Data Policy — Clari by BFY

✦ Complete data map

Every piece of data Clari touches, where it lives, and what happens to it:

Data	Where stored	Sent anywhere?	Purpose
Transaction SMS content	Read from device, parsed in RAM — not copied out	Never	Detect & log expenses automatically
Imported PDF statements	Read on-device when you pick a file	Never	Parse transactions from the statement
Transaction ledger & categories	Local device database (SQLite)	Never	Show your spending history & insights
Dues, EMIs & reminders	Local device database (SQLite)	Never	Notify you before payments are due
PIN (hashed)	Local device storage (MMKV)	Never	App lock authentication
App settings & preferences	Local device storage (MMKV)	Never	Persist user choices & theme
Trial start timestamp	Local device storage (MMKV)	Never	Track 7-day trial period
Google Play subscription token	Local device storage (MMKV)	Google Play only	Verify Pro subscription status
Exported CSV / JSON	Saved where you choose (Drive, email, files)	Only where you send it	Your own backup & portability
Crash reports (opt-in only)	Not stored locally	Anonymised receipt only	Bug fixing — no financial data included

🔐 Security measures

Even though everything stays on your device, we take security seriously:

🔒

On-device database & encrypted storage

Your ledger lives in a private SQLite database scoped to the app, and settings use MMKV key-value storage. Nothing is synced to a server.

🔑

PIN never stored in plain text

Your PIN is hashed before storage. Even if someone accessed your device's storage, they could not recover your PIN from the stored value.

📵

No network calls to read your money

SMS parsing and statement import run entirely on-device. When a transaction is logged, nothing is sent over the internet — it is instant and private.

✅

HTTPS-only for the one network request

The single external call — verifying your Google Play subscription token — uses a TLS 1.2+ HTTPS connection. No plain-text network traffic.

🗑️

Full deletion on uninstall

Uninstalling Clari or clearing app data permanently deletes all locally stored information. We have no copy, and cannot restore it.

🚫

No third-party analytics or ad SDKs

Clari does not include Firebase, Google Analytics, Facebook SDK, Adjust, Amplitude, or any other analytics or advertising library.

🧮 How SMS & statement parsing works

Clari turns your messages and statements into a ledger entirely on your phone. Here is exactly how it works:

What is read — only financial transaction alerts (debits, credits, UPI, card spends) and any PDF statement you explicitly choose to import.
What is NOT sent — the message text, the statement file, your transactions, balances, or any identifier about you or your device.
Where it runs — the parsing logic runs locally on-device. OTPs and non-financial messages are ignored.
What you control — you can edit or delete any parsed transaction, recategorise it, or turn off SMS sync entirely and add expenses manually.

⏱ Data retention

Because all data is stored locally on your device, you control retention entirely. There is no server-side retention period to manage.

Within the app

Your ledger is retained locally for as long as the app is installed. You can delete individual transactions or clear all data from within app settings at any time.

Support emails

If you email us for support, we retain your email and message for up to 2 years to provide ongoing support, then delete it. You can request deletion sooner at any time.

Crash reports (opt-in)

Anonymised crash reports are retained for 90 days for debugging, then automatically deleted.

⚖️ Your rights & regulatory compliance

Clari is designed to comply with major data protection regulations by minimising data collection to near-zero. Regardless, you retain the following rights:

Right to access — your data is on your device. Open the app to see it.
Right to erasure — uninstall the app, use "Clear app data", or clear data inside the app.
Right to restriction — disable individual permissions via Android Settings at any time.
Right to object — disable crash reporting by not opting in (or opting out in Settings).
Right to portability — export your full ledger to CSV or JSON whenever you like.

For EU/EEA users (GDPR), UK users (UK GDPR), California users (CCPA), and Indian users (DPDP Act 2023) — your applicable rights above apply in full. Contact us if you need to exercise any right we handle server-side (e.g., deletion of support emails).

📧 Data requests: hello@bfyai.in — we aim to respond within 72 hours.

▶ Google Play & payments

All subscription payments are processed by Google LLC through the Google Play Store. bfyaı does not receive, store, or process any payment card information.

Google may collect device identifiers and payment information in accordance with their own Privacy Policy. We have no control over Google's data practices.

The only data we receive from Google Play is a subscription receipt token confirming whether your subscription is active. This token is stored locally on your device and used only to unlock Pro features.

✉ Questions about your data

bfyaı — Data & Privacy
Email: hello@bfyai.in
Website: clari.bfyai.in
Response time: within 72 hours