data.

If you have any questions or suggestions regarding this Privacy Policy, please contact us:

Email: pikiti.dev@gmail.com

Developer: Pikiti Development