PocketLog Privacy Charter

PocketLog is engineered with a "Privacy-First" philosophy. Unlike traditional financial apps that store your data on remote servers, PocketLog operates as a self-contained, offline-only environment. This document outlines how we protect your sovereignty over your financial information.

1. DATA SOVEREIGNTY & STORAGE

PocketLog is a local-only application.

• Zero Cloud Exposure: We do not operate any backend servers, cloud databases, or API sync services. Your data never "leaves" your physical device.
• Hardware-Bound Storage: All transactions, budgets, and category preferences are stored using secure local persistence (SharedPreferences/JSON) within the app's private sandbox.
• Isolation: Your data is isolated from other applications on your device by the Operating System.

2. INFORMATION WE PROCESS

A. User Profile: During onboarding, we capture your name and currency preference. This is used solely to personalize your dashboard and PDF reports locally.

B. Financial Records: This includes transaction amounts, dates, notes, and categories. These remain encrypted within the app’s local storage.

C. Custom Categories: Labels, icons, and colors you create are stored as part of your local application state.

3. SMART INSIGHTS ENGINE

Our "Smart Dashboard Insights" system processes your spending patterns entirely on your device's CPU.

• Local Analysis: We do not send your spending history to a server to calculate trends. All comparisons (e.g., "Spent 15% more than last week") happen in real-time within the app.
• No Profiling: Because the data stays local, we do not build consumer profiles or sell your spending habits to advertisers.

4. HARDWARE BIOMETRICS

When you enable "Secure Lock," PocketLog leverages your phone’s hardware-backed security (Secure Enclave on iOS, Trusted Execution Environment on Android).

• No Access to Biometrics: The app only receives a "Success" or "Failure" token from the OS. Your actual fingerprints or face-scans are never accessible to, or stored by, PocketLog.
• OS Integration: Authentication is handled entirely by the system UI, ensuring maximum security.

5. RECYCLE BIN & DATA DELETION

• Soft Deletion: Deleted transactions are moved to a local "Recycle Bin" for 30 days (or until manually emptied) to prevent accidental data loss.
• Permanent Wiping: You can wipe all app data instantly via "Settings > Reset App."
• Uninstalling: Deleting the PocketLog app from your device will permanently and irreversibly erase all transactions and settings. We cannot recover this data for you.

6. LOCAL PDF GENERATION

Financial statements are generated as "client-side" documents.

• Instant Rendering: The PDF engine builds your report in the phone’s memory.
• Multi-Currency Symbols: We use embedded Noto Sans fonts to render symbols like ₹ or € locally without needing an active internet connection.
• No Data Sharing: The app does not transmit your PDF data to any third party.

7. ADVERTISEMENTS & THIRD-PARTY SERVICES

To keep PocketLog free for everyone, we use Google AdMob to display advertisements.

• Ad Networks: AdMob may use device identifiers, cookies, and network data to serve relevant ads.
• Financial Privacy: We NEVER share your local financial data (transactions, budgets, categories) with Google or any advertisers.
• Consent: By using the app, you consent to AdMob's standard data collection practices for ad targeting.

8. COMPLIANCE & LEGAL

Because PocketLog does not collect or store your data on its own servers, we are technically unable to provide your information to any third party, including law enforcement or government agencies. Your data is your property, protected by the physical security of your device.

9. UPDATES TO THIS CHARTER

We may update this policy as new features are added. However, our commitment to "Local-Only Data" is a core architectural pillar that will not change.

10. CONTACT

If you have questions about our offline architecture: