Back to home

Privacy Policy

Effective Date: March 8, 2026 App: Winnie Operator: Winnie, a sole proprietorship operated by Austin Beckett Contact: support@winnie-app.com

---

At a Glance

Winnie is a personal financial planning app. Here is what you should know upfront:

• No bank linking. Winnie never connects to your bank, brokerage, or any financial institution. All financial information is entered by you manually.
• No advertising. There are no ads in Winnie. We do not use advertising identifiers.
• No tracking. We do not track you across apps or websites. We use Firebase Analytics to collect anonymous feature usage data (e.g., "goal created") to improve the app, but this data contains no personal information or financial details.
• No data sales. We do not sell, rent, or share your personal information with third parties for their commercial purposes.
• Guest mode available. You can use Winnie without creating an account. In guest mode, your data stays on your device and is never transmitted to any server.

---

1. Information We Collect

Account Information

When you create an account, we collect:

• Display name — the name you choose during onboarding
• Email address — your email or Apple Private Relay address (if you use Sign in with Apple's "Hide My Email" feature)
• User ID — a unique identifier generated by Firebase Authentication

Passwords are hashed and managed by Firebase Authentication. We never store or have access to your password in plain text.

Profile Information (Optional)

You may optionally provide:

• Avatar selection — a choice from preset illustrations (no photo uploads)
• Age range — a broad range (e.g., 25–34), with a "Prefer not to share" option
• Gender — with a "Prefer not to share" option

All profile fields are optional and can be left blank or set to "Prefer not to share."

Financial Information (User-Entered)

You may enter financial information including:

• Monthly take-home income
• Savings rate and savings balance
• Retirement balance
• Savings goals (names, target amounts, current balances, target dates)
• Contributions toward goals
• Savings plans and projections

All financial data is entered manually by you. Winnie does not connect to banks, brokerages, credit cards, or any external financial service. We have no access to your actual account balances, transactions, or financial accounts.

Preference Data (Local Only)

The following preferences are stored on your device in UserDefaults and are never transmitted to our servers:

• Appearance mode (light, dark, or system)
• Onboarding draft state (cleared on completion)
• Goal sorting and filtering preferences
• Whether you have seen certain informational screens

Notification Preferences

If you enable weekly savings reminders, your preferred day and time are stored in your account to schedule local notifications on your device. Winnie does not use remote push notifications.

Guest Mode

If you use Winnie without creating an account, a random session identifier is stored on your device in UserDefaults. This identifier is used only to associate your local data within the app. No account is created, no data is transmitted to any server, and the identifier has no connection to your identity.

---

2. What We Do Not Collect

Winnie does not collect any of the following:

• Location data
• Contacts or address book
• Photos, camera, or media library access
• Microphone or audio data
• Health or fitness data
• Biometric data (Face ID / Touch ID are handled by iOS, not by Winnie)
• Device advertising identifiers (IDFA)
• Vendor identifiers (IDFV) for advertising (Firebase Analytics may use IDFV internally for analytics deduplication, but we do not access or use it)
• Browsing or search history
• Clipboard contents
• Crash reports or diagnostic logs (we do not use Crashlytics or any crash reporting service)
• Call logs or SMS data

---

3. How We Use Your Information

We use your information for the following purposes only:

• Core functionality — to store your goals, contributions, savings plans, and projections so you can track your financial progress
• Partner collaboration — to share relevant financial data between linked partners (see "Partner Data Sharing" below)
• Authentication — to sign you in and secure your account
• Local notifications — to send weekly savings reminders at your chosen day and time, processed entirely on your device
• Purchase management — to manage your Winnie+ subscription status via Apple's StoreKit framework and RevenueCat's entitlement service (see "Third-Party Services" below)
• Analytics — to understand how features are used so we can improve the app. We collect anonymous usage events (e.g., "goal created," "plan saved") via Firebase Analytics. These events are not tied to your financial data and do not include goal names, amounts, or any personally identifiable information. See "Third-Party Services" below.

What We Do Not Use Your Information For

• Serving advertisements
• Selling or renting to third parties
• Sending marketing or promotional emails
• Behavioral profiling or cross-app tracking
• Training machine learning models
• Building advertising profiles

---

4. Partner Data Sharing

Winnie allows two people to link their accounts as partners to plan finances together. When you link with a partner:

Shared between partners: - Display name and avatar - Savings goals (names, target amounts, current balances, contributions) - Savings plans and projections - Activity history (contributions, goal completions) - Financial profile (income, savings rate)

Never shared with your partner: - Secret goals — goals you mark as secret are enforced as private by our database security rules. Your partner cannot see, access, or know about them. This is not just a UI setting; it is enforced at the database level. - Your email address - Your password or authentication credentials

Both partners consent to data sharing when they link their accounts via invite code. Either partner can leave the partnership at any time.

---

5. How We Store Your Data

Guest Mode

In guest mode, all data is stored locally on your device using SwiftData (Apple's on-device database). This data:

• Is included in your device's iCloud or local backups
• Is deleted when you uninstall Winnie
• Is never transmitted to any server

Authenticated Mode

When you create an account, your data is stored in Google Cloud Firestore:

• Encrypted in transit via TLS (Transport Layer Security)
• Encrypted at rest by Google Cloud's infrastructure
• Offline cache — Firestore maintains a local cache so the app works without an internet connection. Changes sync automatically when connectivity is restored.

Security Measures

• Firebase App Check with Apple's App Attest — verifies that requests to our database come from the authentic Winnie app
• Firestore Security Rules — enforce that users can only access their own data (and shared data for linked partners). These rules are enforced server-side and cannot be bypassed by the app.
• Cryptographic UUIDs — all entity identifiers are randomly generated UUIDs
• No unauthenticated access — all database reads and writes require a valid, authenticated user

Logging

Winnie uses Apple's `os.log` framework for on-device diagnostic logging during development. These logs:

• Stay on your device
• Are never transmitted to our servers
• Automatically redact sensitive information (financial amounts, personal details)
• Are not collected, aggregated, or analyzed by us

---

6. Third-Party Services

Winnie uses the following third-party services:

| Service | Provider | Purpose | Data Shared | |---------|----------|---------|-------------| | Firebase Authentication | Google | User sign-in and account management | Email, display name | | Cloud Firestore | Google | Cloud database for authenticated users | All user-entered data | | Firebase App Check | Google | Verify authentic app requests | Device attestation token | | Cloud Functions for Firebase | Google | Server-side operations (e.g., invite code validation) | Request-specific data | | StoreKit | Apple | On-device purchase and subscription processing | Purchase transactions | | RevenueCat | RevenueCat, Inc. | Subscription entitlement management and purchase validation | Anonymous app user ID, purchase receipts | | Firebase Analytics | Google | Anonymous feature usage analytics | Anonymous event data (e.g., "goal created"), device type, OS version |

RevenueCat is used to validate purchases with Apple and manage subscription entitlements (e.g., determining whether your Winnie+ subscription is active, expired, or in a grace period). RevenueCat receives an anonymous user identifier and purchase transaction data from Apple. RevenueCat does not receive your name, email address, financial information, or any other personal data entered into Winnie. All payment processing remains through Apple.

Firebase Analytics is used to understand which features are used and where users encounter friction. It collects anonymous event data (such as "goal created" or "plan saved"), device type, and OS version. It does not collect goal names, financial amounts, personal details, or any content you enter into Winnie. Analytics data is not used for advertising, is not shared with third parties, and cannot be used to identify you personally.

Google's Privacy Policy: https://policies.google.com/privacy Apple's Privacy Policy: https://www.apple.com/legal/privacy/ RevenueCat's Privacy Policy: https://www.revenuecat.com/privacy

Services we do not use: - No advertising SDKs - No crash reporting services (no Crashlytics) - No third-party tracking or attribution services - No social media SDKs

---

7. Data Retention and Deletion

Active Account

Your data is retained for as long as your account exists and you continue to use the service.

Account Deletion — Solo User

If you delete your account and are not linked to a partner, all of your data is permanently deleted, including:

• Your user profile
• All goals and contributions
• All savings plans
• All activity history
• Any unused invite codes
• Your couple document and financial profile

Account Deletion — Partnered User

If you delete your account while linked to a partner:

• Your user profile is deleted
• Your secret goals are deleted
• Shared goals, contributions, plans, and activities remain accessible to your partner
• Your partner is notified that you have left the partnership

This ensures that your partner does not lose shared financial planning data they also contributed to.

Guest Mode

If you use Winnie in guest mode, uninstalling the app removes all data. There is nothing to delete on our servers because no server account was created.

Invite Codes

Invite codes for partner linking expire after 7 days and are automatically cleaned up.

How to Delete Your Account

You can delete your account at any time from Profile > Account Info within the app. Deletion is immediate and cannot be undone.

---

8. Your Rights and Choices

• Access your data — All data you have entered is visible within the app at any time.
• Correct your data — You can edit your profile, goals, contributions, and plans directly in the app.
• Delete your data — You can delete your account from Profile > Account Info. See "Data Retention and Deletion" above.
• Revoke Apple Sign-In — If you signed in with Apple, you can revoke Winnie's access in iOS Settings > [Your Name] > Sign-In & Security > Sign in with Apple.
• Disable notifications — You can disable savings reminders in the app or revoke notification permission in iOS Settings.
• Use guest mode — You can use Winnie without creating an account, keeping all data on your device.
• Data export — To request a copy of your data, contact us at support@winnie-app.com.

---

9. International Users

Winnie is operated from Ontario, Canada. If you create an account, your data is processed and stored by Google Cloud Firestore, which operates data centers in the United States and other countries. By creating an account, you consent to the transfer and processing of your data outside your country of residence.

---

10. Children's Privacy

Winnie is not directed at children. We do not knowingly collect personal information from children under the age of 13. If you believe that a child under 13 has provided personal information through Winnie, please contact us at support@winnie-app.com, and we will take steps to delete that information.

---

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Effective Date" at the top of this page. Your continued use of Winnie after changes are posted constitutes your acceptance of the updated policy. When feasible, we will communicate material changes within the app.

---

12. Contact Us

If you have questions about this Privacy Policy or your data, contact us at:

Winnie Austin Beckett support@winnie-app.com https://www.winnie-app.com/support