Privacy Policy

Last Updated: June 7, 2026

Introduction

AuraSpend ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application. Please read this policy carefully. By using AuraSpend, you consent to the practices described in this policy.

If you do not agree with the terms of this Privacy Policy, please do not use the application.

1. Information We Collect

We believe in minimal data collection. AuraSpend is designed to work without requiring you to create an account or provide personal information.

1.1 Information You Provide

When you use AuraSpend, you may provide the following information that is stored locally on your device:

  • Financial Transactions: Expense and income entries, amounts, categories, descriptions, and dates that you manually enter or that are automatically extracted from bank SMS messages you choose to forward to the app.
  • Budget Data: Budget limits, targets, and progress you set within the app.
  • Recurring Subscriptions: Subscription names, amounts, renewal dates, and related metadata you track.
  • Categories: Custom spending categories you create and configure.

1.2 Information Collected Automatically

The free version of AuraSpend does not include any analytics SDK, crash reporting framework, or telemetry. No usage data, device identifiers, or diagnostic information is transmitted to us or any third party.

If you build the application from source using the free flavor, no automatic data collection occurs at all.

The Play Store flavor includes Google Play Billing for processing in-app purchases intended to support development. Google Play Billing may collect transaction identifiers and purchase history in accordance with Google's Privacy Policy.

1.3 SMS Data

If you choose to use the bank SMS auto-classification feature, AuraSpend will request permission to read SMS messages from your device. This data is processed entirely on-device. SMS content is used solely to extract transaction details and is never transmitted off your device or stored outside the local database.

2. How We Use Your Information

All information collected is used exclusively for the core functionality of the application:

  • To display your financial transactions, budgets, and analytics within the app.
  • To process and categorize SMS-based banking notifications into transactions.
  • To create backups to your Google Drive when you explicitly enable this feature.
  • To process in-app purchases through Google Play Billing (Play Store flavor only).

We do not use your data for advertising, profiling, training machine learning models, or any purpose other than operating the application you have chosen to use.

3. Google Drive Backup

If you enable Google Drive backup, AuraSpend uses the Google Drive API to store a copy of your application data in an application-specific folder. This folder is not accessible by other applications or users.

  • Authentication: AuraSpend uses OAuth 2.0 to authenticate with your Google account. We never receive or store your Google account password.
  • Scope: The application requests access to the DriveScopes.DRIVE_FILE scope, which permits reading and writing files that the application creates in your Google Drive. You can view and manage these files from your Drive interface at any time.
  • Control: You may disable Google Drive backup at any time through the application settings. You can also manually delete backup data from your Google Drive via the app or the Google Drive web interface.

4. Third-Party Services

AuraSpend integrates with the following third-party services:

  • Google Drive API: Used for cloud backups when you opt-in. Subject to Google's Privacy Policy.
  • Google Play Billing: Used exclusively in the Play Store flavor for processing in-app purchases to support development. Subject to Google's Privacy Policy.

The application does not integrate advertising SDKs, analytics frameworks, crash reporting tools, or any other third-party services that collect personal data.

5. Data Retention and Deletion

Your data is retained on your device for as long as you continue using the application. You have full control:

  • Local Data: You can delete your entire local database at any time through the application settings. Individual transactions, budgets, and subscriptions can be deleted within their respective screens.
  • Google Drive Backups: Backups can be deleted from the application settings or directly from your Google Drive account.
  • Uninstall: Uninstalling AuraSpend removes all locally stored data. Google Drive backups are not automatically removed upon uninstallation and must be deleted separately.

6. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • All data is stored locally on your device using Room, an Android local database framework.
  • Google Drive backups are stored in an application-specific folder that is not accessible by other apps.
  • All network communication with Google APIs occurs over TLS 1.3 encrypted connections.

However, no method of electronic storage or transmission is 100% secure. While we strive to protect your data, we cannot guarantee its absolute security.

7. Your Rights (GDPR & CCPA)

7.1 General Data Protection Regulation (GDPR)

If you are a resident of the European Economic Area (EEA), you have the following rights under the GDPR:

  • Right to Access: You can request a copy of the data stored by the application. All data is directly accessible within the app's interface.
  • Right to Rectification: You can edit or correct any transaction, budget, or category data directly in the application.
  • Right to Erasure: You can delete all local data through the app settings or by uninstalling the application.
  • Right to Data Portability: You can export all your transaction data in CSV format from within the application.
  • Right to Withdraw Consent: You can revoke Google Drive backup permission at any time through the app settings or your Google Account.

To exercise any of these rights, please contact us using the information provided in Section 10. Since we do not store your data on our servers, most rights can be exercised directly within the application.

7.2 California Consumer Privacy Act (CCPA)

If you are a California resident, you have the following rights under the CCPA:

  • Right to Know: You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: You have the right to request deletion of personal information we have collected about you.
  • Right to Opt-Out: We do not sell personal information. However, you have the right to opt-out of any future sale of personal information.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

8. Children's Privacy

AuraSpend is not directed to individuals under the age of 13 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us, and we will take steps to delete that information.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational considerations. We will notify you of any material changes by updating the "Last Updated" date at the top of this policy and, where appropriate, through in-app notification.

We encourage you to review this Privacy Policy periodically for any changes. Continued use of AuraSpend after changes take effect constitutes your acceptance of the updated policy.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: