Privacy Policy

Last updated: March 24, 2026

1. Introduction

Quantics Software Inc. ("we," "our," or "us") respects the privacy of our users ("user" or "you"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our application Gradually (the "Application"), available on iOS, Android, and the web. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the application.

Gradually is built on the principle of Zero-Knowledge. This means we are designed so that we do not — and cannot — access your sensitive financial data. Your financial life is your business, and our architecture ensures it stays that way.

2. Information We Collect

We collect the minimum amount of data necessary to provide our services:

  • Account Data: Your email address, used for account creation, verification, and communications.
  • Authentication Data: Public keys associated with your passkeys, and your X25519 public key used for group encryption key exchange. We never see or store your private keys or biometrics.
  • Subscription Data: Payment status and billing details managed by Stripe (web) or Apple (iOS). We do not store or process your payment information directly.
  • Encrypted Financial Data: We store your financial data (transactions, accounts, categories, budgets, receipts, and group expenses) in an encrypted format on our servers for sync purposes. We do not hold the keys to decrypt this data.
  • Sync Metadata: To facilitate syncing across devices, certain non-sensitive metadata is transmitted in plaintext, including: record identifiers, timestamps (createdAt, updatedAt), and deletion status. This metadata does not contain any financial amounts, descriptions, or account details.
  • Usage & Traffic Data: Information such as your IP address, browser type, and device characteristics, which is processed to ensure security and performance (managed via Cloudflare).
  • Anonymized Usage Metrics: We log anonymized usage events (such as sign-up, login, and sync) on our servers to measure product adoption and retention. Your user identifier is irreversibly hashed (SHA-256 with a server-side salt) before being recorded, so these events cannot be linked back to your identity. No financial data, device information, or IP addresses are included in these metrics.

3. How We Use Your Information

We use the information we collect to:

  • Create and manage your account.
  • Sync your encrypted data across your devices.
  • Process subscription payments and manage billing.
  • Send you account-related communications (e.g., email verification, security alerts).
  • Prevent fraudulent activity and protect the security of the Service.
  • Analyze anonymized, aggregated usage metrics to understand product adoption and improve the Service.

We do not use your information for advertising, profiling, or selling to third parties.

4. Use of Third-Party Services

We use third-party services for payments and infrastructure. These services collect and process data according to their own privacy policies.

  • Apple (In-App Purchases): We use Apple's In-App Purchase system for subscription payments on iOS. Payment data is managed entirely by Apple.
    Apple Privacy Policy: https://www.apple.com/legal/privacy/
  • Stripe (Payments): We use Stripe for payment processing on the web. We do not store your full credit card details on our servers. Payment data is encrypted and securely processed by Stripe.
    Stripe Privacy Policy: https://stripe.com/privacy
  • Cloudflare (Infrastructure & Security): We use Cloudflare Workers to host our backend and ensure the security and reliability of our application. Cloudflare may process your IP address and traffic data.
    Cloudflare Privacy Policy: https://www.cloudflare.com/privacypolicy/

5. The Gradually Security Model

We utilize advanced cryptographic standards to protect your information:

  • End-to-End Encryption (E2EE): Your financial data is encrypted on your device using AES-256-GCM before being synced to our servers.
  • Key Derivation (PRF): Your encryption key is derived locally on your device using the WebAuthn PRF extension via your passkey.
  • Zero-Knowledge Sync: While your data is stored on our servers to allow multi-device syncing, it remains a "black box" to us. We cannot read your transactions, balances, or account names.
  • Passkey-Only Authentication: We fully embrace the most secure authentication method to date by supporting authentication through passkeys only. Access to your passkey is secured by biometric verification from your devices.

6. Group Expenses and Shared Data

When you use group expense features, certain data is shared with other group members:

  • Group transaction data is encrypted using a shared Group Encryption Key (GEK) that is distributed to group members via encrypted key exchange (X25519).
  • Group members can decrypt and view shared transactions within the group.
  • Your personal (non-group) financial data is never shared with group members.
  • When you leave or are removed from a group, you will no longer receive new group data, though previously synced data may remain on your device.

7. Local Storage and Device Security

To provide a fast offline experience, a copy of your data is stored locally on your device:

  • iOS/Android: Local data relies on your operating system's built-in security (e.g., iOS Data Protection, Android File-Based Encryption). You are responsible for maintaining a secure passcode or biometric lock on your device.
  • Web: Local data is stored in your browser's IndexedDB and localStorage. This data is protected by your browser and operating system's security mechanisms. You are responsible for securing access to your browser and device.

While data is encrypted during sync and on our servers, the local database relies on your device's security. We recommend keeping your device locked and your browser up to date.

8. Cookies and Tracking

We do not use cookies for advertising or tracking purposes. The web application uses browser localStorage to store authentication tokens and application preferences. No third-party analytics or tracking scripts are embedded in the application. Our server records anonymized usage events (as described in Section 2) for internal product analytics only; no client-side tracking or fingerprinting is used.

9. Data Retention and Deletion

  • Active accounts: Your encrypted data is retained on our servers for as long as your account is active.
  • Account deletion: When you request account deletion, all associated data on our servers (encrypted financial data, account records, authentication credentials) will be permanently deleted within 30 days.
  • Local data: Data stored on your device is not affected by server-side deletion. You can clear local data by uninstalling the application or clearing browser data.

10. Data Recovery and Access

Under PIPEDA (Personal Information Protection and Electronic Documents Act), you have the right to access your data. However, due to our Zero-Knowledge architecture:

  • Recovery Passphrase: Upon setup, you will be prompted to save your recovery passphrase. This is the only way to regain access to your data if you lose all your passkey-enabled devices connected to your account.
  • Technical Finality: If you lose both your passkey device and your recovery passphrase, Gradually cannot reset your encryption key or recover your data. Your data will be permanently inaccessible.

11. Your Rights

You have the right to:

  • Withdraw consent for data collection at any time.
  • Request a copy of the data we hold. Note: server-side financial data will be in encrypted form; you must use your encryption key to read it.
  • Request the deletion of your account and all associated data.
  • File a complaint with the Office of the Privacy Commissioner of Canada if you believe your privacy rights have been violated.

12. Children's Privacy

The Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete it promptly.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy within the Application. You are advised to review this page periodically for any changes. Changes are effective immediately after they are posted.

14. Contact Us

If you have any questions or suggestions about this Privacy Policy, do not hesitate to contact us at: support@gradually.app