Keepr Privacy Policy

Your financial privacy is our highest priority. This Privacy Policy details our Zero-Knowledge data policy, outlining how **Keepr** guarantees total data isolation[cite: 2].

1. Client-Side Cryptographic Isolation

All budgets, entries, amounts, and category mappings are encrypted at rest inside your device's isolated room database utilizing full database SQLCipher full-disk AES-256 wrapping[cite: 2]. Key files are preserved under the hardware isolated **Android Keystore**[cite: 2]. Cleartext entries physically never leave your local phone's operating sandbox[cite: 2].

2. No Account Linking or External Transmission

The Keepr backend server (running on Cloud Run) acts solely as an idempotent metadata entitlement validator and a wrapped, encrypted transport layer[cite: 2]. Your backend records are strictly garbled base-64 ciphertext representing local transactions[cite: 2]. It is mathematically impossible for Keepr, Google, or any third party to decipher your financial ledger[cite: 2].

3. Google Play Billing and Payments

To ensure absolute compartmentalization, Keepr delegates 100% of purchase execution, billing records, taxes, and transaction tracking to the secure **Google Play Billing API**[cite: 2]. No credit cards or payment credentials are seen, processed, or collected by Keepr.

4. Right to Deletion

Users hold sovereign control over their cryptographic identities. You can cleanly reset your database or wipe server metadata directly inside the Keepr setting screen, immediately deleting your encrypted partitions on both local flash storage and metadata servers.