Privacy Policy
Welcome to Koshbook. Your privacy matters to us. This Privacy Policy explains how we collect, use, store, and protect information when you use the Koshbook mobile and desktop application (the "App" or "Koshbook").
1. How Koshbook Works
Koshbook is built as a local-first, offline-capable personal finance tool. You can use it in two ways:
- Guest mode: No account is required. Your cashbooks, transactions, budgets, categories, and contacts are stored in a local database on your device.
- Signed-in mode: If you create an account or sign in (email/password or Google), your data can sync to our cloud infrastructure so you can access it across devices. Cloud sync is optional and requires an internet connection.
The mode you choose affects where your data is stored and what we process on your behalf.
2. Information We Collect
Depending on how you use the App, we may process the following:
- Financial records you enter: Cashbooks, transactions, budgets, categories, contacts, and related notes. In Guest mode this stays on your device. When signed in, it is stored locally and mirrored to our cloud database.
- Account information: If you sign in, we process your email address, display name, profile photo (if you upload one), and authentication credentials through our identity provider.
- Device information: When signed in, we may register your device (install identifier and optional label) to support multi-device sync and enforce account device limits shown in the App.
- Subscription and usage data: Plan status, billing dates, and AI credit balances may be stored locally on your device and, where applicable, processed through your app store when purchases are enabled.
- App preferences: Settings such as theme, active cashbook, and reminder schedules are stored on your device.
- Crash and diagnostic data: We may use Firebase Crashlytics to collect crash reports, including device type, operating system version, and technical state at the time of a crash, to improve stability.
3. How We Use Information
We use the information described above to:
- Provide core App features (cashbook, analytics, budgets, exports, and sync)
- Authenticate your account and keep you signed in across sessions
- Sync your data across devices when you are signed in
- Operate paid plans, AI credits, and feature limits as shown in the App
- Send optional local reminders you enable (such as daily log reminders)
- Diagnose crashes and improve performance and reliability
- Respond to support requests and enforce our Terms of Service
We do not sell your personal financial data.
4. AI Features
Koshbook offers AI-powered features such as conversational transaction search. When you use these features, the text of your question is sent to our secure backend to generate a search plan. Your full transaction history is not uploaded for this purpose; filtering and results are computed on your device from your local data. AI processing may involve Google Cloud / Gemini services operated on our behalf. AI outputs are for convenience only and may be inaccurate.
5. Notifications
If you enable reminders, the App schedules local notifications on your device. These reminders are not used to send marketing messages and do not require us to receive the content of your transactions.
6. Third-Party Services
The App relies on trusted third-party providers. Each processes data under its own privacy policy:
- Supabase — authentication, database sync, file storage, and backend functions
- Google — Google Sign-In, Play Services, and AI infrastructure (Vertex AI / Gemini) where used
- Firebase Crashlytics — crash reporting and diagnostics
- Google Play — in-app purchases and subscriptions when billing is enabled
7. How We Help Protect Your Information
Koshbook is designed to help protect your information through a local-first architecture and secure online connections.
- On your device: Your cashbook data is stored in a local database so you can use core features offline. Protecting this data depends on your device passcode, biometrics, and operating-system security.
- When you use online features: Data sent for sync, sign-in, AI search, or crash reporting is transmitted over secure, encrypted connections (HTTPS/TLS).
- Cloud storage: Signed-in data is hosted with Supabase, which applies industry-standard technical and organizational safeguards for hosted data, including protections for data in transit and at rest, as described in their security documentation.
No method of storage or transmission is completely risk-free. The safety of your information also depends on how you protect your device and account credentials. We encourage you to use a device passcode or biometrics, keep your software updated, and avoid sharing your login details.
8. Data Retention and Deletion
Guest mode: Data remains on your device until you uninstall the App, clear app data, or delete records within the App.
Signed-in mode: Cloud data is retained while your account is active. You may delete your account from Profile settings. You can choose to remove cloud data only, or cloud data together with all local data on the device. Deletion is intended to be permanent; we cannot guarantee recovery afterward.
Crash reports are retained according to Firebase's policies. Support correspondence is kept only as long as needed to resolve your request.
9. Your Choices
- Use Guest mode if you prefer not to create an account
- Sign out at any time to stop cloud sync on that device
- Disable or adjust local reminders in App settings
- Delete your account and associated cloud data from Profile
- Contact us to request information about data we process on your behalf
10. Children's Privacy
Koshbook is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us information, please contact us and we will take appropriate steps to delete it.
11. International Data Transfers
Your information may be processed in countries other than your own, including where our service providers operate their infrastructure. We rely on our providers' safeguards and applicable legal requirements when data is transferred across borders.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will post the updated version on this page and update the effective date above. Continued use of the App after changes become effective means you accept the revised policy, except where applicable law requires otherwise.
13. Contact Us
If you have questions or concerns about this Privacy Policy or your data, contact us at:
Email: support@progly.in