Oro — Privacy Policy

Last updated: 26 February 2026

Overview

Oro ("the app", "we") is a personal finance companion designed with privacy at its core. Your financial data (transactions, budgets, income) is stored locally on your device and is never sent to our servers. We use a small number of privacy-respecting services for authentication, cloud sync, crash reporting, and anonymous product analytics — all described in detail below.

1. What data Oro stores locally

All financial data is stored locally on your device using Apple's SwiftData framework, protected by iOS's full-disk encryption.

Data	Where it lives	Leaves your device?
Transactions (amount, merchant, category, date)	On-device (SwiftData)	Only if you enable Cloud Sync
Monthly income & fixed commitments	On-device (SwiftData)	Only if you enable Cloud Sync
Budget limits per category	On-device (SwiftData)	Only if you enable Cloud Sync
App preferences (language, currency, notification settings)	On-device (SwiftData + UserDefaults)	Synced to your profile when signed in
Logging streak count	On-device (UserDefaults)	Never

2. Account & cloud sync

Oro uses Supabase for authentication and optional cloud sync. When you create an account:

Your email address and profile preferences (language, currency, income, fixed commitments) are stored on Supabase servers.
If you are on a plan that includes Cloud Sync, your transactions, budgets, categories, and recurring rules are synced to Supabase so they are backed up and available if you reinstall.
Supabase servers are hosted in the cloud with encryption at rest and in transit.

You can delete your account and all associated cloud data at any time via Settings → Danger Zone → Delete Account.

3. Crash reporting (Sentry)

We use Sentry to collect anonymised crash reports and performance traces so we can diagnose and fix bugs. Sentry receives:

Crash stack traces (file names, line numbers, function names — no user data).
Performance traces for a sample of app sessions.

Sentry does not receive:

Screenshots or view hierarchies (disabled — prevents capture of financial amounts).
Personal identifiers, IP addresses, or financial data.
Network request bodies or URLs.

Crash reporting cannot be disabled individually, but no personal or financial data is ever included.

4. Product analytics (PostHog)

We use PostHog for anonymous product analytics to understand which features are used and improve the app. PostHog receives:

Anonymous usage events — such as "transaction added", "budget created", "tab viewed" — with no financial amounts, merchant names, or other personal details.
A random anonymous identifier generated on your device — this is not your email, name, or Apple ID.
Basic device metadata — app version, OS version, device model, and locale/language.

PostHog does not receive:

Your name, email, or any account information.
Transaction amounts, merchant names, budget limits, income, or any financial data.
Location data, contacts, photos, or any other sensitive information.

No cross-app tracking: We do not use Apple's IDFA (advertising identifier), we do not share data with advertisers or data brokers, and we do not track you across other apps or websites. Apple's App Tracking Transparency (ATT) prompt is not required because no tracking occurs.

5. Biometric authentication (Face ID / Touch ID)

If you enable biometric lock in Settings, Oro asks iOS to authenticate you using Face ID or Touch ID. Oro never sees, stores, or transmits your biometric data. Authentication is handled entirely by the iOS LocalAuthentication framework — the app only receives a yes/no result.

6. Notifications

Oro may schedule local notifications (daily reminder, budget alerts, weekly summary). These are locally scheduled on your device — they do not go through any external server or push notification service. Notification content is generated on-device and contains no financial amounts (for lock screen privacy).

You can disable notifications at any time in Settings → Notifications, or via iOS Settings → Notifications → Oro.

7. Data security

All on-device data is encrypted at rest via NSFileProtectionComplete (iOS full-disk encryption).
Data is locked when the device is locked.
Cloud data (when synced) is encrypted in transit (TLS) and at rest on Supabase servers.
No advertising SDKs or data brokers are used.

8. Data sharing

We do not sell or share your data with advertisers, data brokers, or any third parties for marketing purposes.

Data is shared only with the service providers listed above (Supabase, Sentry, PostHog), solely for the purposes described, and under data processing agreements that prohibit them from using your data for their own purposes.

The only financial data that may leave your device is:

What you explicitly choose to export — via Settings → Export CSV, which opens iOS's standard share sheet.
What is synced to Supabase if you enable Cloud Sync.

9. Children's privacy

Oro does not knowingly collect data from children under 13. The app requires account creation (email sign-up) for full functionality.

10. Your rights & data deletion

You can delete all your Oro data at any time:

Settings → Danger Zone → Delete All Data — permanently removes all local transactions, budgets, categories, and settings from your device.

Settings → Danger Zone → Delete Account — permanently removes your account and all cloud-synced data from Supabase servers.

Uninstalling the app also removes all SwiftData-stored data from your device.

11. Summary of third-party services

Service	Purpose	Data received	Links to identity?
Supabase	Authentication & cloud sync	Email, profile preferences, synced financial data	Yes (your account)
Sentry	Crash reporting	Crash stack traces, performance samples	No
PostHog	Product analytics	Anonymous usage events, device metadata	No

12. Changes to this policy

If we change how data is handled, this policy will be updated before those changes ship, and the "Last updated" date at the top will reflect the change.

13. Contact

Questions about this privacy policy? Reach us at:

Email: thealpharesearch@gmail.com

GitHub: https://github.com/Squaro16/oro-finance