Unifolio Privacy Policy

1. Overview

Unifolio (the “Service”) is a tool to aggregate and view personal assets for reference. We do not connect to, access, or operate any real bank, crypto exchange, or brokerage accounts. This Policy explains what we collect, how we use it, and your choices.

2. What We Collect

• Account basics: email address, user ID, display name (if provided) to enable sign-in and sync.
• Asset entries you input: e.g., bank/foreign/exchange/stock symbols, quantities, purchase prices, notes, and other fields you type into the app.
• Market/reference data (non-personal): public exchange rates, crypto quotes, or stock information used to estimate values; this does not identify you.
• App diagnostics (minimal): basic logs required to operate, troubleshoot, and improve reliability. We do not collect photos, precise location, contacts, or address books.

We do not collect: bank or brokerage passwords, API keys, private keys, seed phrases, or any credentials that could operate your financial accounts.

3. How We Use Data

• Provide core features: show your portfolio, compute estimates, and sync your entries across devices.
• Maintain and improve the Service, including troubleshooting and performance.
• Communicate about support requests or important updates.
• Comply with applicable laws and enforce our terms.

4. Sharing and Disclosure

• Service providers: We use trusted providers (e.g., Firebase Authentication/Firestore/Hosting) for core functions under appropriate safeguards.
• No selling: We do not sell or rent your personal data.
• Legal: We may disclose information if required by law or to protect rights, safety, and the integrity of the Service.

5. Storage, Location, and Security

• Storage: Your entries are stored in our cloud database and may be cached on your device for performance.
• Location: Data may be processed in countries where our providers operate; specific locations may change over time.
• Security: We employ reasonable technical and organizational measures (e.g., encryption in transit, access controls). No method is 100% secure; protect your device and login credentials.

6. Retention

• We retain your asset entries until you delete them or request account deletion, unless a longer period is required by law.
• Local caches on your device are temporary and can be cleared by reinstalling the app or using OS storage settings.

7. Your Rights and Choices

• Access/Correct/Delete: You may request access to, correction of, or deletion of your data. If in-app controls are unavailable, requests will be handled on a commercially reasonable basis through any available request channels (if provided).
• Marketing opt-out: We currently do not send marketing messages; if that changes, an opt-out will be provided.
• Data portability: Where applicable, you may request a copy of your data, subject to reasonable verification and effort.

8. Children’s Privacy

The Service is not directed to children under 13, and we do not knowingly collect personal information from them. If you believe a child has provided data, please notify us via any available channel so we can address it, and discontinue use as appropriate.

9. Changes to This Policy

We may update this Policy from time to time. We will update the “Last updated” date above and, when appropriate, provide notice within the Service.