Privacy Policy

Last updated: April 4, 2026

Spentro ("we", "our", "the app") is a subscription tracker that helps you find and manage recurring payments. Your privacy is fundamental to how we built this app.

The Short Version

Your data stays on your device. We do not have servers. We do not collect your emails. We do not sell your data. Period.

What Data We Access

• Email content (temporary): When you connect your email, Spentro scans for subscription receipts and billing notifications. Email content is processed entirely on your device, in memory. We extract only: service name, amount, currency, and billing date. The raw email content is immediately discarded — it is never stored, transmitted, or uploaded anywhere.
• OAuth tokens: Stored securely in your device's Keychain (hardware-encrypted by Apple's Secure Enclave). Never transmitted to our servers.
• Subscription data: Service names, amounts, dates, and categories are stored locally on your device using SwiftData with iOS Data Protection (encrypted at rest).

What We Do NOT Do

• We do NOT send your emails to any server (ours or third-party)
• We do NOT use AI services to process your email content
• We do NOT collect analytics about your subscriptions
• We do NOT share any data with third parties
• We do NOT serve advertisements
• We do NOT track you across apps or websites

Email Provider Authentication

When you connect Gmail, Outlook, Yahoo, or iCloud, authentication is handled by the respective provider's OAuth system. We receive a read-only access token — we cannot modify, delete, or send emails on your behalf. You can revoke access at any time from your email provider's security settings.

iCloud Sync

If you enable iCloud sync, your subscription data syncs across your devices via Apple's iCloud infrastructure. This data is encrypted in transit and at rest by Apple. We have no access to your iCloud data.

In-App Purchases

Subscription purchases are processed by Apple through the App Store. We use RevenueCat to manage subscription status. RevenueCat receives only an anonymous app user ID and purchase status — no personal data, no email content.

Data Deletion

You can delete all your data at any time from Settings → Delete Account. This removes all subscription data, disconnects email accounts, and deletes OAuth tokens from your Keychain. Since we don't store data on servers, deletion is immediate and complete.

Children's Privacy

Spentro is not intended for children under 13. We do not knowingly collect data from children.

Changes to This Policy

If we update this policy, we'll post the new version here and update the date above. Material changes will be communicated via an in-app notification.

Contact

Questions about privacy? Email us at support@spentro.app