Privacy policy
Short version: we store what you enter so the app works. We don't sell your data. We use a small, well-known set of third parties to run the service.
What we collect
Only what's needed for the app to function or to support you.
When you create an account
- Email address — to identify your account and send critical service notices (not marketing, unless you opt in).
- Apple or Google sign-in identifier — returned by Apple/Google when you use their sign-in. This is a hashed token, not your real account password.
- Display name (optional) — shown only to you, in the app.
When you use the app
- Your financial entries — the expenses, incomes, goals, and categories you enter. Stored so you can access them across devices.
- Your settings — hourly rate, currency, language, notification preferences.
- Usage telemetry — which screens you open, which features you use. Aggregated, not tied to your identity beyond a random device ID.
- Crash reports — when the app crashes, we receive a stack trace and device model so we can fix it.
When you visit hourspend.one
- We use Plausible Analytics, a privacy-first tool that does not set cookies, does not track you across sites, and does not collect personal data. Only aggregate page views and referrers.
We do not collect: your bank account, credit card, or any automatic transaction feed. Every expense in HourSpend is entered by you, by hand.
How we use it
- To operate the app — sync your data between your devices, compute your hour conversions, and provide backups.
- To improve the product — decide what to build next, find bugs, measure performance.
- To support you — respond when you email us about a problem.
- To enforce our terms — prevent abuse, fraud, or misuse of the service.
Third parties we work with
These companies process data on our behalf under their own privacy policies. We do not share your data with anyone outside this list.
| Provider | Purpose | Data |
|---|---|---|
| Google Firebase | Authentication, database, storage, analytics, crash reporting | Account, entries, device ID, crash traces |
| RevenueCat | Subscription management for premium | Anonymized user ID, subscription status, purchase receipts |
| Apple | Sign in with Apple, In-App Purchases | Apple-issued user token, transaction receipts |
| Sign in with Google (optional) | Google-issued user token, email | |
| Plausible | Website analytics (hourspend.one only) | Aggregate page views, country, device type — no cookies, no personal data |
Your rights
You control your data. Always.
- Access — everything you've entered is visible in the app. Export as CSV or PDF from Settings → Export.
- Delete — erase your account and all associated data from Settings → Account → Delete account. The deletion is permanent; we keep nothing beyond 30 days (backup retention window).
- Correct — edit any entry in the app.
- Object — write to us if you disagree with how we handle something. We'll respond within 14 days.
If you're in the EU, UK, or California, you have additional rights under GDPR, UK GDPR, and CCPA respectively: portability, restriction of processing, non-discrimination. Same contact email applies.
Data retention
While your account is active, we keep your data so the app keeps working. When you delete your account, we delete everything within 30 days, except what we're legally required to retain (e.g., tax records of your subscription purchases — up to 7 years).
Security
Your data is encrypted in transit (TLS 1.2+) and at rest (Firebase's at-rest encryption). We use industry-standard practices to limit access to production systems. No system is perfectly secure; if we ever experience a breach that affects you, we'll notify you within 72 hours of discovery.
Children
HourSpend is not directed at children under 13. We do not knowingly collect data from anyone under 13. If you believe a child has given us data, write to us and we'll delete it.
International transfers
Firebase and most of our providers are based in the United States. By using HourSpend, you consent to your data being processed there. We rely on Standard Contractual Clauses for EU → US transfers where required.
Changes to this policy
When we change something material, we'll update the effective date above and, for meaningful changes, show a notice in the app the next time you open it. Continued use of HourSpend after a change means you accept the updated terms.
Contact
Privacy questions, requests, concerns:
We aim to respond within 14 days.