Privacy Policy | Ledgr-Journal

Effective date: March 7, 2026

Ledgr-Journal ("we", "our", "us") provides a personal finance tracking application. This Privacy Policy explains what information we process and how we use it.

Information We Process

Transaction data you create in the app (amount, category, notes, account, date).
Optional location coordinates if you allow location access.
Google account authorization tokens if you connect Google Sheets.
Selected Google Spreadsheet ID for sync configuration.

How We Use Information

Provide core app functionality for recording and viewing transactions.
Sync your data with the Google Spreadsheet you select.
Improve reliability and diagnose technical issues.

Google User Data

If you connect Google Sheets, we request only the drive.file scope, which limits access to spreadsheets created by or explicitly selected for use with Ledgr. We use this access strictly to read and write transaction rows in your chosen spreadsheet.

We do not sell Google user data and we do not use it for advertising.

Data Protection

We take the following measures to protect your data, including any data obtained from Google APIs:

All communication with Google APIs is transmitted over HTTPS/TLS encryption.
OAuth tokens (access and refresh tokens) are stored locally on your device only and are never transmitted to any third-party server.
No Google user data is collected, stored, or processed on any external server. The app communicates directly between your device and Google's APIs.
The app requests only the minimum scope necessary (drive.file) to limit access to spreadsheets you explicitly create or select.

Data Storage

Your transaction data is stored locally on your device. If you enable Google Sheets sync, relevant transaction data is also written to your selected spreadsheet.

Data Retention & Deletion

Google user data (OAuth access and refresh tokens) is retained on your device only for as long as you remain signed in to Google within the app. This data is automatically and permanently deleted when you:

Sign out of Google in the app's Settings screen.
Delete the Ledgr app from your device.

No Google user data is retained on any server. Once tokens are removed from your device, no copy exists anywhere.

You may also revoke Ledgr's access to your Google account at any time by visiting Google Account Permissions.

To request deletion of any other data, contact us at support@noahyao.me.

Your Choices

You may disconnect Google access at any time from app settings.
You can stop using location features by disabling location permission in system settings.

Contact

For privacy questions or deletion requests, contact: support@noahyao.me