Privacy Policy

DEBT DESTROYER is designed to be local-first. Most of your debt records, payment history, reminders, preferences, scenarios, and imported documents stay on your device by default.

The app only sends data to our backend or third-party services when a feature requires it or when you choose to use an optional feature such as cloud-assisted extraction, subscription verification, telemetry, or backup-related services.

We do not require you to create an account to use the core app.

• provide and operate the app
• store and display debts, payments, reminders, and reports
• calculate payoff projections and budgeting views
• import and review financial documents
• run local OCR and optional cloud-assisted extraction
• verify device integrity and protect backend services from abuse
• process subscriptions and restore premium entitlement
• send reminders and operational notifications
• provide backup and restore functionality
• improve reliability, security, and app performance
• diagnose bugs, crashes, and service issues
• respond to support requests

We do not use your data for advertising.

• debts, payments, preferences, reminders, and scenarios are stored locally by default
• OCR runs locally first when you import a document
• imported documents are reviewed before anything is saved from the import flow
• cloud-assisted extraction only happens when you explicitly allow it for a specific import
• imported documents are never auto-saved after upload without a review step

The app can help extract structured data from statements, receipts, screenshots, and PDFs.

If you choose cloud-assisted extraction, the app sends the selected import to our backend, the backend may verify Play Integrity signals and usage limits, may call one or more third-party AI or document-processing providers using server-held credentials, validates and normalizes the response, and returns structured results for review before any data is stored.

We use this process to improve extraction quality when local OCR is not enough.

DEBT DESTROYER uses Google Play subscriptions for premium features.

When you subscribe or restore a subscription, Google Play may share transaction and entitlement information with us so we can confirm active premium access, unlock premium features, restore access on a new device or after reinstall, and prevent unauthorized access to paid features.

We do not receive your full payment card details from Google Play.

Notification content is based on your debt and reminder settings. You can disable notifications in the app or in Android system settings.

• due-date reminders
• overdue reminders
• weekly summary reminders
• milestone reminders

The app may use your device's biometric or device-credential authentication to unlock the app locally.

We do not receive or store your biometric template. Authentication happens through the Android system and device security features.

You can export encrypted backups of your data.

You are responsible for keeping your backup passphrase and backup files secure.

If you deny a permission, some features may not work as intended.

• Camera: to capture documents, receipts, screenshots, and statements
• Notifications: to deliver reminders and summary alerts
• Internet: to communicate with backend services, billing systems, and integrity checks

The app may support analytics and crash reporting through optional Firebase-backed integrations.

If these features are enabled, we may collect app usage events and crash diagnostics, collect limited device and app metadata, and do not intend to log raw OCR text, balances, document paths, tokens, or other sensitive financial content in telemetry data.

If these features are disabled or not configured, the app can still run with no telemetry.

We retain data for as long as needed to provide the app and its features, unless a longer retention period is required by law, security, accounting, or abuse-prevention needs.

Because the app is local-first, much of your data remains under your control on your device. If you delete the app or clear app data, local information stored on the device may be removed.

Backup files, exported files, and imported documents may remain on your device, in your file storage, or in locations you choose until you delete them.

Backend logs and audit records may be retained for a limited period to support security, reliability, and abuse prevention.

No method of storage or transmission is completely secure, so we cannot guarantee absolute security.

• encrypted local storage for sensitive data
• secure storage for protected preferences and secrets
• encrypted full-backup archives
• backend access controls and quota protections
• request validation and schema checks for extracted data
• redacted logging practices for sensitive content

• choose whether to enable cloud-assisted extraction for a specific import
• manage app lock and hidden-balance settings
• control notification permissions
• export or delete backups and imported documents
• disable analytics or crash reporting if those options are available in your build
• uninstall the app to remove local data from the device

Some rights may be limited by the local-first design of the app, the absence of user accounts, legal obligations, or technical constraints. If you need help with a request, contact us using the details below.

• access your personal information
• correct inaccurate information
• delete certain information
• object to or restrict certain processing
• withdraw consent where processing is based on consent
• request a copy of your data

If you use cloud features, your information may be processed in countries other than the one where you live, including by service providers, cloud infrastructure vendors, or backend processors. We take reasonable steps to protect information transferred across borders.

DEBT DESTROYER is not intended for children under the age required by local law to consent to data processing. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us and we will take appropriate action.

Depending on the features you use and the configuration of your build, the app may interact with third-party services. These third parties have their own privacy policies and terms.

• Google Play Billing
• Google Play Integrity
• Firebase Analytics
• Firebase Crashlytics
• backend hosting and database providers
• optional AI or document-extraction providers

We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date and, where appropriate, provide notice in the app, on the store listing, or on our website.

• Support email: [insert support email]
• Publisher / business name: [insert legal entity or publisher name]
• Privacy contact page: [insert website or support URL]

Before publishing this policy, replace all bracketed placeholders and confirm that the text matches the final production configuration for analytics, crash reporting, backend extraction, billing, and support.