Privacy Policy for Debits
Last Updated: November 9, 2025
Summary: Debits is privacy-first. Your financial data stays on your device (or in your private iCloud if you choose). We don't collect, track, or share anything. Your data is yours, always.
Introduction
Thank you for using Debits ("we", "our", or "the App"). We are committed to protecting your privacy and being transparent about how we handle your data. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.
Information We Collect
Data You Provide
Debits is designed to work entirely on your device. The information you enter into the App includes:
- Bills: Names, amounts, due dates, categories, payment status, and notes
- Bank Accounts: Account names, current balances, and overdraft limits
- Income Entries: Income amounts, dates, descriptions, and associated bank accounts
- Budget Settings: Budget period start day preferences
- Custom Categories: Category names, icons, and colours (Premium feature)
Automatically Collected Information
Device Information: We do not collect any device information, analytics, or usage data. The App does not contain any third-party tracking or analytics services.
Biometric Data: If you enable biometric authentication (Face ID/Touch ID), your biometric data remains securely stored on your device within the Secure Enclave and is never transmitted to us or any third party. We only receive a pass/fail authentication result from iOS.
How We Use Your Information
All data you enter into Debits is used solely to:
- Display your bills, income, and bank account information
- Calculate balances and upcoming payments
- Send local notifications for bill reminders and paydays
- Generate analytics and reports (Premium feature)
- Export your data to CSV files (Premium feature)
We do not:
- Collect or store your data on our servers
- Share your data with third parties
- Use your data for advertising or marketing purposes
- Track your usage or behaviour
Data Storage
Local Storage
By default, all your data is stored locally on your device using Apple's secure UserDefaults and local file storage. This data remains private and accessible only to you.
iCloud Sync (Optional)
You may optionally enable iCloud synchronisation to keep your data in sync across multiple devices signed in with the same Apple ID. When enabled:
- Your bills, income entries, bank accounts, categories, and settings are stored in your private iCloud account using Apple's CloudKit framework
- Data is encrypted in transit and at rest using Apple's security protocols
- We do not have access to your iCloud data - only you can access it through your Apple ID
- You can disable iCloud sync at any time from the Settings screen
- Disabling iCloud sync does not delete your data from iCloud; you must manage iCloud storage through your device settings
For more information about iCloud security, please see Apple's iCloud Security Overview.
In-App Purchases
Debits offers a Premium subscription processed through Apple's App Store. When you make a purchase:
- The transaction is handled entirely by Apple
- We receive only a transaction receipt from Apple to verify your subscription status
- We do not collect or store your payment information
- Apple's Privacy Policy governs how Apple handles your payment data
Notifications
Debits can send local notifications to remind you about:
- Upcoming bills
- Overdue bills
- Payday reminders
These notifications are:
- Generated and delivered entirely on your device
- Based solely on the data you enter into the App
- Not sent through any external servers
- Managed through iOS notification permissions, which you can control in Settings
Data Sharing
We do not share your data with anyone. Since all data remains on your device (or in your private iCloud account if you enable sync), there is no data sharing with third parties, advertisers, or analytics companies.
Data Security
We take your security seriously:
- All data is stored using Apple's secure storage mechanisms
- Biometric authentication uses iOS Secure Enclave technology
- iCloud sync uses Apple's end-to-end encryption
- The App does not transmit data to any external servers except Apple's iCloud (if you enable sync)
Your Rights and Choices
You have complete control over your data:
- Access: All your data is visible within the App
- Modify: You can edit or delete any bills, income entries, or bank accounts at any time
- Export: Premium users can export their data to CSV format
- Delete: You can delete individual items or clear all data by uninstalling the App
- iCloud Sync: You can enable or disable iCloud synchronisation at any time
- Notifications: You can control notification permissions in iOS Settings
Children's Privacy
Debits is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with data, please contact us so we can delete it.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by:
- Updating the "Last Updated" date at the top of this policy
- Providing notice within the App if the changes are significant
Third-Party Services
Debits uses the following Apple services:
- StoreKit: For processing in-app purchases (governed by Apple's Privacy Policy)
- CloudKit: For optional iCloud synchronisation (governed by Apple's Privacy Policy)
- UserNotifications: For local notification delivery on your device
We do not use any third-party SDKs, analytics services, advertising networks, or tracking tools.
Data Retention
- Local Data: Remains on your device until you delete it or uninstall the App
- iCloud Data: Remains in your iCloud account until you delete it manually through the App or iCloud settings
- Subscription Data: Apple retains transaction records according to their policies; we only store verification status on your device
Contact Us
If you have any questions about this Privacy Policy or how we handle your data, please contact us at:
Email: [Your Email Address]
Legal Basis for Processing (UK GDPR)
For users in the United Kingdom, our legal basis for processing your data is:
- Consent: When you choose to enable iCloud sync or biometric authentication
- Contract: To provide the App's core functionality and Premium features you've subscribed to
- Legitimate Interests: To improve the App and provide customer support
Your UK GDPR Rights
If you are in the UK, you have the right to:
- Access your personal data
- Rectify inaccurate data
- Erase your data
- Restrict processing
- Object to processing
- Data portability
Since all data is stored locally on your device or in your private iCloud account, you have direct control over these rights through the App itself.