Privacy Policy
Last updated: May 12, 2026
TL;DR: MyWallet stores all your data locally on your device. We do not collect, transmit, or sell your personal or financial information. SMS data is processed on-device only. Optional Google Drive backup is controlled entirely by you.
1. Introduction
MyWallet ("we," "our," or "the app") is a personal finance management application developed by MD Rahim. This Privacy Policy explains how MyWallet handles your information when you use our Android application (the "Service").
By using MyWallet, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the app.
2. Information We Collect
2.1 Financial Data (User-Entered)
MyWallet allows you to manually enter:
- Account information (account names, types, balances, card last four digits, currency)
- Transaction details (amounts, merchants, categories, dates, notes)
- Savings goals and sinking fund targets
- Budget preferences and settings
This data is stored exclusively on your device in a local database (ObjectBox). It is never transmitted to our servers or any third party.
2.2 SMS Data
If you grant SMS permissions (READ_SMS and RECEIVE_SMS), MyWallet will:
- Listen for incoming SMS messages from known bank sender IDs
- Parse bank transaction alerts to extract amounts, merchant names, and account references
- Create pending transaction entries for your review and confirmation
Important: SMS data is processed entirely on your device using local pattern matching (regex). Raw SMS content is never stored, transmitted, or shared with any external service. Only the parsed transaction data (amount, merchant, date) is saved to your local database after your explicit confirmation.
2.3 Google Account Information
If you choose to use the Google Drive backup feature, MyWallet will request access to:
- Your Google account name and email (for authentication)
- Google Drive App Data folder (a private folder only accessible by MyWallet)
This information is used solely to authenticate with Google Drive and save/restore your backup file. We do not access any other Google account data.
2.4 Device Permissions
MyWallet may request the following permissions:
- SMS (READ_SMS, RECEIVE_SMS) — For auto-capturing bank transaction alerts. Optional; the app functions fully without it.
- Notifications (POST_NOTIFICATIONS) — For notifying you about auto-captured transactions and reminders. Optional.
- Biometric/Fingerprint — For optional app lock functionality. Biometric data is handled entirely by Android's BiometricPrompt API and never accessed by MyWallet directly.
- Internet — For Google Drive backup, exchange rate updates, and Google Sign-In. No personal data is transmitted beyond these specific features.
3. How We Use Your Information
All data collected is used exclusively for:
- Displaying your financial information within the app
- Calculating analytics, balances, and budget summaries
- Providing auto-captured SMS transaction suggestions
- Backing up and restoring your data via Google Drive (when you choose to)
- Converting currencies using publicly available exchange rates
4. Data Storage & Security
- Local Storage: All financial data is stored in a local ObjectBox database on your device's internal storage, protected by Android's app sandbox.
- Google Drive Backup: When enabled, backup files are stored in Google Drive's App Data folder, which is private and can only be accessed by MyWallet. Google's security and encryption standards apply.
- No Cloud Servers: MyWallet does not operate any cloud servers. We do not have access to your data.
- Encryption: Data in transit (Google Drive sync, exchange rates) uses HTTPS/TLS encryption.
5. Data Sharing
We do not sell, trade, rent, or share your personal or financial data with any third parties.
The only external data transmission occurs when:
- You initiate a Google Drive backup (data sent to your own Google Drive)
- The app fetches live exchange rates from public APIs (no personal data is included in these requests)
- You sign in with Google for backup functionality (standard OAuth flow)
6. Data Retention
- Your data persists on your device until you delete individual entries or uninstall the app.
- Google Drive backups persist in your Drive until you manually delete them or revoke MyWallet's access.
- We do not retain any data on our end, as we have no servers.
7. Your Rights & Choices
You have complete control over your data:
- Access: All your data is visible within the app at all times.
- Deletion: Delete individual transactions, accounts, or all data from within the app. Uninstalling the app removes all local data.
- SMS Permission: You can deny or revoke SMS permissions at any time through your device's Settings. The app will continue to function without SMS features.
- Google Drive: You can disconnect Google Drive, delete backups, or revoke access from your Google Account settings.
- Export: You can back up your data to Google Drive for portability.
8. Children's Privacy
MyWallet is not intended for children under the age of 13. We do not knowingly collect personal information from children. If you are a parent and believe your child has used MyWallet, please contact us, and we will provide guidance on deleting the local data.
9. Third-Party Services
MyWallet integrates with the following third-party services:
- Google Sign-In & Google Drive API — For authentication and backup. Subject to Google's Privacy Policy.
- Exchange Rate APIs — For currency conversion. Only currency codes are sent; no personal data is transmitted.
10. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be reflected by updating the "Last updated" date at the top. We encourage you to review this page periodically. Continued use of the app after changes constitutes acceptance of the updated policy.
11. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your data, please contact us:
- Email: contact@mdrahim.com
- Website: mdrahim.com