FinMigo Privacy Policy

Privacy Policy

Last Updated: October 25, 2025
Version: 1.1

This Privacy Policy explains how FinMigo ("we", "our", or "us") collects, uses, discloses, and safeguards your information when you use our mobile application and related services. 

1. Information We Collect

• Personal Information: When you create an account, we collect:

  • Email address (for Firebase authentication)

  • Basic profile information

  • Authentication tokens for Google Sign-In

• Financial Data: We process but do not store on our servers:

  • Transaction records and amounts

  • Account balances and financial goals

  • Budget information and categories

  • Investment and asset details

• Technical Information: Through Firebase Crashlytics, we collect:

  • Crash reports and error logs

  • Device information (model, OS version)

  • App performance metrics

• Biometric Data: When you enable fingerprint authentication:

  • Biometric data is stored locally on your device only

  • We never transmit or access your biometric data

  • Biometric authentication uses your device's secure enclave

2. How We Use Your Information

• Service Provision: To provide and maintain the financial management features of the App.

• Authentication: To verify your identity and secure your account.

• Backup Services: To enable Google Drive backup functionality (optional).

• App Improvement: To analyze crashes and improve app stability through Crashlytics.

• Communication: To send important service notifications and updates. 

3. Data Storage and Security

• Local Storage: Your financial data is stored locally on your device using encrypted SQLite database.

• Cloud Backup: Optional Google Drive backups are encrypted and stored in your personal Google account.

• Data Encryption: We use industry-standard encryption to protect your data in transit and at rest.

• Access Controls: Strict access controls limit which employees can access user data (only for support purposes).

• App Permissions: With your consent, the App may request permissions such as storage access (for backups) and biometric access (for fingerprint authentication). You may revoke these permissions anytime through your device settings. 

4. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share information only in the following circumstances:

• Service Providers: With trusted third parties who assist us in operating our App (Firebase for authentication and crash reporting).

• Legal Requirements: When required by law or to protect our rights, safety, or property.

• Business Transfers: In connection with a merger, acquisition, or sale of all or a portion of our assets. 

5. Children's Privacy

Our Service is suitable for users of all ages, including children under parental supervision. However:

• We do not knowingly collect personal information from children under 16 without parental consent

• Parents or guardians should supervise children's use of the App

• Parents may contact us to review or delete their child's information 

6. Your Rights and Choices

• Access and Correction: You can access and update your personal information through the App settings.

• Data Export: You can export your financial data at any time using the backup features.

• Account Deletion: You may delete your account and associated data through the App or by contacting us.

• Opt-Out: You can disable crash reporting in the App settings. 

7. International Data Transfers

Your data may be processed on servers located outside your country of residence. We ensure appropriate safeguards are in place to protect your data. 

8. Data Retention

We retain your information only for as long as necessary to provide the Service:

• Account data: Until you delete your account

• Crash reports: 90 days

• Backup data: Controlled by you through Google Drive 

9. Security Measures

We implement appropriate technical and organizational measures to protect your data, including:

• End-to-end encryption for sensitive data

• Regular security assessments and updates

• Secure authentication protocols

• Access controls and audit logs 

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes through the App or via email. 

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

finmigodeveloper@gmail.com 

12. Your Consent

By using our App, you consent to our collection and use of information in accordance with this Privacy Policy. You may withdraw consent for optional features (e.g., crash reporting, backups) at any time through App settings. 

13. Compliance

We comply with applicable data protection laws including the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (India), GDPR (EU), and COPPA (US, for children's privacy). 

14. Data Breach Notification

In the event of a data breach that compromises your personal information, we will notify you and relevant authorities as required by applicable laws within 72 hours of becoming aware of the breach.