1. Overview
Roost is a personal budgeting app designed with privacy at its core. All your financial data stays on your device. We do not collect, store, or transmit your financial information to any external server.
Roost Privacy Policy
Roost Privacy Policy
Effective date: 14 April 2026
Developer: Granite Digital ("we," "us," or "our")
Roost is a personal budgeting app developed by Granite Digital. This Privacy Policy explains what data Roost handles, how it is stored, and the limited circumstances in which information may leave your device.
2. Data That Stays on Your Device
The following data is stored locally on your device in an encrypted database (AES-256 via SQLCipher) and is never sent to Granite Digital or any third party:
- Transactions (amounts, merchants, dates, categories, notes)
- Budget categories and monthly budgets
- Savings goals and savings pots
- Debt payoff plans (balances, interest rates, payments)
- Tags and merchant correction preferences
- Receipt scan results (extracted text only; images are processed on-device and deleted immediately)
- App preferences (currency, theme, notification settings)
- Ask Roost query history
We have no access to this data. It exists only on your device. If you delete the app, this data is permanently lost unless you have exported it beforehand.
3. Camera Permission
Roost requests camera access solely for the receipt scanning feature. When you scan a receipt:
- The image is processed entirely on your device using on-device text recognition (Google ML Kit).
- The total, merchant name, and date are extracted.
- The image is deleted immediately after processing.
- No images are stored, uploaded, or transmitted.
You can deny camera access and still use all other features of the app.
4. Data That Leaves Your Device
Google Play Billing
When you subscribe to Roost Pro, your purchase is handled entirely by Google Play. Granite Digital does not collect or store your payment details. Google's own privacy policy governs this transaction.
Firebase (Bank Sync · Coming Soon)
When bank sync becomes available, the app will use Firebase services as follows:
- Firebase Anonymous Authentication: creates an anonymous identifier (not linked to your name, email, or any personal information) to scope your bank connection data.
- Firebase Cloud Functions: acts as a stateless proxy between your device and the bank data provider (Plaid). Only opaque access tokens are stored in Firebase; no financial data (transactions, balances, account numbers) is ever stored on our servers.
- Plaid: processes bank connections. Plaid's own privacy policy governs their handling of your banking credentials.
Bank sync is optional. If you do not use bank sync, no data is sent to Firebase or Plaid.
5. Data We Do Not Collect
Granite Digital does not collect:
- Personal information (name, email, phone number, address)
- Financial data (transactions, balances, account numbers)
- Location data
- Device identifiers or advertising IDs
- Analytics or usage tracking data
- Contacts, photos, or files
6. Third-Party Services
| Service | Purpose | Data Involved |
|---|---|---|
| Google Play Billing | Subscription management | Purchase transactions (managed by Google) |
| Google ML Kit | On-device receipt text recognition | None. Processing is entirely on-device |
| Firebase Auth | Anonymous ID for bank sync scoping | Anonymous UID only (no personal info) |
| Firebase Cloud Functions | Stateless proxy for bank sync | Opaque bank access tokens only |
| Plaid | Bank data provider (coming soon) | Bank credentials and transaction data (governed by Plaid's privacy policy) |
No third-party service receives your financial data from Roost.
7. Data Encryption
All data stored on your device is encrypted at rest using AES-256 encryption via SQLCipher. The encryption key is generated and stored securely in your device's native keystore (Android Keystore). Granite Digital does not have access to your encryption key.
8. Permissions
Roost requests the minimum permissions required to deliver its functionality:
- Camera – scan receipts for automatic transaction entry.
- Notifications – deliver budget reminders and goal updates you have opted in to.
- Internet – verify Pro subscription status and, optionally, connect to your bank via Plaid (when bank sync launches).
You can revoke any permission at any time in your device settings. Revoking a permission will disable the related feature but will not affect the rest of the app.
9. Analytics
Roost does NOT collect any usage or analytics data. We do not track how you use the app, which features you access, how often you open it, or your location. Your usage of Roost is entirely private.
10. Children’s Privacy
Roost is not directed at children under the age of 13. We do not knowingly collect any data from children. If a parent or guardian believes a child has provided us with information, please contact us so we can address it.
11. Data Deletion & Export
Since all data is stored locally on your device, you have full control:
- Delete all data: Go to More > Account > Delete all data.
- Delete the app: Uninstalling Roost removes all stored data from your device.
- Export before deleting: Go to More > Export data to save a CSV copy via your device's share sheet.
12. Your Rights
Because Roost does not collect or store your personal or financial data on our servers, there is no personal data for us to retrieve, correct, or delete on your behalf. If you have privacy-related questions, or if you have previously contacted us and want your support email removed from our inbox, please reach out using the contact details below.
13. Changes to this Privacy Policy
We may update this privacy policy from time to time. Any changes will be reflected by updating the effective date at the top of this document. Continued use of the app after changes constitutes acceptance of the updated policy.
14. Contact Us
If you have questions about this privacy policy or Roost's data practices, contact us at:
Granite Digital
Email: info@granitedigital.je
Roost is built by Granite Digital. Your finances are your business; we keep it that way.