Privacy Policy

Last updated: March 21, 2026

Our Core Promise: PocketVault is built on a privacy-first architecture. Your financial data is stored exclusively on your device. We do not operate cloud servers that collect, store, or process your personal financial information. Period.

1. Information We Do Not Collect

PocketVault is designed so that your sensitive data never leaves your device. We do not collect, transmit, or have access to:

  • Your financial accounts, balances, or transaction history
  • Bank credentials, passwords, or authentication tokens
  • Budgets, spending categories, or financial goals
  • AI chat conversations or prompts you enter within the app
  • Any data processed by the on-device AI model

Specifically, there is no account required — you never create a username or profile with us. The app works fully offline and does not phone home.

2. On-Device AI Processing

PocketVault's AI features (transaction categorisation, natural language queries, forecasting) run entirely on your device using local language models. Your prompts, financial context, and model responses are never sent to external servers — no cloud AI services (OpenAI, Google, etc.) are used.

3. Data Stored on Your Device

All user data is stored locally in an AES-256 encrypted SQLCipher database on your device. The encryption key is stored in the platform's secure enclave (Keychain on iOS/macOS, KeyStore on Android, DPAPI on Windows) and is never transmitted. Because this data resides solely on your device, you maintain full control over it. Uninstalling the app or clearing its data permanently deletes all records.

4. P2P Sync

The Premium plan's sync feature uses direct device-to-device communication over local Wi-Fi. Data travels directly between your devices — it never passes through our servers, because we don't have servers.

5. What This Website Collects

This website (pocketvault.finance) is hosted on Cloudflare Pages. Cloudflare may collect basic, anonymous web analytics (page views, country-level location) as part of their infrastructure. We don't add any additional tracking scripts, cookies, or analytics tools.

The website uses your browser's timezone setting (via the Intl API) to display pricing in your local currency. This detection happens entirely in your browser and no location data is sent to any server.

If you use the email notification form on the download page, we store only your email address for the sole purpose of notifying you when PocketVault launches on your platform. You can unsubscribe at any time.

6. Children's Privacy

PocketVault is not directed at children under the age of 13. We do not knowingly collect any personal information from children. Since we collect no personal information at all, this is inherently satisfied. If you believe a child has provided data through the app, please contact us and we will take appropriate steps.

7. Your Rights and Control

Because your data lives on your device, you have complete control at all times:

  • Access: All your data is viewable within the app.
  • Deletion: Clear all data from the app settings, or uninstall the app entirely.
  • Portability: Export your financial data in standard formats from within the app.

8. Changes to This Policy

If we ever change this policy, we'll update the "Last updated" date at the top of this page. Given our architecture, any meaningful change would require fundamentally rebuilding the app — which we have no intention of doing.

9. Contact

Questions about privacy? Email us at privacy@pocketvault.finance.