Privacy Policy

Effective Date: March 29, 2026

Coconutica ("we", "us", or "our") operates the TrackDue mobile application (bundle ID: com.coconutica.TrackDue). This Privacy Policy explains how we collect, use, and protect your information when you use our app.

1. Information You Provide

TrackDue allows you to enter and manage personal financial data, including:

• Expenses and transactions (amounts, dates, descriptions)
• Bills and loan payment schedules
• Categories and tags
• Currency preferences

This data is entered by you and is essential to the core functionality of the app.

2. Local-First Data Storage

TrackDue is designed with a local-first architecture. By default, all of your financial data is stored exclusively on your device using Apple's on-device storage frameworks. Your data does not leave your device unless you explicitly enable cloud sync.

3. Cloud Sync (Optional)

If you choose to enable cloud backup and sync, your data is transmitted to our servers powered by Cloudflare Workers. All data in transit is encrypted via HTTPS (TLS 1.2+). Cloud sync is entirely optional and can be disabled at any time in the app settings.

4. Sign in with Apple

TrackDue supports Sign in with Apple for account creation. When you use this feature, we receive:

• Your Apple user identifier (a unique, anonymous ID)
• Your email address (only if you choose to share it; Apple may provide a private relay address)

We do not receive your Apple ID password, and we use this information solely for account authentication.

5. Biometric Authentication

TrackDue supports Face ID and Touch ID for app lock functionality. Biometric authentication is processed entirely by Apple's secure enclave on your device. We never access, store, or transmit your biometric data. The biometric data never leaves your device.

6. Camera & Receipt Scanning

TrackDue uses your device camera for receipt scanning with optical character recognition (OCR). Images captured for receipt scanning are processed locally on your device. Receipt images are not uploaded to any server unless you have explicitly enabled cloud sync. You can revoke camera access at any time through your device's Settings.

7. What We Do Not Collect

We are committed to your privacy. TrackDue does not:

• Use any third-party analytics or tracking SDKs
• Display advertisements or use ad tracking
• Sell, rent, or share your personal data with third parties
• Collect device identifiers for profiling purposes
• Track your location

8. Subscriptions

TrackDue offers optional premium subscriptions managed through the Apple App Store. All payment processing is handled by Apple. We do not collect or store your payment information, credit card details, or billing address.

9. Data Retention & Deletion

Your locally stored data remains on your device until you delete the app or clear the app data. If you use cloud sync, you can request deletion of your cloud data by contacting us at support@trackdue.co. We will process deletion requests within 30 days.

10. Children's Privacy

TrackDue is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy in the app and updating the effective date above. Your continued use of TrackDue after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions or concerns about this Privacy Policy or your data, please contact us at:

Email: support@trackdue.co