Privacy Policy - Mavren

Last Updated: February 7, 2026
Effective Date: February 7, 2026
Governing Law: State of California, United States

Introduction

Your privacy is our highest priority. Mavren (the "App") is built on a "100% On-Device" philosophy. This means:

✅ All your financial data stays on YOUR device
✅ NO cloud servers store your transactions
✅ NO internet connection required for core features
✅ NO third-party access to your actual financial data

By using the App, you agree to this Privacy Policy.

1. What Data We Collect

A. Data Stored ONLY on Your Device (We Have ZERO Access)

We do NOT create user accounts or collect your financial data on our servers. The following is stored exclusively on your iPhone/iPad:

Data Type	Description	Storage Location	Our Access
Financial Transactions	Income, expenses, amounts, dates	Your device ONLY	ZERO
Receipt Images	Photos you take	Your device ONLY	ZERO
Budget Data	Monthly/weekly budgets per category	Your device ONLY	ZERO
Savings Goals	Your target savings percentage	Your device ONLY	ZERO
Subscription Data	Tracked recurring payments	Your device ONLY	ZERO
Group Expenses	Shared bills & split calculations	Your device + CloudKit*	ZERO
11 Income Sources	Salary, freelance, side hustles, etc.	Your device ONLY	ZERO
Custom Categories	Your expense categories	Your device ONLY	ZERO
AI Persona Analysis	"Neuro-Engine" spending patterns	Your device ONLY	ZERO

*CloudKit: Only for optional group sharing. Data goes directly between your device and Apple's CloudKit—we never see it.

B. Data We Collect (Anonymous & Sanitized)

To improve app stability and fix bugs, we collect:

Service	Data Collected	Purpose	Privacy Protection
Firebase Crashlytics	Device model, iOS version, crash logs	Bug fixes	NO financial data, NO personal info
Firebase Analytics	Screen views, button taps (e.g., "Dashboard viewed")	UX improvements	Completely anonymous

Data Sanitization Process:

Actual amounts → Magnitude buckets (small/medium/large)
Store names → Generic types (coffee_shop/restaurant)
Exact times → Time periods (morning/afternoon/evening)

NO actual financial data (amounts, merchant names, account numbers) ever leaves your device.

C. Data We DO NOT Collect

Data Type	Status
Bank account credentials	❌ NOT collected
Credit card numbers	❌ NOT collected
Social Security Numbers	❌ NOT collected
Exact transaction amounts	❌ NOT collected
Merchant names (real)	❌ NOT collected
SMS messages	❌ NO access
Contacts	❌ NO access
Location data	❌ NOT collected
Biometric data (Face ID/Touch ID)	❌ NOT stored by us (handled by Apple)

2. How Your Data is Stored

On-Device Storage

Technology: SwiftData (Apple's local database)
Encryption: Protected by iOS file system encryption
iCloud Backup: Database is EXCLUDED from iCloud backups (isExcludedFromBackup = true)
Recovery: If you lose your device, we CANNOT recover your data

Group Sharing (Optional Feature)

Uses Apple CloudKit for sharing expenses with friends
Data goes directly from your device → CloudKit → their device
We have NO access to shared data
You control who can see shared expenses via link

3. How We Use Data

Purpose	Details
Provide Core Features	Income/expense tracking, budgets, receipt scanning, subscription monitoring
On-Device AI Processing	Receipt OCR, category suggestions, persona analysis—ALL done locally
Improve the App	Anonymous analytics to understand which features are used
Fix Bugs	Crash reports (device model & OS version ONLY)

We do NOT:

❌ Sell your data
❌ Share data with advertisers
❌ Use data for targeted ads
❌ Track your location
❌ Access your actual financial records

4. Third-Party Services

Service	Usage	Their Privacy Policy	Our Liability
Google Firebase	Crash reporting & anonymous analytics	Link	ZERO (see Terms)
Apple CloudKit	Optional group sharing ONLY	Link	ZERO (see Terms)
Currency Exchange APIs	Real-time exchange rates (if online)	Varies by provider	ZERO (rates are approximate)

We have NO control over these third-party privacy policies.

5. Data Security

What We Do:

✅ Use Apple's Local Authentication (Face ID/Touch ID) for app lock
✅ Store data in encrypted iOS database
✅ Exclude database from iCloud backups
✅ Process AI/ML models on-device (no server uploads)
✅ Sanitize any analytics data before transmission

What You Should Do:

🔐 Use a strong device passcode
🔐 Enable Face ID/Touch ID in Settings
🔐 Keep your iOS updated
🔐 Don't jailbreak your device
🔐 Back up your device regularly (use encrypted iTunes backup)

⚠️ Security Warning:
NO method of electronic storage is 100% secure. While we implement industry best practices, you are responsible for your device's security. If your device is lost, stolen, or hacked, we CANNOT recover or protect your data.

6. Your Data Rights

Since your data is NOT on our servers:

Right	How to Exercise
Access Your Data	View directly in the App
Edit Your Data	Edit directly in the App
Export Your Data	Settings → Data Control → Export CSV/PDF
Delete Your Data	Settings → Delete All Data (or delete the App)
Opt-Out of Analytics	Settings → Privacy → Disable "Share Crash Reports"

Data Portability:

Export transactions as CSV (import into Excel/Numbers)
Export PDF reports for taxes
No proprietary lock-in

Data Deletion:

Deleting the App permanently deletes all data from your device
We CANNOT recover deleted data (we never had it!)

7. Children's Privacy

This App is NOT intended for children under 13 years old (or 16 in Europe). We do not knowingly collect personal information from children.

If we learn we have collected data from a child under the minimum age, we will delete it immediately.

8. International Users & GDPR Compliance

For EU Users (GDPR):

Data Controller: You (the user)—data stays on YOUR device
Our Role: Data processor for anonymous analytics ONLY
Legal Basis: Consent (you agree to this policy)
Data Transfer: NO cross-border transfers of financial data (it stays on your device!)

Your GDPR Rights:

✅ Right to access: View in App
✅ Right to rectification: Edit in App
✅ Right to erasure: Delete App
✅ Right to data portability: Export CSV/PDF
✅ Right to object: Disable analytics in Settings
✅ Right to lodge a complaint: Contact your local data protection authority

9. California Privacy Rights (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (Cal. Civ. Code § 1798.100 et seq.):

Your CCPA Rights:

Right to Know: Request disclosure of data we collect about you
Right to Delete: Request deletion of your personal information
Right to Correct: Request correction of inaccurate information
Right to Opt-Out: We do not sell or share your personal information
Right to Non-Discrimination: We will not discriminate against you for exercising your rights

CCPA Disclosure Table:

Category	Collected?	Sold?	Shared?	Business Purpose
Identifiers (anonymous device ID)	Yes	No	Yes (Firebase)	App improvement & crash fixing
Internet Activity (analytics)	Yes	No	Yes (Firebase)	App improvement
Financial Data (transactions, budgets)	Yes (device only)	No	No	Core service — WE HAVE NO ACCESS
Geolocation	No	No	No	N/A
Sensitive Personal Info	No	No	No	N/A

Exercising Your Rights:

Delete the App to remove all local data (immediate self-service)
Disable analytics in Settings > Privacy
Email us at support@synthesislogic.com for any privacy requests

We will respond to verifiable consumer requests within 45 days as required by law.

9.5. Do Not Sell or Share My Personal Information

We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising. Since your financial data is stored exclusively on your device, we do not even have access to it.

Firebase Analytics and Crashlytics operate as service providers (not a "sale" or "share" under CCPA), processing only anonymous technical data.

9.8. Disclaimer & Limitation of Liability

TO THE FULLEST EXTENT PERMITTED BY APPLICABLE LAW, INCLUDING CALIFORNIA LAW:

THIS PRIVACY POLICY AND ALL RELATED DATA PROCESSING SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE." WE MAKE NO REPRESENTATIONS OR WARRANTIES REGARDING THE COMPLETENESS, ACCURACY, OR SECURITY OF OUR DATA PROCESSING PRACTICES.

THE APP IS NOT A FINANCIAL ADVISOR, TAX PREPARER, OR LEGAL COUNSEL. ALL DATA, CALCULATIONS, AND AI-GENERATED INSIGHTS ARE FOR INFORMATIONAL PURPOSES ONLY.

IN NO EVENT SHALL WE BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES ARISING FROM DATA LOSS, INACCURATE CALCULATIONS, HEALTH OR FINANCIAL DECISIONS BASED ON APP DATA, THIRD-PARTY SERVICE ACTIONS, OR UNAUTHORIZED ACCESS TO YOUR DEVICE.

OUR TOTAL AGGREGATE LIABILITY SHALL NOT EXCEED THE GREATER OF: (A) $100.00 USD; OR (B) THE AMOUNTS PAID BY YOU IN THE 12 MONTHS PRECEDING THE EVENT.

THE FOREGOING LIMITATIONS SHALL NOT APPLY TO LIABILITY ARISING FROM OUR GROSS NEGLIGENCE, WILLFUL MISCONDUCT, OR FRAUD, TO THE EXTENT SUCH LIMITATION IS PROHIBITED BY CAL. CIV. CODE § 1668.

NOTHING HEREIN SHALL BE CONSTRUED TO WAIVE YOUR RIGHTS UNDER THE CALIFORNIA CONSUMER LEGAL REMEDIES ACT (CAL. CIV. CODE § 1750 ET SEQ.).

10. Changes to This Policy

We may update this Privacy Policy. Changes will be reflected by updating the "Last Updated" date at the top.

Major changes will be communicated via:

In-app notification
Email (if you've contacted us)

Continued use of the App after changes = acceptance of new policy.

11. Contact Us

For questions, concerns, or requests regarding this Privacy Policy:

📧 Email: support@synthesislogic.com
📧 Support: support@synthesislogic.com
🌐 Website: https://synthesislogic.com

Response Time: We aim to respond within 48 hours.

12. Transparency Summary

What Makes Mavren Different:

Traditional Finance Apps	Mavren
Store data on servers	✅ Everything on YOUR device
Require bank login	✅ NO bank login needed
Sell data to advertisers	✅ We don't even have your data to sell
Track your location	✅ NO location tracking
Require internet	✅ Works 100% offline
Cloud backups (risky)	✅ Excluded from cloud backups

Our Promise:

Your financial data is YOURS. It stays on your device. We can't see it, sell it, or lose it. Period.

End of Privacy Policy

Last Updated: February 7, 2026

This Privacy Policy is governed by the laws of the State of California, United States of America.