Privacy Policy
Last updated: May 16, 2026
Foli (“we”, “our”, or “us”) operates the Foli mobile application (the “App”). This policy explains what data is processed when you use the App, where it lives, and what we do not collect.
The short version
- No accounts, no sign-up. You do not need to provide an email, name, or identity to use the App.
- Your data stays on your device. Portfolios, transactions, and holdings are stored only in a local SQLite database on your device.
- Our servers store only market data. Public information like stock, ETF, and currency prices is fetched anonymously.
- No ads, no tracking, no analytics. We do not include advertising SDKs, behavioral tracking, or usage analytics.
1. Data Stored On Your Device
The following data is stored entirely on your device and is never sent to a server:
- Portfolio names and display currency preference.
- Transactions (buy, sell, dividend, stock split — quantity, price, fee, date, notes).
- Position summaries and favorited assets.
- Theme (light/dark/system) and currency preferences.
- Biometric app-lock preference (Face ID / fingerprint on/off — biometric data itself is held by the OS, we cannot access it).
When you uninstall the App, this data is deleted with it. There is nothing to delete on our servers because nothing was sent there.
2. Data Fetched From Our Servers (Market Data Only)
The App pulls public market data from a database hosted on Supabase:
- Asset catalog (stocks, ETFs, crypto, currencies; ticker, name, logo, sector, etc.).
- Current and historical prices (refreshed approximately every 15 minutes; last close is used when markets are closed).
- Exchange metadata, holiday calendars, sector / asset-type labels.
These requests are anonymous. No user identifier, account, portfolio data, or transaction history is attached. The server only sees which symbol prices are being requested.
3. Subscriptions (Pro)
Pro features are paid through the Apple App Store or Google Play. We never see or store your payment details (card, billing).
Subscription status is verified through RevenueCat. RevenueCat validates a subscription identifier (not a card or personal ID) and returns “premium active/inactive” to your device. RevenueCat’s own privacy policy applies.
4. Crash Reporting (Sentry)
To keep the App stable, we use Sentry to collect crash and performance information:
- Technical context like device model, OS version, and app version is collected.
- A “session replay” of the screen may be captured at the moment of an error, but all text and images are automatically masked — no readable personal data is visible.
- Personally identifiable information (PII) is explicitly disabled (Sentry’s
sendDefaultPii: false). - No advertising identifier, IDFA, or IDFV is collected.
5. What We Do Not Collect
- Location data.
- Contacts, photos, calendar, microphone, or camera.
- Advertising identifiers (IDFA / GAID) or persistent device identifiers.
- Behavioral analytics or usage tracking.
- Browser history or data from other apps.
- Your name, email, or phone number (unless you contact us).
6. Third-Party Services
| Service | Purpose | What it sees |
|---|---|---|
| Supabase | Market data (prices, asset catalog) | Anonymous API requests; no portfolio data |
| Apple / Google | Subscription billing | Payment info (never reaches our servers) |
| RevenueCat | Subscription state | Anonymous subscription identifier |
| Sentry | Crashes and performance | Masked technical context, no PII |
7. Deleting Your Data
Uninstalling the App deletes all portfolio, transaction, and preference data from your device. There is no server-side account to delete. To cancel a subscription, use your device’s App Store or Play Store subscription settings.
8. Security
- All network requests use HTTPS encryption.
- The local database is protected by your operating system’s app sandboxing; an optional biometric lock (Face ID / fingerprint) can be enabled.
- While we take reasonable precautions, no method of electronic storage or transmission is 100% secure.
9. Children’s Privacy
The App is not intended for children under the age of 13, and we do not knowingly collect information from a child under 13.
10. Changes to This Policy
We may update this policy from time to time. Material changes are indicated by updating the “Last updated” date at the top of this page.
11. Contact
For questions about this policy:
Email: foli.support@gmail.com