Privacy PolicyOffline-first

Last updated: October 9, 2025 Version 2.0

Who We Are

TadbirLabs ("we", "us", "our") develops Tadbir, an Arabic-first, offline-first expense tracker designed to help you manage your finances with complete privacy. We are based in Egypt and committed to protecting your financial data.

Contact: tadbirlabs@gmail.com
Privacy inquiries: privacy@tadbirlabs.com

Scope

This privacy policy explains how your information is handled when you use Tadbir mobile applications (iOS and Android) and related pages at tadbirlabs.github.io. By using our app or services, you agree to the terms outlined in this policy.

Data Model (Offline-First)

By default, your entries, categories, budgets, and settings are stored locally on your device only. We do not transmit your personal data to our servers because we operate no backend infrastructure. This "offline-first" approach means:

• No account registration required to use the app
• No server-side storage of your financial transactions
• No automatic data synchronization without your explicit consent
• Complete control over your data at all times

Any optional cloud features you enable (e.g., backups, cross-device sync) will clearly state the provider and terms before activation, and you must explicitly opt in to use them.

Information We Process

On-Device Data (Local Storage)

The following data is stored locally on your device and never transmitted to our servers unless you explicitly enable cloud features:

• Financial transactions: Amount, date, category, notes, attachments (receipts/photos)
• Accounts: Account names, balances, currency preferences
• Categories & Budgets: Custom categories, budget limits, spending goals
• App preferences: Language selection, theme, notification settings, default currency
• Local analytics: App usage patterns stored locally for improving your experience (never transmitted)

Optional Cloud Sync/Backup (If Enabled)

If you choose to enable cloud backup or synchronization features, your data may be transferred to the cloud storage provider you select:

• Google Drive (Android users): Encrypted backup files stored in your personal Google Drive account
• iCloud (iOS users): Encrypted backup files stored in your personal iCloud account

When you enable these features, the provider's privacy policy applies in addition to ours:

• Google Drive Privacy Policy
• Apple iCloud Privacy Policy

Important: Cloud backups are encrypted before transmission. We do not have access to the encryption keys or your cloud storage credentials.

Diagnostics & Crash Reports (Minimal)

We may collect minimal, anonymized crash reports to improve app stability:

• Device information: Device model, OS version, app version
• Crash data: Stack traces, error logs (no financial data included)
• Performance metrics: App launch time, memory usage (aggregated, anonymized)

No behavioral analytics: We do not use analytics tools that track your behavior, screen views, or interactions. We do not collect data on which features you use or how often you use the app.

Third-Party Services & SDKs

Tadbir operates with minimal third-party dependencies to protect your privacy. The following services may process limited data:

Cloud Storage (Optional, User-Initiated)

• Google Drive API: Used only if you enable Android cloud backup. Processes encrypted backup files. Privacy Policy
• iCloud Kit: Used only if you enable iOS cloud backup. Processes encrypted backup files. Privacy Policy

Crash Reporting (If Implemented)

If we implement crash reporting in future versions, we will use privacy-respecting services and update this policy. Currently, crash data is collected only through app store mechanisms (Google Play Console, Apple App Store Connect).

What We DON'T Use

To be transparent, we explicitly do NOT integrate:

• ❌ Advertising networks (no ads, ever)
• ❌ Behavioral analytics (no tracking pixels, no heatmaps)
• ❌ Social media SDKs (no Facebook, no Twitter)
• ❌ Location tracking services
• ❌ Third-party AI/ML services that transmit your data

Commitment: If we add any new third-party service in the future, we will update this section and notify you through an in-app announcement with the option to opt out.

App Permissions

Tadbir requests the following device permissions. All permissions are requested with clear explanations, and you can revoke them at any time through your device settings:

Required Permissions

• Storage (Read/Write): To save and restore your financial data locally on your device. Without this permission, the app cannot function.

Optional Permissions

• Camera: To capture receipt photos that you can attach to transactions. Only used when you explicitly tap "Add Receipt Photo".
• Photo Library: To select existing photos from your device to attach as receipts.
• Notifications: To send you optional reminders about budget limits, bill due dates, or savings goals. Disabled by default; you must opt in through Settings.
• Biometric Authentication (Fingerprint/Face ID): To secure app access with your device's biometric security. Enabled only if you activate "App Lock" in Settings.

Note: We never request permissions for contacts, microphone, location, or phone calls. These are not needed for expense tracking.

Data Retention & Deletion

Local Data

All locally stored data remains on your device indefinitely until you manually delete it through the app's data management features:

• Delete individual transactions: Swipe left on any transaction → Delete
• Delete categories/budgets: Settings → Manage Categories → Delete
• Clear all data: Settings → Data Management → Clear All Data → Confirm
• Uninstall the app: All local data is permanently removed when you uninstall Tadbir

Cloud Backups (If Enabled)

If you enable cloud backup features:

• Backup retention: Backup files are retained by your chosen provider (Google Drive/iCloud) according to their retention policies
• Manual deletion: You can delete cloud backups at any time through the provider's interface (Google Drive app/iCloud Settings)
• Automatic cleanup: When you delete the app, cloud backups remain in your storage until you manually delete them
• Deletion timeline: Complete backup deletion through the cloud provider is processed within 30 days of your deletion request

Cached Data (Minimal)

If we introduce any server-side features in the future, cached data would be purged within 7 days. Currently, no data is cached on our servers because we operate no backend.

Request Data Deletion

To request complete data deletion (if applicable for future cloud features):

1. Email privacy@tadbirlabs.com with subject "Data Deletion Request"
2. Include your registered email address (if you created an account in future versions)
3. We will provide detailed instructions within 48 hours
4. Deletion is completed within 30 days for GDPR compliance

Security Measures

We take the security of your financial data seriously, even though it primarily resides on your device:

Local Storage Security

• Device security: We strongly recommend enabling a device passcode/PIN and biometric authentication
• App-level encryption: Sensitive data fields (notes, custom categories) are encrypted using industry-standard AES-256 encryption before being stored locally
• No root/jailbreak support: The app detects rooted or jailbroken devices and warns you of security risks
• App lock feature: Optional PIN/biometric lock to restrict app access

Cloud Backup Security (If Enabled)

• Encryption in transit: All data transmitted to cloud providers uses HTTPS/TLS 1.3
• Encryption at rest: Backup files are encrypted before upload; decryption keys are derived from your device-specific credentials
• Zero-knowledge architecture: We cannot decrypt your cloud backups; only your device has the decryption keys

Infrastructure Security

Since we operate no backend servers for data storage:

• No risk of centralized data breaches
• No server-side vulnerabilities that could expose your financial data
• Reduced attack surface compared to traditional cloud-first apps

Your Responsibility: The security of your data depends significantly on your device's security. Please enable device encryption, use strong passwords, keep your OS updated, and avoid installing untrusted apps.

Your Privacy Rights

We respect your privacy rights under various global privacy laws. Depending on your location, you may have the following rights:

For All Users

• Access: Export your data in CSV or JSON format via Settings → Export Data
• Correction: Update inaccurate data within the app at any time
• Deletion: Delete your data locally through Settings → Data Management, or delete cloud backups through your cloud provider
• Portability: Export your data in machine-readable formats (CSV, JSON) for use in other applications
• Transparency: Full visibility into what data is stored (Settings → Data & Privacy → View Stored Data)

Additional Rights for EU/EEA/UK Users (GDPR)

If you are located in the European Union, European Economic Area, or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR):

• Right to Data Portability: Receive your data in a structured, commonly used, machine-readable format
• Right to Restriction: Request that we limit processing of your data (applicable if we add server-side features)
• Right to Object: Object to data processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time for optional features (cloud sync, notifications)
• Right to Lodge a Complaint: File a complaint with your local data protection authority if you believe we violated GDPR
• Automated Decision-Making: Right to opt out of automated decision-making (not applicable; we don't use automated profiling)

Data Controller: TadbirLabs acts as the data controller for local data processing. For cloud backups, you and your cloud provider share data controller responsibilities.

Legal Basis: We process your data based on your consent (for optional features) and contractual necessity (to provide the app's core functionality).

Additional Rights for California Users (CCPA/CPRA)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

• Right to Know: Request disclosure of categories and specific personal information we collect, use, disclose, and sell
• Right to Delete: Request deletion of your personal information subject to certain exceptions
• Right to Opt-Out of Sales: We do not sell personal information, so this right is not applicable
• Right to Opt-Out of Sharing: We do not share personal information for cross-context behavioral advertising
• Right to Correct: Request correction of inaccurate personal information
• Right to Limit Sensitive Data Use: Not applicable; we minimize sensitive data collection
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

Do Not Sell My Personal Information: We do not sell or share personal information. This statement serves as our official CCPA disclosure.

How to Exercise Your Rights

To exercise any of the rights above:

1. Email us: privacy@tadbirlabs.com with subject line "Privacy Rights Request"
2. Include: Your name, email (if applicable), specific right you wish to exercise, and jurisdiction
3. Verification: We may request verification of your identity to protect against fraudulent requests
4. Response time:
   • GDPR requests: Within 30 days (extendable to 60 days for complex requests)
   • CCPA requests: Within 45 days (extendable to 90 days for complex requests)
   • General requests: Within 10 business days

Children's Privacy

Tadbir is not directed to children under the age of 13 (or the applicable age of digital consent in your jurisdiction, which may be 16 in some EU countries). We do not knowingly collect personal information from children.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@tadbirlabs.com, and we will assist with deletion steps.

Since our app operates offline-first, any data entered by a child would be stored locally on the device. Parents can delete this data by:

• Clearing app data through Settings → Data Management
• Uninstalling the application

Policy Changes

We may update this privacy policy from time to time to reflect changes in our practices, legal requirements, or app features. When we make changes:

• Update date: We will update the "Last updated" date at the top of this policy
• Version number: We will increment the version number
• In-app notification: For material changes, we will display a notice in the app upon your next launch
• Consent: For changes that require consent, we will request your explicit agreement
• Version history: See below for a changelog of policy updates

We encourage you to review this policy periodically to stay informed about how we protect your privacy.

Privacy Policy Version History

• v2.0 (October 9, 2025) - Added comprehensive GDPR/CCPA rights, third-party SDK disclosure, detailed data retention policy, improved accessibility
• v1.0 (January 15, 2025) - Initial privacy policy published

Contact Us

If you have any questions, concerns, or requests regarding this privacy policy or our privacy practices, please contact us:

• General inquiries: tadbirlabs@gmail.com
• Privacy-specific inquiries: privacy@tadbirlabs.com
• Data protection officer: (If applicable in the future, will be designated when we reach GDPR thresholds)
• Mailing address: (To be added if required by your jurisdiction)

Response commitment: We aim to respond to all privacy inquiries within 48 hours for urgent matters and 5 business days for general inquiries.

---

This privacy policy is effective as of October 9, 2025, and applies to all users of Tadbir mobile applications.