This Privacy Policy describes how eSolvd ("we", "us", or "our") collects, uses, and protects information when you use the Ledgr mobile application and related services (collectively, the "Service"). Ledgr is a personal finance app that helps you track spending from bank SMS alerts, budgets, savings jars, and insights — with your financial ledger stored primarily on your device.
Summary: Your transactions, accounts, budgets, and jars are stored locally on your iPhone. If you create an account, we process sign-in credentials, optional profile data, redacted SMS for AI-assisted parsing, encrypted backups (Pro), push notification tokens, and subscription status. We do not sell your personal information.
2. Information stored on your device
When you use Ledgr, the following data is stored locally in the app's on-device database:
- Bank accounts, balances, and card/account number hints used for SMS matching
- Transactions (amount, merchant, category, date, notes, tags)
- Budgets, category envelope limits, and spending alerts
- Savings jars and jar contributions
- Tags, merchant rules, and learned SMS templates
- App preferences (language, reminders, privacy toggles)
- Raw bank SMS content used for parsing (on device only)
If you uninstall the app without exporting or backing up, this local data may be permanently lost.
3. Information we process on our servers
If you sign in or use cloud-connected features, we may process:
- Account information: email address, password (stored as a secure hash), display name, optional phone number, country/currency preferences, and Apple Sign In identifier
- Authentication data: session tokens, device labels, IP address at sign-in, and login attempt metadata for security and rate limiting
- SMS parsing assistance: when a message format is unknown, a redacted copy of the SMS (sensitive digits masked) may be sent to our servers and to an AI provider to extract amount, merchant, and category. We do not store full raw SMS in routine AI usage logs.
- Parse diagnostics: in some failure or feedback flows, SMS content (including redacted or, in limited diagnostic reports, raw text) may be stored to improve parsing accuracy
- AI usage metrics: endpoint, model, token counts, latency, and outcome — not SMS body content
- Encrypted backups (Ledgr Pro): backup files encrypted on your device before upload; we store ciphertext only and cannot read your transactions
- Push notifications: Firebase Cloud Messaging device token, optional device label, app version, and locale if you enable notifications
- Subscriptions: Apple In-App Purchase transaction data needed to verify Ledgr Pro status
4. Features that do not send your ledger to us
- The Financial Assistant runs entirely on your device and queries your local database — assistant answers are not uploaded
- Day-to-day transaction editing, budgeting, and jar tracking work offline without sending your ledger to our servers
5. How we use information
- Provide, maintain, and improve the Service
- Authenticate you and secure your account
- Parse and categorize bank SMS in supported formats
- Store encrypted backups and sync subscription entitlements
- Send optional push notifications you have allowed
- Send transactional emails (verification, password reset) when applicable
- Enforce free-tier AI usage limits and prevent abuse
- Comply with legal obligations
6. Third-party service providers
We use trusted providers to operate the Service, including:
- Apple — Sign in with Apple, In-App Purchases, App Store Server notifications
- OpenAI (or another configured AI provider) — SMS template and categorization assistance
- Google Firebase — push notification delivery (Firebase Analytics is disabled in the app)
- Resend — transactional email
- Twilio — optional phone verification, when enabled
- Hosting infrastructure — servers that run the Ledgr API at ledgr-api.esolvd.com
These providers process data only as needed to perform services on our behalf and are subject to contractual and security obligations.
7. Legal bases (where applicable)
Depending on your location, we rely on performance of a contract (providing the Service), legitimate interests (security, fraud prevention, product improvement), and consent (optional notifications and certain optional data collection) to process personal information.
8. Data retention
- Account deletion: when you delete your account, access is revoked immediately. Server data is scheduled for permanent deletion after a grace period (default 30 days) unless law requires longer retention.
- Encrypted backups: up to three snapshots per user; older snapshots are removed when new ones are uploaded.
- Security logs: login and session records are kept for a limited period for fraud prevention.
9. Security
We use industry-standard measures including HTTPS, hashed passwords (Argon2id), secure token storage in the iOS Keychain, and end-to-end encryption for cloud backups (AES-256-GCM on device before upload). No method of transmission or storage is 100% secure; please use a strong password and protect your device.
10. Your choices and rights
- Access and export data via local backup export or encrypted cloud backup (Pro)
- Edit or delete transactions and other records in the app
- Delete your account in Settings → Account security
- Revoke active sessions or sign out of all devices
- Disable push notifications in iOS Settings
- Cancel Ledgr Pro through Apple's subscription management
Depending on your jurisdiction, you may have additional rights (access, correction, deletion, portability, objection). Contact esolvd.solutions@gmail.com to exercise them.
11. Children
Ledgr is not directed to children under 13 (or the minimum age in your country). We do not knowingly collect personal information from children. Contact us if you believe a child has provided us data.
12. International transfers
Our servers may be located outside your country. Where required, we implement appropriate safeguards for cross-border data transfers.
13. Changes to this policy
We may update this Privacy Policy from time to time. We will post the revised version on this page and update the "Last updated" date. Material changes may also be communicated in the app.