← Back to Thicket
// Thicket

Privacy Policy

Effective date: May 5, 2026

Last updated: May 30, 2026

Thicket ("we", "us", "our") makes a personal-finance app that you can use entirely on your device. This policy explains what data we collect, how we use it, who we share it with, and the choices you have.

We try to collect as little as possible. The app works fully offline before you ever sign in — and even after you sign in, your transaction data stays on your device unless you opt into cloud sync.

1. Information we collect

When you use the app without signing in, your financial data — accounts, transactions, budgets, goals, subscriptions, categories — is stored only on your device. We do not see it.

When you sign in (link your account), we collect:

  • Your email address, used as your account identifier and to send password-reset emails.
  • A password hash (we never see your raw password — it's hashed by our authentication provider).
  • Your financial data, synced from your device to our cloud database so it's available on other devices.
  • An optional display name and avatar URL you set in Settings → Profile.
  • Operational metadata about syncs (timestamps, error messages) so we can diagnose problems.
  • Crash diagnostics and basic performance traces, sent through our crash-reporting provider (Sentry). These reports are tied only to an opaque account id — never to your email, your name, or your financial data — and help us fix bugs faster.
  • Product-usage analytics — which screens you visit, which features you use, and aggregate funnel events (e.g. "onboarding completed", "paywall viewed") — sent through our analytics provider (PostHog). Tied only to an opaque account id, never to your email, name, or the contents of your transactions.

2. AI features

If you use the AI features (auto-categorize, weekly insights, chat) while signed in, we send the necessary minimum context to Google's Gemini API to generate the response.

We send: the transaction title or chat message you typed, plus relevant context like category names and recent activity summaries. We never send your real account numbers, passwords, or contact information to the AI.

Google processes this data under their own privacy terms. We do not store the prompts or AI responses on our servers beyond the immediate request.

3. Exchange rates

When the app needs currency exchange rates, our server fetches them from a public source (open.er-api.com). No personal data is sent — only the base currency code (e.g. "USD").

4. How we use your information

We use the information described above to:

  • Provide and maintain the app's features.
  • Sync your data across your devices (only when you've signed in).
  • Generate AI suggestions, insights, and chat responses on your request.
  • Send you transactional emails (password resets, security alerts).
  • Diagnose and fix bugs.

5. Who we share data with

We do not sell your data. We do not show ads. We share data only with the service providers we need to operate the app:

  • Supabase — our database, authentication, and file storage provider. They process your synced data on our behalf.
  • Google (Gemini API) — for AI feature responses, as described in section 2.
  • Sentry — for crash reporting and performance monitoring. Receives only the opaque account id and the diagnostic context of an error, never your financial data.
  • PostHog — for product analytics (screen views, feature usage, funnel events). Receives only the opaque account id and event metadata, never your financial data.
  • RevenueCat — for managing in-app purchases and subscriptions. Receives an opaque account id and purchase metadata.
  • open.er-api.com — for currency exchange rates, as described in section 3.

6. Your rights and choices

You can use the app fully offline without ever creating an account. Until you sign in, no data leaves your device.

If you've signed in, you can:

  • Access your data anytime through the app.
  • Edit any data through the app's normal screens.
  • Sign out at any time — your data stays on your device, and the cloud copy is preserved for when you sign back in.
  • Delete your account from Settings → Delete account. This permanently removes your cloud copy. Your local copy on each device stays unless you also clear the app data.
  • Contact us to request a copy of your data or to exercise other rights granted by your local privacy law.

7. Data retention

Data on your device stays as long as the app is installed.

Data in our cloud (when you've signed in) stays as long as your account is active. When you delete your account, your cloud data is deleted within 30 days. Backup copies are purged on a rolling 90-day cycle.

Operational logs (sync events, error reports) are retained for up to 90 days.

8. Security

Data in transit between your device and our servers is encrypted with TLS.

Our database enforces row-level security: even at the database layer, your data is only accessible to you.

No system is perfectly secure. If a breach affecting your data occurs, we will notify you as soon as we are reasonably able and as required by applicable law.

9. Children

Thicket is not directed at children under 13 (or under 16 in the EU). We do not knowingly collect personal information from children. If you believe a child has signed up, please contact us and we will remove the account.

10. International data transfers

Our cloud infrastructure may store and process data in regions different from where you live. By using the app while signed in, you consent to this transfer. We use the protections required by applicable law for these transfers.

11. Changes to this policy

We may update this policy as the app evolves. When we make material changes, we'll show a notice in the app and update the effective date at the top of this page. Continued use of the app after changes means you accept the updated policy.

12. Contact us

Questions, requests, or complaints about your data: email pdivy2002@gmail.com.