Privacy Policy

Data controller: DeadShot Software.

App: DeadFinance (iOS/Android bundle: com.maurocoda.deadfinance).

Website: https://deadfinance.ch

For privacy questions or to exercise your rights, contact us at maurocoda5@gmail.com.

This policy applies if you use the DeadFinance app (Local or Cloud mode), visit deadfinance.ch, or contact us for support or privacy-related requests.

The website is mainly informational (app overview, blog, roadmap). The app is where you enter and manage your financial data.

DeadFinance offers two main modes. Data processing depends on which one you choose:

• Local mode (free): financial data and settings stay on your device. No account is required. We do not send your financial data to our servers for basic app operation.
• Cloud mode (subscription, approx. CHF 2/month): you create an account for backup, sync, and restore via cloud infrastructure (Supabase). Data you sync is transmitted securely and stored so you can access it from multiple devices.
• Premium or AI-based features: some capabilities may be developed in the future. They are not currently offered to the general public; if we make them available later, we will update this policy before release.

Depending on how you use DeadFinance, we may process the following categories of data:

• Account data (Cloud mode or if you create an account): email address, login credentials, and — if you choose — sign-in via Apple or Google (OAuth). We do not receive your password in plain text when you use external providers.
• Financial data you enter: budgets, expenses, income, fixed costs, balances, monthly planning, closed-month history, and optional notes. This is data you choose to record in the app.
• App settings: language, currency (CHF), theme, display preferences, and similar options.
• Minimal technical data: identifiers needed for authentication, sync, security, abuse prevention, and app operation (e.g. device type, app version, essential technical logs).
• Voluntary feedback (users with an enabled Cloud account): text message and category you voluntarily send to our team for support or product improvement.
• Document or receipt images: only if you use scanning features in the app, to extract or link data to your entries — not for advertising profiling.

• Provide, maintain, and operate the app and website.
• Enable backup, sync, and restore in Cloud mode.
• Manage user accounts, Cloud subscriptions, and payment status verification via app stores (Apple App Store, Google Play).
• Respond to support requests and, if you submit it, process voluntary feedback to improve the product.
• Ensure security, prevent abuse and fraud, and comply with applicable legal obligations.

We want to be explicit about what DeadFinance does not do with your data:

• We do not sell your personal data to third parties for advertising or third-party marketing.
• We do not use your financial data for targeted advertising or advertising profiles.
• We are not financial advisors: DeadFinance is an informational and management tool to organise your personal finances. It does not provide investment, tax, or legal advice. Financial decisions remain yours.
• We do not require your full bank card details: Cloud subscription payments are handled by Apple or Google; we do not receive your full card number.

We process data based on: contract performance or pre-contractual steps (use of the app and Cloud subscription), consent where required (e.g. OAuth login or voluntary feedback), legitimate interests (security, service improvement, abuse prevention), and legal obligations.

In Switzerland, the Federal Act on Data Protection (FADP/nFADP) applies; for residents in the EU/EEA, the GDPR also applies where relevant. Your rights are described below.

To run DeadFinance we rely on selected providers. We share only the data each service needs:

We do not allow these providers to use your data for their own marketing unrelated to the service.

• Supabase: authentication, cloud database, server functions for sync and subscription verification. Cloud data you sync is stored on infrastructure operated by Supabase and its hosting providers.
• Apple App Store (iOS): Cloud subscription and payment management. Apple processes payment data under its own terms; we receive subscription entitlement information, not full card details.
• Google Play (Android): same model for Cloud subscription when available on Android.
• OAuth providers (Apple, Google): only if you choose to sign in with these services; we receive the information needed to authenticate you (e.g. identifier and email if shared by the provider).

• Local mode data: remains on your device until you uninstall the app, delete data in the app, or reset your device. We cannot delete it remotely because we do not store it on our servers.
• Cloud data: kept while your account is active and as long as needed to provide backup and sync. You can request account and Cloud data deletion from app settings (where available) or by emailing maurocoda5@gmail.com.
• After a deletion request, we delete or anonymise Cloud data within a reasonable period (typically within 30 days), except limited retention required by law or temporary technical backups that are later overwritten.
• Technical logs and security data may be kept for shorter or longer periods only if necessary for security, incident resolution, or legal obligations.

Cloud data may be processed on servers outside Switzerland or the European Economic Area, for example via Supabase or linked cloud providers.

When this happens, we use appropriate safeguards — such as standard contractual clauses, technical and organisational measures, and providers with recognised security certifications — to protect your data consistently with Swiss FADP and, where applicable, GDPR.

For details on specific transfers or copies of applicable safeguards, contact us at the address above.

We apply reasonable technical and organisational measures to protect data from unauthorised access, loss, or alteration — including encryption in transit for Cloud sync, access controls, and secure development practices.

No system is perfect: please protect your device (screen lock, updates) and do not share your Cloud account credentials.

Depending on applicable law (Swiss FADP, GDPR for EU/EEA residents where relevant), you may have the following rights:

To exercise your rights, email maurocoda5@gmail.com with your request and, if possible, the email linked to your Cloud account. We will respond within the timeframes required by applicable law.

• Access to personal data concerning you.
• Rectification of inaccurate or incomplete data.
• Erasure («right to be forgotten») where provided by law.
• Restriction of processing in certain circumstances.
• Data portability, where applicable (especially for data you provided in a structured format).
• Objection to processing based on legitimate interests, where provided.
• Withdrawal of consent, without affecting the lawfulness of prior processing.
• Complaint to a supervisory authority: in Switzerland, the Federal Data Protection and Information Commissioner (FDPIC / PFPDT) — www.edoeb.admin.ch; in the EU, the authority in your country of residence.

DeadFinance is not intended for anyone under 16. We do not knowingly collect personal data from children under 16. If you believe a minor has provided data to us, please contact us and we will delete it.

The deadfinance.ch website is mainly static/informational. We may use cookies or similar technologies strictly necessary for operation (e.g. language preference) or, in the future, aggregated privacy-respecting analytics. If so, we will update this policy.

The mobile app may use local storage on your device for Local mode; this is not cross-app advertising tracking.

We may update this policy to reflect changes in the app, regulation, or providers. The «Last updated» date at the top indicates the last substantive revision.

For material changes, we will notify you via the app, website, or email where appropriate. Continued use after the effective date means you have read the updated version, unless the law requires otherwise.