Your privacy matters to us. This policy explains exactly what data Inkapify collects, how it is used, and how it is protected. We do not sell your data. We do not share it with advertisers.
1 Information We Collect
Information You Provide
- No account or registration required. The app works straight out of the box.
- Financial data: income, expenses, transactions, budgets, goals, and debt records you enter
- Categories, tags, and payees you create to organise your transactions
- Recurring rules, reminders, and bill schedules you configure
- Profile preferences, home currency, timezone, and app settings
- Receipt photos you choose to attach to transactions (stored locally on your device — no upload required)
Information Collected Automatically
- Device information: device type, operating system version, unique device identifiers
- Crash reports and error logs to help us improve the app
- Push notification tokens (only to deliver reminders you request)
- Exchange rate data fetched from public APIs for multi-currency conversion
Inka AI Conversation Data
- Questions you ask Inka AI and Inka's responses (stored locally on your device for 24 hours, then automatically cleared)
- Aggregated financial summaries sent to Google's Gemini API to generate responses (see Section 4A)
- A monthly count of Inka AI questions used (for usage limit enforcement only)
What We Do NOT Collect
- We do not connect to your bank accounts or financial institutions
- We do not collect payment card numbers or banking credentials
- We do not access your contacts, microphone, or GPS location
- For Inka AI: we send only aggregated, anonymised summaries — never raw transactions, account numbers, or personal identifiers (see Section 4A)
- For PDF Import: we send extracted merchant names and amounts to classify transactions — never the PDF file itself, banking credentials, or account numbers (see Section 4B)
- We do not collect camera data except receipt photos you explicitly choose to attach
2 How We Use Your Information
We use the information we collect only to:
- Provide, operate, and maintain the Inkapify app and all its features
- Send push notifications for reminders and alerts you have configured
- Enforce Inka AI monthly usage limits per your subscription tier
- Process and verify your subscription status via RevenueCat
- Respond to your support requests and resolve technical issues
- Improve app performance, stability, and user experience
- Comply with legal obligations
- We do not sell your personal information to third parties
- We do not use your financial data for advertising purposes
- We do not share your data with any advertising networks
3 Data Storage & Security
All your data is stored only on your device. Nothing is sent to our servers.
On-Device Storage
All financial data lives only on your device — never on our servers
Works fully offline — no internet required for any core feature
Back up your data at any time by creating an encrypted backup file from the app
Security Measures
Our security measures include:
- App data stored in your device's secure local storage — not accessible to other apps
- Optional App Lock using device PIN, fingerprint, or Face ID
- Encrypted backup files — only you hold the password
- Regular security monitoring, audits, and updates
While we implement strong security measures, no method of electronic storage is 100% secure. We recommend creating regular backup files from within the app to protect against accidental data loss.
4 Data Sharing & Third Parties
We do not sell, trade, or rent your personal information. We share limited data only with the following trusted service providers necessary to run the app:
Cloudflare
Our AI features (Inka AI, PDF import, and receipt scan) are routed through Cloudflare's infrastructure. Only the minimum data needed to process your request is transmitted — no raw financial history, account details, or personal identifiers.
Google (Gemini AI)
AI processing for Inka AI, PDF bank statement import, and receipt scan features. For Inka AI and PDF import, only aggregated summaries and extracted transaction text are shared. For receipt scan, the receipt image itself is sent directly to Google's Gemini AI for data extraction. Never raw transaction records or personal identifiers. See Sections 4A, 4B, and 4C for full details.
RevenueCat
Subscription management and in-app purchase processing for Inkapify Pro. Only your anonymous user ID and subscription status are shared. RevenueCat never receives your financial data.
App Delivery Infrastructure
App build infrastructure and over-the-air update delivery. No personal financial data is shared with our app delivery provider.
App Store & Google Play
App distribution and payment processing for subscriptions and donations. Apple App Store handles billing for iOS users; Google Play handles billing for Android users — each in accordance with their own privacy policy.
Legal Requirements
We may disclose your information if required by law or in response to valid requests by public authorities such as a court order.
Business Transfers
If Inkapify is involved in a merger, acquisition, or asset sale, your information may be transferred. We will provide notice before your data is transferred and subject to a different privacy policy.
4A Inka AI — How Your Data Is Used
Inkapify includes an AI-powered assistant called Inka, powered by Google's Gemini AI. This section explains exactly what data is shared with Google when you use Inka AI.
What We Send to Google's Gemini AI
When you ask Inka a question, we send only aggregated, anonymised financial summaries — never your raw data or personal identifiers. Specifically:
- Total income and expenses for the current month (single numbers only)
- Top spending category names and total amounts — any personal names, email addresses, phone numbers, or account numbers embedded in category labels are automatically masked before being sent (e.g. "Payment to John Smith" becomes "Payment to [name]")
- Budget utilization — percentage used and remaining amount (no budget names)
- Recurring bill names and upcoming schedule — due dates, amounts, and frequency (personal names, emails, phone numbers, and account numbers in bill names are automatically masked)
- Investment portfolio total value only (no institution names)
- Total loan and fixed deposit values (no account numbers)
- Goal and debt summary counts (no goal names or person names)
- Your question and the last 8 messages of the current conversation
What We Never Send to Google's Gemini AI
- Your name, email address, or any personal identifiers
- Raw transaction records, notes, or receipt images
- Account names, numbers, or financial institution names
- Loan lender names or account numbers
- Payee names, debt person names, or nominees
- Goal names, investment names, or payee merchant names
- Personal names or institution names embedded in category labels (these are automatically masked)
- Any internal IDs, device identifiers, or unique identifiers
Conversation Storage
Inka AI conversations are stored only on your device using local storage. Conversations are retained for 24 hours to provide context continuity, after which they are automatically cleared. No conversation history is ever stored on our servers.
Usage Limits
Inka AI questions are subject to monthly usage limits based on your subscription tier: 15 questions/month on the free plan, 200 questions/month on Pro. Your usage count is tracked locally on your device and resets on the 1st of each month.
Google's Data Practices
Google processes the aggregated summaries we send via the Gemini API in accordance with their privacy policy. We use the Gemini API on a paid plan, under which Google does not use your data to train their AI models. See Google Gemini API Terms and Google's Privacy Policy for full details.
Opting Out
Inka AI is fully optional. If you prefer not to use it, simply do not open the Inka AI screen. Your financial data is never sent to Google's Gemini AI unless you actively ask Inka a question.
4B PDF Import — How Your Data Is Used
Inkapify includes a PDF bank statement import feature (Pro plan only) that uses AI to classify your transactions. This section explains exactly what happens to your data when you use this feature.
How It Works
When you import a bank statement PDF, the file is processed in three stages entirely on our secure servers:
- Text extraction — The PDF is read by our server using a local PDF library (pdfjs). No AI is involved at this stage and the PDF never leaves our infrastructure.
- Local matching — Extracted transactions are matched against your own past transaction history entirely on our servers. If all transactions match, no AI is used at all.
- AI classification — Only unmatched transactions are sent to Google's Gemini AI as plain text rows (merchant name, date, amount) for category classification.
What Is Sent to Google's Gemini AI
- Extracted transaction descriptions (e.g. merchant names), dates, and amounts — for unmatched rows only
- Your category list (category names only — no amounts or personal data)
- Anonymised examples from your past transactions to improve matching accuracy
What Is Never Sent to Google's Gemini AI
- The PDF file itself — it never leaves our servers
- Your bank account numbers or account holder name
- Banking credentials, passwords, or login information
- Your name, email address, or any personal identifiers
Training Opt-Out
We use the Gemini API on a paid plan, under which Google does not use your data to train their AI models. See Google Gemini API Terms for Google's data practices.
Opting Out
PDF import is entirely optional and only activates when you explicitly select a PDF file and confirm the import. The PDF file is not stored by Inkapify after processing completes. If you prefer not to use it, use manual entry or CSV import instead.
4C Receipt Scan — How Your Data Is Used
When you use the Receipt Scan feature (Pro plan only), your receipt photo is sent to Google's Gemini AI API to extract transaction details — specifically: merchant name, total amount, date, and optionally the last 4 digits of a payment card if visible on the receipt.
What is Shared
- The compressed receipt image (JPEG) is transmitted over an encrypted connection (TLS) to Google's Gemini API
- Only structured data extracted from the receipt is returned to the app and stored as a normal transaction record
- Card last 4 digits (if extracted) are used only to pre-select your account in the app and are not stored separately
What Is NOT Shared or Stored
- The receipt image is never stored on our servers or in Google's systems — it is discarded immediately after extraction
- Full card or account numbers are never extracted or transmitted — only the last 4 digits if visible
- We operate on Google's paid API plan, under which Google does not use your data to train AI models
Opt-Out
Receipt scanning is entirely optional and only activates when you explicitly tap "Scan Receipt" and confirm the consent screen. Manual transaction entry is always available as an alternative. Simply do not use the Receipt Scan feature if you prefer not to share images with Google's Gemini AI.
4E Google Drive Backup (Android)
On Android, Inkapify offers an optional backup feature that saves your encrypted backup file to your personal Google Drive. This feature requires you to sign in with your Google account and grant permission. This section explains exactly what access is requested and how it is used.
What Permission Is Requested
Inkapify requests the Google Drive drive.file scope. This is the most limited Google Drive permission available. It grants access only to files that Inkapify itself creates — the app cannot read, access, or modify any other files in your Google Drive.
What We Store in Your Google Drive
- A single encrypted backup file (
.inkbak) in a folder named Inkapify Backups in your Google Drive
- The backup file is encrypted with a password you choose — Inkapify does not know or store your backup password
- Only the backup files created by Inkapify are accessible to the app — no other Drive content
What We Never Access
- Any files in your Google Drive other than the backup files Inkapify created
- Your Google account profile, contacts, Gmail, or any other Google service
- Your Google Drive storage quota or file listing beyond the Inkapify Backups folder
How the Backup File Is Used
The backup file is written to your Google Drive and can be downloaded back to the app to restore your financial data. The file is encrypted before leaving your device — we cannot read its contents. Your Google Drive acts purely as personal cloud storage; Inkapify's servers never receive or process the backup file.
Revoking Access
You can revoke Inkapify's Google Drive access at any time from your Google Account permissions page. Revoking access only disables the Google Drive backup feature — all your financial data remains on your device and is not affected.
Google's Data Practices
File storage in Google Drive is governed by Google's Privacy Policy. Inkapify does not share any financial data with Google through this integration — only the encrypted backup file (whose contents Google cannot read) is stored.
This Feature Is Fully Optional
Google Drive backup is opt-in and only activates when you explicitly tap "Connect Google Drive" in Profile → Backup & Restore. If you do not enable this feature, no Google account connection or Drive access is requested.
4F iCloud Backup (iPhone)
On iPhone, Inkapify offers an optional backup feature that saves your encrypted backup file to your personal iCloud Drive. This feature only activates when you explicitly enable it and is governed entirely by your Apple ID and iCloud settings.
What Is Stored in iCloud
- A single encrypted backup file (
.inkbak) stored in the app's private iCloud container
- The backup file is encrypted with a password you choose — Inkapify does not know or store your backup password
- The file is only accessible by Inkapify — no other apps or users can access it
What We Never Access
- Any other files in your iCloud Drive or iCloud Photo Library
- Your Apple ID, iCloud account details, or any other Apple services
- iCloud storage quota or any files outside the app's private container
How It Works
The backup file is encrypted on your device before being written to iCloud. Inkapify's servers never receive or process the file — iCloud acts purely as personal cloud storage between your own devices. Apple handles iCloud storage in accordance with Apple's Privacy Policy.
Disabling iCloud Backup
You can disable iCloud backup at any time from Profile → Backup & Restore within the app, or by revoking iCloud access for Inkapify in your iPhone's Settings → [Your Name] → iCloud. Disabling only affects the backup feature — all your financial data on your device is unaffected.
This Feature Is Fully Optional
iCloud backup is opt-in and only activates when you explicitly enable it in Profile → Backup & Restore. If you do not enable this feature, no iCloud access is requested.
4D Subscriptions & Donations
When you subscribe to Inkapify Pro or make a donation through the app, the following applies:
Payment Processing
All payments are processed by the App Store (iOS) or Google Play (Android). Inkapify never receives or stores your payment card details. Apple and Google handle billing in accordance with their own privacy policies.
RevenueCat
We use RevenueCat to manage subscription status. RevenueCat receives your anonymous user ID and subscription event data (purchase, renewal, cancellation). They do not receive your financial data.
Subscription Data We Store
- Your subscription tier (free, pro, beta)
- Subscription expiry date (for active Pro subscribers)
- RevenueCat customer ID (anonymous identifier for subscription management)
Donations
Donations are one-time purchases processed entirely through the App Store (iOS) or Google Play (Android). Inkapify does not store any additional data for donations beyond confirming the transaction was completed.
5 Data Retention
- Your financial records are stored only on your device for as long as you keep the app installed
- Deleted records are removed from your visible data immediately
- Inka AI conversations are stored locally on your device and automatically cleared after 24 hours
- Inka AI usage counts are stored locally and reset on the 1st of each month
- To delete all your data: open the app → Profile → Factory Reset. This permanently deletes all financial data, settings, and receipts stored on your device immediately
- Receipt photos are stored locally on your device and are deleted when you remove them or reset the app
- Crash reports and error logs may be retained for debugging purposes — these cannot be linked back to your financial data
6 Your Rights & Choices
- Access — view all your financial data within the app at any time
- Correction — edit or update any information you have entered
- Deletion — delete individual records or reset all data from within the app at any time
- Backup — create an encrypted backup file of all your data from Profile → Backup & Restore
- Export — export your transaction data to CSV from within the app
- Notifications — enable or disable push notifications in device settings or within the app
- Inka AI opt-out — simply do not use the Inka AI screen
Since all your data is stored only on your device, you can exercise all of these rights directly within the app — no need to contact us. For any questions or concerns, reach us via our Contact page.
7 Push Notifications
Inkapify may send push notifications for:
- Bill payment reminders you have set up
- Budget threshold alerts you have configured
- Recurring transaction reminders
- Goal milestone updates
You can disable push notifications at any time through your device settings (Settings → Notifications → Inkapify) or within the app under Profile → Notifications.
8 Children's Privacy
Inkapify is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. All financial data entered into the app is stored only on the device — we never receive it. A parent or guardian can remove all data immediately by opening Profile → Factory Reset.
9 Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by:
- Posting the updated policy at inkapify.com/privacy
- Updating the Effective Date at the top of this page
- Sending a push notification or in-app notice for material changes
Your continued use of Inkapify after the effective date of the revised policy constitutes your acceptance of the changes.