Last updated: 29 December 2025
This Privacy Policy describes how Pohosath ("we", "our", or "the App") collects, uses, stores, and protects your information. This policy is provided to comply with Google Play Store requirements.
We may collect and process the following personal information when you use the App:
Email address (for authentication)
Name and profile information (if provided)
User ID generated by Firebase Authentication
Authentication is supported via:
Email & password
Google Sign-In
The App is a personal finance manager and stores the following user-generated data:
Transactions (income and expenses)
Categories (income & expense)
Budgets and recurring payments
Financial goals and goal contributions
App preferences (theme, language, text scale)
This data is primarily stored locally on your device using SQLite.
We may collect limited device-related data to provide security and functionality:
Biometric authentication status (fingerprint/face unlock – not biometric data itself)
App lock preference
First-launch status
Notification settings
Important: The App does not collect or store biometric data. All biometric verification is handled securely by the operating system.
App crash logs and basic diagnostics (via Firebase services)
Connectivity status (used only to determine sync availability)
We use your information to:
Authenticate users and manage accounts
Store and manage personal finance data
Enable offline-first usage with optional cloud sync
Synchronize data between your device and cloud (if enabled)
Provide biometric/device security
Deliver notifications and reminders
Improve app performance and reliability
The App uses Firebase services:
Firebase Authentication (login & account management)
Firebase Firestore (optional cloud backup & sync)
Firebase Crashlytics / Analytics (diagnostics only)
Data synced to Firestore is encrypted in transit and protected by Firebase security rules.
Cloud synchronization is optional and can be enabled or disabled by the user.
When disabled, all data remains only on the device
When enabled, financial data is synced between the device and the user's Firebase account
Local data is stored securely using SQLite
Sensitive preferences are stored using secure storage
Network communication uses encrypted connections (HTTPS)
Reasonable technical and organizational measures are applied to protect user data
Your data is retained as long as your account exists or until you delete it
Local data can be cleared by uninstalling the app
Cloud data can be removed by deleting your account or disabling sync
You have the right to:
Access your data
Modify or delete your financial records
Disable cloud sync
Sign out and stop using the App
Request account deletion (via in-app sign-out or Firebase account removal)
The App is not intended for children under the age of 13. We do not knowingly collect personal data from children.
The App uses trusted third-party libraries including (but not limited to):
Firebase (Auth, Firestore)
Google Sign-In
SQLite (sqflite)
Local authentication (biometrics)
Notification services
Each service follows its own privacy and security standards.
We may update this Privacy Policy from time to time. Changes will be reflected in the App or app store listing. Continued use of the App indicates acceptance of the updated policy.
If you have questions or requests about this Policy or your data:
Email: gdcreationslabs@gmail.com
Phone: +94761850940
Mailing Address:
No: 78, Unity 1 Shopping Complex, Negombo Road, Nittambuwa, Sri Lanka.
By using the App, you agree to this Privacy Policy.