Telemetry Transparency

We believe in full transparency. Here's exactly what we collect, how, and why.

Our Principles

  • Identifier-free — Each ping uses a fresh one-time value, never stored and never linked across days or to your identity. There's no telemetry ID to follow you.
  • Bucketed, not exact — We see "1-1000 transactions", not "847 transactions".
  • Separated streams — Telemetry carries no identifier, so there's nothing to cross-reference with license verification.
  • One toggle off — Disable in Settings > License, and zero telemetry data is sent.

What We Collect

One app_heartbeat event per day with 26 privacy-respecting attributes:

Device & Platform (8)

Environment, platform (desktop/pwa), OS, OS version (major only), app version, tier, locale (2-char), theme.

Usage Volume (6)

Accounts, transactions, merchants, categories, subcategories, rules — bucketed into ranges on-device, never exact counts.

Feature Adoption (10)

Boolean flags and string enums indicating engagement depth: bank sync (true/false), cloud sync provider (none/Google Drive), budget depth (none/category/subcategory/merchant), splits, receipts, tags, checks, exclusions (true/false each), recurring detection (none/suggested/manual), import method (none/CSV only/sync only/both).

Retention (1)

Install age tier — days since first launch, bucketed into ranges (0–7d, 8–30d, 1–3mo, 3–6mo, 6–12mo, 1–2yr, 2–3yr, 3yr+). Exact day count never leaves the device.

Active Usage (1)

Active days this month — how many days the install pinged this calendar month, bucketed into a range (1–2, 3–5, 6–10, 11–20, 21–31). Lets us estimate monthly active installations in aggregate; an estimate, not an exact user count.

What We Do NOT Collect

  • Transactions, amounts, dates, or descriptions
  • Category or merchant names
  • Account names, numbers, or balances
  • Bank credentials or SimpleFIN tokens
  • IP addresses or geographic location
  • Browser fingerprints, cookies, or hardware identifiers
  • Session recordings, click tracking, or cookies

How to Opt Out

Open the app > Settings > License, scroll to the Privacy section, and toggle "Usage Telemetry" off. That's it. The small local counters are immediately removed and zero data will be sent.