Legal

Privacy Policy

Last updated: May 11, 2026

This Privacy Policy describes how Duenut (the "App", "we", "us", or "our") collects, uses, and protects your information when you use the Duenut mobile application. We designed Duenut to collect as little data as possible. By using the App, you agree to the terms of this policy.

In short: Duenut is a reminder app — not a banking app. We never ask for your card numbers, PINs, CVVs, or bank login credentials. Your data stays on your device unless you choose to sign in and enable cloud sync.

1. Information we collect

1.1 Information you provide

When you add a credit card or bill to Duenut, you enter information such as:

A nickname for the card or bill (e.g. "Sapphire" or "Electricity")
For cards: the statement closing day and the payment due day of the month
For bills: the due day of the month and a category (rent, utilities, internet, subscriptions, etc.)
Optional color, labels, and notes you choose to add
Reminder preferences (when to notify you before or after the due date, and whether reminders are muted)
Payment history you generate by marking items as paid each month
Optional issuing bank selection (used to open that bank's app on your device)

Duenut does not request, store, or transmit your actual card numbers, CVVs, PINs, bank statements, balances, transactions, or bank login credentials. You should never store these in the note field.

1.2 Account information (optional)

If you choose to sign in to enable cloud sync, you authenticate using Sign in with Apple. We receive a stable user identifier provided by Apple. If you choose to share your name or email (including via Apple's private relay), that information is associated with your account through Firebase Authentication.

1.3 App preferences

Duenut stores app-level preferences such as your selected language, sort and filter choices, and global reminder time. These are kept on your device and, when you are signed in, synced with your other devices.

1.4 Device and diagnostic information

To improve reliability, we may process:

Basic diagnostic data such as crash reports and error logs (via Firebase Crashlytics)
Aggregated, non-identifying usage events such as app opens and feature usage (via Firebase Analytics)
App version, operating system version, device model, and language

1.5 Purchases and subscriptions

Purchases of Duenut Premium are processed by Apple through the App Store. We use RevenueCat to verify your purchase and manage your subscription entitlement. RevenueCat receives a pseudonymous user identifier and your App Store transaction receipt; we do not receive or store your payment method.

2. How we use information

To provide the core features of the App (show your cards and bills, schedule reminders, mark payments as paid, track on-time streaks).
To sync your data across your devices when you sign in.
To schedule local notifications you have enabled.
To verify and restore Premium entitlements.
To diagnose crashes and improve the App's stability and performance.
To comply with legal obligations and enforce our Terms of Use.

3. How your data is stored

Your card, bill, and preference data is stored locally on your device using the iOS storage system (AsyncStorage). Sign-in credentials are stored in the iOS Keychain. If you sign in, your card, bill, and preference data is also stored in Google Cloud Firestore associated with your Sign in with Apple identifier so it can be restored on your other devices. The App works fully offline — cloud sync is optional.

Data in transit is encrypted using HTTPS/TLS. Data at rest is protected by the security controls of Apple and our cloud provider.

4. Sharing and third parties

We do not sell your personal information, and we do not share it with advertisers. We use a limited set of third-party services solely to operate the App:

Apple — Sign in with Apple and App Store purchases.
Google Firebase (Authentication, Cloud Firestore, Crashlytics, Analytics) — syncing your cards and bills, and diagnosing issues.
RevenueCat — subscription entitlement management and receipt validation.

These providers process data on our behalf subject to their own privacy terms. We may also disclose information if required by law or to protect the rights, property, or safety of Duenut, our users, or others.

5. Notifications

Duenut sends local notifications as reminders that a credit card statement is closing or that a payment is due. These reminders are scheduled and delivered entirely on your device — no push-notification token is sent to our servers. You can enable, disable, or customize reminders at any time from the Settings screen or the iOS Settings app.

6. Opening third-party bank apps

As a convenience, Duenut can open your issuing bank's app directly when you tap "Open app" on a card. Duenut does not receive, read, or transmit any information from your bank's app; it simply launches the app using a URL scheme provided by iOS.

7. Children's privacy

Duenut is not directed to children under the age of 13 (or the applicable minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with information, please contact us so we can delete it.

8. Your rights and choices

Access and deletion. You can view, edit, or delete any card or bill from within the App at any time.
Stop syncing. Sign out from the Settings screen to stop cloud sync. Your data will remain on the device but will no longer sync.
Delete your account. To permanently delete your synced data, sign out and contact us at the email below, and we will delete your synced records.
Regional rights. Depending on your location (e.g. EEA, UK, California, Thailand), you may have additional rights under laws such as GDPR, UK GDPR, CCPA, or PDPA — including the right to access, correct, delete, or export your data, and to object to processing. Contact us to exercise these rights.

9. Data retention

We retain your synced data for as long as your account is active or as needed to provide the App. If you delete the App and stop using cloud sync, synced records tied to your Apple identifier may be retained for a reasonable period to allow restoration, after which they may be deleted.

10. International transfers

Our cloud providers may process your data in countries other than your own. By using the App, you consent to such transfers, carried out with appropriate safeguards.

11. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the "Last updated" date above and, where appropriate, provide additional notice. Your continued use of the App after changes become effective means you accept the revised policy.

12. Contact us

If you have questions about this policy or your data, contact us at:
winwanwon123@gmail.com