Privacy Policy

1. Information We Collect

To enable account access and cross-device sync, Coinova collects the following:

• Account Information. When you create an account, you provide an email address and password (or sign in with Google or Apple). This is processed by Firebase Authentication, a service provided by Google. Apple Sign-In may forward a relayed email address.
• Financial Data. Transactions, categories, tags, budgets, savings goals, travel trips, and currency preferences that you enter into the app are stored in Firebase Cloud Firestore, scoped to your account, so that you can access them across your devices.
• Card Metadata. If you choose to add a payment card to the in-app wallet, only the cardholder name, card label, network (Visa / Mastercard / Amex / Other), expiry, and last 4 digits sync to Firebase Cloud Firestore. The full card number and CVV are encrypted on your device with AES-256-GCM and never leave the device they were entered on. The encryption key itself is stored in iOS Keychain or Android Keystore — see Section 5 below.

2. How Your Data is Stored

Coinova uses two layers of storage:

• On-device cache. Your data is kept in local app storage on your device for fast access and full offline use.
• Cloud sync (Firebase Cloud Firestore). The same data is mirrored to your private Firestore document, scoped to your authenticated account, so it can be restored or accessed on other devices. Firestore is hosted by Google Cloud. Updates use atomic per-element operations (Firestore arrayUnion / arrayRemove), which means changes you make on one device while another is offline are merged correctly when both reconnect — your data is never silently overwritten by a stale write.

Sensitive card data (full card number and CVV) is the exception — it is encrypted on-device only and never transmitted.

3. Data We Do NOT Collect

We do not collect, store, or process:

• Full credit/debit card numbers or CVVs (these stay on your device, encrypted)
• Bank account credentials
• Location data
• Contact lists
• Photos or media (other than what you explicitly attach)
• Advertising identifiers
• Behavioral analytics, crash analytics, or usage tracking

The app does not integrate with any analytics SDK or advertising network.

4. Third-Party Services

Coinova relies on the following third-party services to operate. By using the app, you agree to their respective privacy policies:

• Firebase Authentication (Google) — for sign-up, sign-in, and password reset. Firebase Privacy
• Firebase Cloud Firestore (Google) — for secure cloud storage and cross-device sync of your data. Firebase Privacy
• Firebase App Check with reCAPTCHA v3 (web), Google Play Integrity (Android), and Apple App Attest (iOS) — to verify requests are coming from a genuine app instance. App Check tokens are refreshed every ~15 minutes. Google Privacy
• Google Sign-In (optional) — if you choose to sign in with Google.
• Sign in with Apple (optional, iOS only) — if you choose to sign in with Apple.
• Open Exchange Rate API (open.exchangerate-api.com) — if you use the in-app Currency Converter, the app fetches live exchange rates over HTTPS. No personal information is sent — only the request itself for current rates.

We do not integrate with advertising networks, analytics SDKs, or third-party trackers. We do not sell or share your data with anyone outside the services listed above.

5. Data Security

Coinova takes the following measures to protect your data:

• Authentication is handled server-side by Firebase, with industry-standard password hashing and brute-force protection.
• Cloud transport uses TLS. Cloud data is stored in your private Firestore document, accessible only to your authenticated account. Firestore Security Rules also restrict the document to a fixed allowlist of fields and per-array size caps, blocking accidental or malicious writes outside the app's expected schema.
• Card secrets (full card number and CVV) are encrypted with AES-256-GCM. The 256-bit AES key is randomly generated on first use and stored in iOS Keychain or Android Keystore — the operating system only releases the key to this app's bundle id. Even with full read access to the device's app storage, the encrypted card data cannot be decrypted without the OS-protected key.
• PIN security. If you enable a PIN lock, the PIN is hashed with PBKDF2 (100,000 iterations + a per-user random salt) and the hash is stored in iOS Keychain / Android Keystore — not in regular app storage. After 4 wrong PIN attempts, the app locks for an exponentially increasing window (30s → 2min → 5min → 15min). The lockout timer survives app close/reopen, so a force-quit cannot reset it.
• Biometric lock. Face ID / Touch ID / fingerprint is supported as an alternative to or in addition to PIN. Verification is performed by the operating system; biometric data never reaches the app.
• Backups. If you export a backup file, you can optionally encrypt it with a passphrase you choose. The encryption uses PBKDF2 (200,000 iterations) and AES-256-GCM. Without the passphrase, an exported encrypted backup cannot be decrypted by anyone — including us.
• Network policy on Android. The app trusts only system-installed certificate authorities and rejects all cleartext (HTTP) traffic. User-installed root CAs cannot intercept the app's network traffic. Combined with App Check, this defends against on-device man-in-the-middle on managed or shared devices.
• Web defenses. The in-app browser content uses a strict Content-Security-Policy that blocks third-party scripts, iframes, plugins, and clickjacking, and forces HTTPS upgrades on any incidental HTTP URLs.
• Clipboard hygiene. When you copy a full card number or CVV from the in-app Wallet, the value is automatically wiped from the clipboard 30 seconds later, or immediately when you switch to another app — preventing other apps' clipboard widgets from reading your card data later.
• Logs. Production builds of the app strip all developer console output. We do not send logs or crash reports off-device.

You should also keep your device's operating system updated and use a device passcode or biometric lock.

6. Notifications

If you enable notifications in Profile → Notifications, the app schedules local notifications on your device for:

• Budget alerts when spending in any category passes your chosen threshold (default 80%)
• Bill reminders 3 days before each recurring transaction's next due date
• Optional weekly summary every Sunday at 6pm local
• Savings goal milestones when you cross 25%, 50%, 75%, or 100% of a goal's target

All notifications are scheduled and fired locally on your device. We do not send push notifications from a server, and no information about which notifications fire, or whether you tap them, leaves your device.

7. Data Deletion

You can delete your data in several ways:

• Delete individual items within the app (transactions, budgets, cards, savings goals, trips, etc.).
• Delete All Data & Reset from Profile — wipes the local app cache, deletes the Firestore document, removes the Keychain / Keystore entries (encryption key + PIN hash), cancels scheduled notifications, and signs you out.
• Delete My Account from Profile — does everything Delete All Data does, AND permanently deletes your Firebase Authentication account. This action cannot be undone.
• Uninstall the app to remove the local cache. Cloud data will remain until you delete your account.

To request manual deletion of your account and all associated data, contact us at the email address below.

8. Children's Privacy

Coinova is not intended for use by children under the age of 18. We do not knowingly collect information from children under 18.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be reflected on this page with an updated revision date.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us at hello@advergestudio.com.