Privacy Policy

Effective Date: 03-12-2025

Summary: Your Data is Encrypted

Mastercash uses a "Zero-Knowledge" architecture for your financial data. This means your transaction details and balances are encrypted on your device using a password only you know before they are sent to our servers. We (the developers) literally cannot read your financial data.

1. Data We Collect

We collect the minimum data necessary to provide the service:

Account Information: Your email address and name (provided by Google Sign-In) to identify your account.
Encrypted Financial Data: Ciphertext representing your transactions and balances. We store this, but cannot decipher it.
Subscription Data: If you subscribe, our payment processor (Stripe) collects billing details. We do not store your credit card information on our servers.

2. How We Use Your Data

To Provide the Service: Storing your encrypted data so you can access it across devices.
To Process Payments: Verifying your subscription status via Stripe.

3. Data Storage and Security (GDPR)

Your data is stored in Google Firebase data centers located in the European Union (Belgium/europe-west1).

Because your financial data is encrypted client-side, it is unintelligible to us, to Google, or to any third-party interceptor, fulfilling the GDPR principle of Integrity and Confidentiality by design.

4. Data Retention and Free Trial Policy

We adhere to strict data minimization principles. Your data is retained strictly according to the following schedule:

4.1. Free Trial Expiration

If you utilize the 14-Day Free Trial and choose not to subscribe:

Financial Data: All your encrypted financial data (transactions, balances, and recurring settings) is automatically and permanently deleted from our servers within 24 hours of the trial expiring.
Account Structure: Your basic account record (Email and User ID) is retained for a period of 12 months based on "Legitimate Interest" to prevent abuse and facilitate re-subscription.

4.2. Account Deletion

If an account remains inactive (no valid subscription) for more than 12 months, the account record itself will be permanently deleted. You may also request the immediate permanent deletion of your entire account at any time by contacting info@mastercash.app.

5. Your Rights

Under GDPR, you have the right to:

Access/Portability: You can view your data by logging into the app.
Rectification: You can edit your transactions directly in the app.
Erasure ("Right to be Forgotten"): You can delete your account or specific data within the app (or by contacting support), which permanently removes it from our servers.

6. Third-Party Services

We use the following trusted sub-processors:

Google Firebase: Authentication, Database, and Hosting.
Stripe: Payment processing.

7. Contact Us

For any privacy concerns, please contact us at: info@mastercash.app