Privacy Policy

Effective Date: 1 June 2025 Last Updated: 1 June 2025

 

1. Introduction

Welcome to Dioko ("the App"), developed and operated by The Digital Bubble ("we", "us", or "our"). This Privacy Policy explains what information the App collects, how it is used, where it is stored, and your rights in relation to that information.

 

We are committed to protecting your privacy. Dioko is designed as a locally-operated application — your financial data never leaves your device unless you choose to export it yourself.

 

Please read this policy carefully. By using Dioko, you agree to the practices described below.

 

2. Information We Collect

2.1 Information You Provide Directly

When you use Dioko, you may provide the following information, which is stored locally on your device:

Account credentials

    • Email address
    • Password (stored securely in the iOS Keychain — never stored in plain text)

Profile information

    • Full name
    • Mobile phone number
    • City and country of residence
    • Profile photo

Financial data

    • Transaction names, amounts, categories, and frequencies
    • Transaction type (expense or income)
    • Whether a transaction is included in financial metrics

App content

    • Custom categories you create
    • Notification data generated within the app

 

2.2 Information Collected Automatically

Dioko does not use analytics SDKs, advertising networks, or crash reporting services. The App does not automatically collect device identifiers, usage statistics, or behavioural data.

 

A locally generated UUID (a random unique identifier) is created when you register an account. This identifier exists only on your device and is not transmitted to any server.

 

2.3 Third-Party Data

The Profile screen fetches a random piece of financial or general advice from the public API at api.adviceslip.com. This request contains no personal information — it is a simple, anonymous GET request. We have no control over or affiliation with adviceslip.com, and we encourage you to review their privacy practices independently.

No other third-party services, APIs, or SDKs are used within the App.

 

3. How We Use Your Information

All information you provide is used solely to operate the App on your device. Specifically:

    • Account credentials are used to authenticate you at login and to support password reset via biometric verification.
    • Profile information is displayed within the App and is not used for any other purpose.
    • Financial data is used to calculate totals, generate charts, and power the statistics features within the App.
    • Categories and notifications are used to organise your transactions and display in-app messages.

We do not use your information for marketing, advertising, profiling, or any automated decision-making.

 

4. How Your Information Is Stored

4.1 On-Device Storage

All data you enter into Dioko — including your profile, transactions, categories, and notifications — is stored locally on your device using iOS UserDefaults and the iOS Keychain. Your password is stored exclusively in the Keychain, which is encrypted by the operating system.

 

Your data is never transmitted to our servers, because we do not operate any backend servers or cloud infrastructure for user data.

 

4.2 Biometric Authentication

If you enable Face ID or Touch ID, authentication is handled entirely by the iOS LocalAuthentication framework. Dioko never has access to your biometric data. Apple's framework confirms authentication success or failure — nothing more is shared with the App.

 

4.3 Export Files

You may export your data at any time using the Download feature on the Profile screen. This creates a plain-text backup file saved to your device's temporary storage and shared via the iOS share sheet. Once shared, the file is subject to the privacy practices of wherever you send it (e.g. email, Files app, AirDrop). You are responsible for keeping exported files secure.

 

5. Data Sharing and Disclosure

We do not sell, rent, trade, or share your personal information with any third parties, except in the following limited circumstances:

    • Your explicit action: If you use the Export feature and share the file via a third-party service (e.g. email, cloud storage), your data will be governed by that service's privacy policy.
    • Legal requirements: We may disclose information if required to do so by law or in response to a valid legal request. Given that we do not hold your data on our servers, any such request would apply to data held on your own device.

6. Data Retention and Deletion

Because all data is stored locally on your device, you have full control over retention:

    • Delete a transaction: Swipe left on any transaction in the app and tap Delete.
    • Delete a category: Open Add Category, swipe left on any category.
    • Delete your account: Navigate to Profile → Delete Account. This permanently removes all app data from your device, including your credentials from the Keychain.
    • Uninstall the app: Removing the App from your device will delete all locally stored data, including UserDefaults and Keychain entries associated with Dioko.

 

We do not retain copies of your data on any external system.

 

7. Children's Privacy

Dioko is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided personal information through the App, please contact us and we will take steps to remove that information.

 

8. Your Rights

Depending on your jurisdiction, you may have rights including:

    • The right to access personal data we hold about you
    • The right to correct inaccurate data
    • The right to delete your data
    • The right to data portability

 

Because Dioko stores all data locally on your device, you can exercise all of these rights directly within the App without needing to contact us. If you have questions or concerns, please reach out using the contact details in Section 11.

 

9. Security

We take the security of your information seriously:

    • Passwords are stored using the iOS Keychain, which is hardware-encrypted on modern Apple devices.
    • No financial or personal data is transmitted over the internet.
    • Biometric authentication leverages Apple's secure enclave — biometric data is never exposed to the App.

While we take reasonable precautions, no security measure is perfect. You are responsible for keeping your device and passcode secure.

 

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this document. We encourage you to review this policy periodically. Continued use of the App after changes are posted constitutes your acceptance of the updated policy.

 

11. Contact Us

If you have questions, concerns, or requests relating to this Privacy Policy, please contact us at: support@thedigitalbubble.com

.