LogoGive & Take

Privacy Policy - Give & Take

Version: V1.2 | Last Updated: March 2026

"Give & Take" is provided by the Give & Take Development Team (hereinafter referred to as "we", "us", or "our"). We highly value your privacy and data sovereignty. This policy explains how we handle your information when you use our application.

Special Note: This app defaults to a "Strictly Offline-First" mode. All your ledger data is stored solely on your local device by default. We do not have a backend server to snoop on your ledgers. The app only makes necessary network requests when you actively trigger "AI Voice Bookkeeping", "Cloud Backup", or "Subscription Payments".

1. Minimalist Permission Usage

We follow the principle of "data minimization" and never abuse system permissions:

  • Local Notifications: Used to provide you with debt due dates or customer renewal reminders. This feature is triggered by pure local messages and does not read your system calendar. Your schedule remains absolutely private.
  • Contact Import Mechanism: When you need to quickly import a contact from your system address book, the app calls the native iOS/Android system picker. We do not, and will never, request background access to read your entire contact list. Only the specific contact information you manually select is passed to the app and stored locally.
  • Local Storage: Used to safely save your database files and local backup archives on your device.

2. Cloud Backup & Financial-Grade Encryption

To prevent data loss due to device loss, we offer a "Cloud Backup & Restore" feature for Pro members.

  • Account Information: If you use the backup feature, we only record your linked email address or third-party account ID to associate you with your cloud backup files. We may also store non-sensitive basic information like your custom nickname or avatar.
  • End-to-End Encryption (Zero-Knowledge): Before your ledger data leaves your phone, it is compressed and encrypted using the financial-grade AES-256-GCM algorithm. Your "Backup Password" is the only key to unlock the data (derived via standard PBKDF2).
  • Absolute Data Sovereignty: Even though the backup files are stored on our cloud servers, without your password, no one can decrypt your ledgers (including us). Please make sure to remember your password. If you lose it, we will be completely unable to help you recover your data.

3. AI Assistant Data Processing

  • On-Demand Only: Only when you actively use the AI bookkeeping feature will your text input (or speech-to-text output) and the necessary, anonymized context be encrypted and sent to a third-party Large Language Model (e.g., DeepSeek) for intent parsing.
  • Privacy Commitment: Your text data is used solely for instantaneous parsing, immediately destroyed in memory after completion, and will never be stored or used to train public AI models. If you do not tap or use the AI input box, the app will not generate any AI-related network requests.

4. Information Use and Sharing

We will never sell your information to any third party. Data transmission only occurs in the following functionally necessary scenarios:

  • AI Providers: Instantaneous transmission of text commands for semantic analysis.
  • Cloud Storage Providers: Hosting only the secure "black box" backup files encrypted by your personal password.
  • Payment Channels: Calling Apple App Store or Google Play payment interfaces for subscription settlement.

5. Your Rights

  • Full Control: You can view, modify, and locally export your full ledgers at any time within the app. Through the version history feature, you have the freedom to choose among multiple cloud backup copies.
  • Account Deletion: You can choose to delete your account at any time within the app. Once deleted, all your encrypted backup files stored in the cloud will be immediately, permanently, and irreversibly deleted.

6. Contact Us

If you have any questions regarding privacy and security, please contact us at:

Give & Take - Offline-First Smart Ledger