Privacy Policy

Last updated: March 21, 2026

Overview

Monavo is a personal expense tracking app built on a local-first principle: your financial data lives on your device by default. This policy explains what data is collected, when it leaves your device, which third-party services are involved, and what rights you have over your data.

We do not sell your data. We do not show ads. We do not connect to your bank.

1. Data stored on your device

All transactions, categories, recurring expenses, and settings are stored locally on your device in an encrypted SQLite database. This data never leaves your device unless you explicitly enable cloud sync (see section 3). You can delete all local data by uninstalling the app.

2. Account & authentication

You may use Monavo without creating an account. If you choose to enable cloud sync, you will be asked to create an account using your email address. Your email address is used solely for authentication and account recovery — it is not used for marketing or shared with third parties.

Authentication is handled via Supabase Auth (see section 3). Optionally, you may set a local PIN to protect access to the app. The PIN is stored only on your device and is never transmitted.

3. Cloud sync — Supabase

Cloud sync is entirely optional. If you enable it, your transaction data, categories, and recurring expenses are encrypted in transit (TLS) and stored in a database hosted by Supabase (supabase.com). Supabase is a U.S.-based infrastructure provider. Your data is stored under your account and is not accessible to or used by Supabase for any purpose beyond hosting.

The following data is synced when cloud sync is enabled:

Transactions (amount, category, notes, date, deleted status)
Categories (name, icon, spending limit)
Recurring expenses (name, amount, interval, next due date)

No raw input text or AI responses are stored in the cloud. You can disable cloud sync and request deletion of your cloud data at any time by contacting support@getmonavo.com.

Supabase infrastructure is hosted in the United States. If you are located in the European Union or another jurisdiction with data transfer restrictions, please be aware that enabling cloud sync means your data will be transferred to and stored in the US. Supabase maintains appropriate safeguards for such transfers in accordance with applicable law.

Supabase's privacy policy: supabase.com/privacy

4. AI-powered transaction parsing — Anthropic Claude

When you use the Quick Add feature, you can type a natural-language description such as "coffee 3.50" or "uber 12 transport". If the app cannot parse the input locally, this input text is sent to a secure server-side function operated by us, which in turn calls the Anthropic Claude API to extract the transaction type (income or expense), category, and notes.

Specifically:

Your text input is sent with each request, with any numbers replaced by the placeholder <amount>. For example, "coffee 3.50" becomes "coffee <amount>" — the actual amount never leaves your device.
If you are signed in, your account identifier is used to enforce usage limits. If you are not signed in, your IP address is used solely for rate limiting purposes. Your IP address is not stored permanently, is not linked to your financial data, and is not shared with Anthropic.
A small history of your past category corrections is also sent (e.g. that you previously classified "coffee" as Food rather than Shopping) so that Monavo can apply your preferences consistently. This history contains only the stripped input text (with numbers removed), transaction type, and category — no amounts, notes, dates, or any other personal data.
The response (extracted type, category, and notes) is returned to your device and used to pre-fill the transaction form. The amount is always determined locally — either parsed from your input on-device or entered manually.
Neither your input nor the response is logged or retained on our servers beyond the duration of the request.
Anthropic may process this data according to their API usage policies. Anthropic does not use API inputs to train their models by default.

You can always add transactions manually without using the Quick Add feature. Parsing is only triggered when you explicitly submit a Quick Add input.

Anthropic's privacy policy: anthropic.com/privacy

5. Subscriptions — RevenueCat

Premium subscription management ($2.99/mo, $19.99/yr, or $59.99 lifetime) is handled by RevenueCat (revenuecat.com). RevenueCat receives a pseudonymous user identifier and purchase receipt information from the App Store or Google Play to verify your subscription status. We do not have access to your payment details — all billing is handled directly by Apple or Google.

RevenueCat may collect anonymous analytics about purchase events (e.g. trial started, subscription renewed) to help us understand subscription health. This data is not linked to your financial data in Monavo.

RevenueCat's privacy policy: revenuecat.com/privacy

6. Analytics — PostHog

We use PostHog (posthog.com) to collect anonymous behavioral analytics that help us understand how the app is used and where to improve it. PostHog is hosted on EU infrastructure (eu.i.posthog.com), meaning your analytics data is stored and processed within the European Union.

What we collect:

App lifecycle events (e.g. app opened, screen viewed)
Feature usage events (e.g. Quick Add used, analytics screen viewed, export used)
Transaction metadata: category key (e.g. cat_food), type (income/expense) — never the amount, currency, or the text you typed
Paywall and subscription events (e.g. paywall viewed, plan selected, purchase completed)
An anonymous device identifier generated by PostHog — not linked to your name, email, or financial data
If you enable cloud sync, your Supabase user ID (a random UUID) is used as the PostHog identifier, solely to associate events across devices. No email or personal details are sent to PostHog.

What we never collect:

Transaction amounts or currency
The raw text you type in Quick Add
Transaction notes
Your email address or name
Any financial account details

Opt-out: You can disable analytics collection at any time in Settings → Your Data → Anonymous Analytics. When disabled, no data is sent to PostHog for the remainder of that session or any future sessions until you re-enable it. This preference is stored on your device.

You can also request deletion of your analytics data by contacting us at support@getmonavo.com.

PostHog's privacy policy: posthog.com/privacy

7. Data retention

Local data: Retained on your device until you delete the app or clear app data.
Cloud sync data: Retained as long as your account exists. You can request full deletion by emailing us.
AI request data: Not retained — processed in real time and discarded.
Analytics data: Retained by PostHog for up to 1 year. You can request deletion at any time.
Authentication data: Your email address is retained as long as your account exists.

8. Your rights

Depending on your jurisdiction, you may have the right to:

Access the personal data we hold about you
Request correction of inaccurate data
Request deletion of your account and associated cloud data
Export your transaction data (available in-app via CSV export)
Withdraw consent for cloud sync at any time (disable in Settings)
Opt out of anonymous analytics at any time (Settings → Your Data → Anonymous Analytics)
Request deletion of your anonymous analytics data from PostHog

To exercise any of these rights, contact us at support@getmonavo.com. We will respond within 30 days.

9. Children's privacy

Monavo is not directed at children under the age of 13 (or 16 in the EU). We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

10. Security

We take reasonable technical measures to protect your data, including TLS encryption in transit and access controls on our backend infrastructure. However, no system is completely secure. You are responsible for keeping your device and account credentials safe.

11. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date above. For significant changes, we will notify you within the app. Continued use of Monavo after a policy update constitutes acceptance of the revised policy.

12. Contact

If you have any questions or concerns about this Privacy Policy, please contact us at support@getmonavo.com.