Legal

Privacy Policy

Effective date: May 7, 2026 · Last updated: May 7, 2026 · Applies to all Wild Duck Labs Android apps

🔒

Short version: Our apps collect no personal data, connect to no servers, and store everything exclusively on your device. We have nothing to sell and nothing to share.

Apps Covered by This Policy

This Privacy Policy applies to all Android applications published by Wild Duck Labs on Google Play:

💰

Money Manager — Offline Finance App

com.wildducklabs.moneymanager

Ages 3+

This policy will be updated as new apps are published. Each app's specific permissions and storage details are documented in the App-Specific Details section below.

Who We Are

Wild Duck Labs is an independent mobile app studio. We build premium, privacy-first applications for Android. We are the sole developer and publisher of the apps listed above.

Contact: support@wildducklabs.com

Data We Collect

We collect no personal data. None.

All information you enter into our apps is stored exclusively on your device. We have no servers, no user accounts, and no mechanism to receive or access your data.

Our apps do not collect, transmit, or share:

Your name, email address, or any contact information
Location data of any kind
Any content or data you enter into the app
Device identifiers, advertising IDs, or hardware fingerprints
Usage analytics, session logs, or crash reports
Biometric data (fingerprint or face recognition)
Photos, files, or media from your device

Your data may leave your device only when you explicitly choose to export or share it (e.g., a backup file or an exported report) — and only to the destination you select. We receive nothing.

On-Device Storage

Our apps store data locally using standard Android mechanisms. The specific types of storage each app uses are listed in the App-Specific Details section. In general, we may use:

SQLite database — for structured app data. Protected by Android's file-level encryption on supported devices.
Shared Preferences — for lightweight app settings such as theme, language, or preferences. Plain text, device-local.
Encrypted Secure Storage — for security-sensitive data such as a PIN, using Android's hardware-backed keystore (AES encryption).
App files and cache — for temporarily generated files (e.g., exports, backups) before you share them via the system share sheet.

None of this data is transmitted to us or any third party.

Android Permissions

Each app requests only the permissions necessary for its features. No permission is used to collect or transmit data. The specific permissions each app requests are listed in the App-Specific Details section.

We never request permissions unrelated to core app functionality. If a permission is optional (e.g., biometric unlock, notifications), the app works fully without granting it.

Internet & Network Access

Our apps are built to be fully offline. Where an app does not declare the INTERNET permission in its Android manifest, network access is blocked at the OS level — making it architecturally impossible to transmit data. There are no servers, no APIs, no analytics endpoints, and no third-party SDKs that phone home.

Third-Party Services & SDKs

Our apps use no third-party analytics, advertising, or tracking SDKs — no Firebase, AdMob, Facebook SDK, Crashlytics, Amplitude, Segment, Sentry, or similar services.

Our apps are built with the Flutter framework (open-source, Google), which handles UI rendering. Flutter does not collect personal data on our behalf and makes no network calls in our configuration.

All other libraries we use are open-source packages that operate entirely on-device without external communication.

Children's Privacy (COPPA)

All Wild Duck Labs apps are rated Ages 3+ on Google Play. Because we collect absolutely no personal data from any user, regardless of age, our apps are inherently compliant with the Children's Online Privacy Protection Act (COPPA) and Google Play's Families Policy.

We do not knowingly collect, use, or disclose personal information from children under 13. Since we collect no personal information at all, there is nothing to access, correct, or delete on anyone's behalf.

Parents or guardians with questions are welcome to contact us at support@wildducklabs.com.

Data Sharing & Sale

We do not sell, rent, trade, or share any data with any third party. We have no data to share — it all lives on your device.

Data Retention & Deletion

All app data resides on your device. You have complete control over it:

Delete data within the app at any time using in-app delete options.
Clear all app data via Android Settings → Apps → [App Name] → Storage → Clear Data.
Delete any backup or export files from your device storage.
Uninstalling the app removes all associated data from your device.

We hold no copy of your data on any server. There is nothing to request deletion of from us — your device is the only place your data exists.

Security

We design our apps with security as a core principle:

Database encryption — Android's file-level encryption protects app databases on supported devices (Android 6.0+).
Encrypted secure storage — sensitive values such as PINs are stored in Android's hardware-backed keystore (AES encryption).
Zero network surface — apps without the INTERNET permission have no network attack surface by design.
Export and backup files — files you generate may contain personal data. Treat them as sensitive and store them securely.

Your Rights

Because all data lives exclusively on your device, you exercise your data rights directly — no requests to us are required or possible:

Access — all your data is visible within the app at all times.
Portability — export or back up your data using in-app export features.
Rectification — edit any record directly in the app.
Erasure — delete individual records in-app, or clear all data via Android system settings.

Residents of the EU (GDPR), California (CCPA/CPRA), and other jurisdictions with data protection laws: since we process no personal data on our systems, no formal data subject request to us is necessary to exercise your rights.

Changes to This Policy

We may update this policy when we publish new apps, add features that affect storage behavior, or clarify existing practices. Changes will be reflected here with an updated effective date at the top of this page.

We will never introduce data collection or network transmission without updating this policy and notifying users through the relevant app's Play Store listing. Our commitment to zero data collection is a foundational design principle.

App-Specific Details

This section documents the specific permissions, storage mechanisms, and features for each app covered by this policy.

💰 Money Manager — Offline Finance App com.wildducklabs.moneymanager

A fully offline personal finance app for Android. Track income and expenses, manage multiple wallets, set budgets, monitor debts, and generate reports — with no internet connection required and no data ever leaving your device.

Permissions

USE_BIOMETRIC / USE_FINGERPRINT — optional biometric unlock (fingerprint or face). Processed entirely by Android's system APIs; we never access or store biometric data.
POST_NOTIFICATIONS — optional local reminders for recurring transactions, budget alerts (at 80% threshold), and debt due dates. All notifications are on-device with no network calls.
SCHEDULE_EXACT_ALARM / USE_EXACT_ALARM — delivers notifications at precise times (e.g., 9 AM on a scheduled date).
RECEIVE_BOOT_COMPLETED — re-schedules pending notifications after a device restart.

This app does not request INTERNET, CAMERA, ACCESS_FINE_LOCATION, or READ_CONTACTS.

On-Device Storage

SQLite database — transactions, wallets, accounts, categories, budgets, debts, recurring rules, events.
Shared Preferences — display name, preferred currency, theme, period preference (monthly/weekly), notification toggles.
Encrypted Secure Storage — optional PIN (AES, hardware-backed keystore). Auto-locks when app is backgrounded.
Receipt attachments — only the file path is stored in the database; the image stays in your device storage and is never transmitted.
Manual backup (.mmb) — written to a temp directory and shared via Android share sheet. You choose the destination.
Auto-backup — saved to external storage under money-manager-backups/ (falls back to app documents directory). Stays on device.
Exported reports — CSV, Excel, and PDF files generated on-demand, shared via share sheet, then deleted from the temp directory.

Technical Info

Platform: Android 5.0+ (API 21+)
Framework: Flutter 3.24+ / Dart 3.5+
Database: SQLite via Drift
Version: 1.0.1 (build 3)

Contact Us

Questions about this policy or our privacy practices?

Wild Duck Labs
support@wildducklabs.com
wildducklabs.com