FinX logoFinX
Back to FinX

Privacy Policy

Effective 25 June 2026

In short

FinX is a local-only app. It has no account, no backend, no cloud and no analytics. Everything you enter — wallets, transactions, people, receipts — stays on your device. Nothing is ever sent to the developer or any third party. The only data that leaves your phone is a backup file that you choose to export.

Who this applies to

This policy covers the FinX Android app (“the app”) published at github.com/shahriyardx/finx. It is a personal-finance tracker that runs entirely on your device.

Data we collect

None. FinX does not collect, transmit or sell any personal information. There are no accounts to create and no servers to sign in to. The developer has no access to your data.

Data you create, and where it lives

Wallets, income and expenses, transfers, lending and borrowing records, people, notes and attached receipt photos are stored in a local database on your device (SQLite via Drizzle ORM). Your PIN is kept in the Android secure store. This data never leaves the device unless you export it yourself.

Bank SMS import

If you turn on automatic import, FinX reads incoming SMS to recognise transactions from supported senders — currently City Bank, Standard Chartered and bKash — and adds them for you. bKash messages are auto-labelled (Cash In, Cash Out, Send Money, Remittance, Bill Payment, Cashback and similar).

All parsing happens on-device, in real time, only to fill in transactions. Message contents are never uploaded, logged remotely or shared. This feature is optional and off unless you enable it; you can revoke the SMS permission at any time in Android settings.

Permissions

  • Read SMS (RECEIVE_SMS / READ_SMS)

    Optional. When you enable automatic import, FinX reads incoming bank and bKash messages on your device to create matching transactions. Messages are parsed locally and never uploaded. Leave it disabled and FinX never touches your SMS.

  • Photos / storage

    Only when you attach a receipt photo to a transaction, or export/import a backup file you choose. FinX does not scan your gallery.

  • Biometrics (fingerprint / face)

    Optional unlock. Handled by Android's local authentication; FinX never receives or stores your biometric data.

Backup & restore

You can export a full JSON backup and restore from one. These files are created and read only when you ask, and they go wherever you choose to save or share them. Once a backup leaves the app it is outside FinX’s control, so store it somewhere you trust.

Third parties, analytics & ads

There are none. FinX contains no advertising, no analytics or crash-reporting SDKs, and no third-party trackers. It makes no network requests with your financial data.

Data retention & deletion

Your data stays until you remove it. You can delete individual records inside the app, reset all data from Settings, or uninstall the app to erase its local database and stored PIN. Because nothing is held on a server, there is nothing for the developer to delete on your behalf.

Children

FinX is a general-purpose finance tool and is not directed at children. Since it collects no data, it does not knowingly gather information from anyone, including children.

Changes to this policy

If this policy changes, the updated version will be published with a new effective date in the app’s repository. Material changes will be noted there.

Contact

Questions about privacy? Open an issue at github.com/shahriyardx/finx/issues.