Privacy Policy

Privacy Policy

Peggy ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal information when you use the Peggy mobile application and related services.

1. Types of Personal Information Collected

Account Information

When you create a Peggy account, we may collect your email address, display name, and authentication credentials. If you sign in with Apple or Google, we receive only the information you authorize those services to share.

Transaction Data

Peggy stores expense and income entries you create, including amounts, categories, dates, currencies, and any notes you attach. Voice inputs are processed to extract transaction details and are not stored as audio recordings.

Usage Data

We collect anonymized analytics about how you interact with the app, such as feature usage frequency and session duration. This data cannot be used to identify you personally.

2. How Your Data Is Stored

For iOS Users with iCloud

If you use Peggy without creating an account, your data is stored locally on your device and synced through your personal iCloud account. Peggy does not have access to your iCloud data in this mode.

For Peggy Account Users

If you create a Peggy account (required for shared wallets and cross-platform sync), your data is stored on our secure servers powered by Supabase with row-level security policies ensuring only you and your authorized collaborators can access your data.

3. Use of Personal Information

We use your information to:

• Provide, maintain, and improve the Peggy service
• Process and categorize your financial entries using AI
• Enable shared wallet features with collaborators you invite
• Send transactional notifications (e.g., budget alerts, shared wallet activity)
• Generate anonymized, aggregated insights to improve the product

4. Legal Basis for Processing

We process your personal data based on: (a) your consent when you create an account and use the service; (b) the necessity to perform our contract with you; and (c) our legitimate interest in improving and securing the service.

5. Data Sharing and Third Parties

We do not sell your personal data. We may share data with:

• AI providers — Transaction text is sent to language model APIs for parsing. No personally identifiable information is included beyond the text you enter.
• Infrastructure providers — We use Supabase for database hosting and Firebase Cloud Messaging for push notifications.
• Analytics — Anonymized usage data may be processed by analytics services.
• Legal requirements — We may disclose data if required by law or to protect our rights.

6. Data Retention

Your data is retained for as long as your account is active. If you delete your account, all associated personal data will be permanently removed within 30 days, except where retention is required by law.

7. Your Rights

You have the right to:

• Access — Request a copy of the personal data we hold about you
• Correction — Request correction of inaccurate data
• Deletion — Request deletion of your account and all associated data
• Portability — Export your data in a standard format (CSV)
• Objection — Object to processing based on legitimate interests

To exercise these rights, contact us at [email protected].

8. Children's Privacy

Peggy is not directed at children under 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the app or by email. Continued use of Peggy after changes constitutes acceptance of the updated policy.