Privacy Policy

Effective: April 20, 2026 · Last updated: April 20, 2026

This policy explains what DiscEarn (the “app”, “we”) collects from you, why, and how we handle it. We wrote it in plain language. Questions? Email support@discearn.app.

The short version: Everything you enter into DiscEarn stays tied to your account only. We do not sell your data. We do not use it for advertising. We do not share it across apps. You can delete everything at any time from inside the app.

1. Who we are

DiscEarn is operated by Alexander Seiz, a sole proprietor based in the United States. Contact: support@discearn.app.

2. What we collect

Account information

Your email address (for sign-in and password reset)
A display name or nickname you provide
The times you created and last logged in to your account

Financial information — entered by you

Account balances and institution names
Transactions, categories, and merchant names
Budgets, savings goals, and goal contributions
Debts, interest rates, minimum payments, and payment history
Subscriptions, cancellation dates, and monthly savings
Recurring fixed expenses (rent, utilities, insurance, etc.)
Income sources, amounts, and frequencies
Assets (home, retirement, brokerage, vehicles) and their values
Net-worth snapshots over time

We never ask for, and never store, full bank account numbers, full card numbers, or full Social Security numbers. Everything you enter about your finances is stored encrypted at rest and in transit.

Receipt photos

If you tap the Scan Receipt button, the image is sent to Taggun, a third-party OCR service, for text extraction. Taggun extracts merchant name, total, and date from the image and returns them to the app. The image itself is not retained by us after processing, and the request is routed through our server so your Taggun credentials never leave our backend. Review Taggun’s Privacy Policy.

Usage and gamification data

XP and coin events (e.g. “cancelled a subscription”)
Streak days and last-active date
Achievements unlocked
Tree growth stage and score

Diagnostic data (if you crash)

We use Sentry to collect crash reports and error traces. These reports include your device model, operating system version, and a stack trace of the crash. They do not include any financial values, account balances, or transaction details. Review Sentry’s Privacy Policy.

3. What we do not collect

We do not collect your precise location
We do not read your contacts, photo library (beyond a single receipt image you choose to scan), or files
We do not use cross-app or cross-site tracking identifiers
We do not sell or rent your data to anyone
We do not share your data with advertisers

4. How we use your data

To operate DiscEarn’s core features — tracking your budget, calculating your net worth, projecting your cashflow, growing your tree
To send you password reset emails when you request them
To diagnose crashes and fix bugs (via Sentry)
To provide customer support when you email us

That’s the full list. We don’t use your data for anything else.

5. Service providers (sub-processors)

We share data with the following processors strictly to provide the app:

Supabase — stores your account, financial records, and app state. Data is encrypted in transit (TLS 1.2+) and at rest. Hosted in the United States.
Taggun — extracts text from receipt images you choose to scan.
Sentry — receives crash reports and error traces. No financial details.
Apple / Google — handle distribution of the app. They do not receive your financial data.

6. Your rights

You can at any time:

Access — every value you’ve entered is visible inside the app
Correct — edit any entry directly through the app
Delete — tap Delete Account in Settings. This permanently removes your account and every record associated with it. You’ll receive no further communication from us. This cannot be undone.
Export — email support@discearn.app and we’ll send a JSON export of your data within 30 days

If you are in the European Union, United Kingdom, or California, you have additional rights under GDPR and CCPA, including the right to object to specific processing and the right to lodge a complaint with a supervisory authority. Contact us and we will honor those rights within the timelines required by law.

7. Data retention

Active accounts: retained until you delete your account
Deleted accounts: removed immediately from our primary database via cascade deletion across every user-scoped table. Short-term database backups are retained for up to 7 days and then cycled out.
Crash reports: retained by Sentry for 90 days, after which they are purged
Email sent to support: retained for up to 12 months so we can maintain conversation context

8. Children

DiscEarn is not directed to children under 13, and we do not knowingly collect personal information from anyone under 13. If you believe we have inadvertently collected data from a child, please contact us and we will delete it.

9. Security

All data moves over TLS. Supabase encrypts data at rest. Authentication uses short-lived JWT access tokens with refresh rotation. Row-level security ensures each user can only read their own records. We use a managed secrets store for API keys; no third-party credentials are embedded in the app binary.

Despite these safeguards, no method of electronic transmission or storage is 100% secure. If you spot a security issue, please email support@discearn.app.

10. Changes to this policy

We’ll update the “Last updated” date above when this policy changes. Material changes will be communicated via an in-app notice on the next app launch.

11. Contact

Questions or concerns? Email support@discearn.app.