Privacy Policy

Effective date: March 2, 2026  |  Last updated: March 20, 2026

QarzDaftar ("the App") is a personal debt and loan tracking application developed by Islomov Odilxon Rustamovich ("Developer", "we", "us", "our"). This Privacy Policy explains what data the App collects, how it is used, and your rights regarding that data.

1. Overview

QarzDaftar is designed with a privacy-first approach. All personal and financial data you enter is stored locally on your device and, if you choose, backed up to your own Google Drive account. We do not operate any servers that collect, store, or process your data.

2. Data We Collect

2.1 Data You Provide Directly

2.2 Data Collected Automatically

2.3 Data We Do NOT Collect

• We do not collect your location
• We do not collect browsing history or app usage analytics
• We do not collect advertising identifiers
• We do not use third-party analytics SDKs (no Firebase Analytics, no Crashlytics)
• We do not collect or transmit data to any external server

3. Google Drive Integration

If you choose to enable Google Drive backup, the App will:

• Access your Google Drive account using the official Google Drive API via OAuth 2.0
• Create and manage files in a dedicated app-specific folder on your Drive
• Upload your database backup and photo attachments to this folder
• Download previously backed-up data when you choose to restore

The App requests broad Google Drive access (the drive scope) because the Shared Ledger feature requires creating shared folders that both you and your partner's device can access. The standard app-only scope does not support cross-user folder sharing. Despite having broad access, the App only accesses files and folders it has created (the "QarzDaftar" folder and its contents). It does not read, modify, or delete any other files on your Google Drive. You can revoke access at any time via Google Account Permissions.

Google API Services Limited Use Disclosure: QarzDaftar's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

4. Shared Ledger Feature

The Shared Ledger feature allows two users to link their accounts and synchronize transaction data. When you use this feature:

• Transaction data for the shared account is uploaded to a shared folder on Google Drive accessible only to the two linked devices
• Your partner's device can read and write to this shared folder
• Data exchanged includes: transaction amounts, directions, dates, notes, item details, photo attachments, and approval/rejection decisions
• Your Android device ID and Google email are shared with the linked partner for identification purposes

You can disconnect a shared ledger at any time. Upon disconnection, the shared folder remains on Google Drive but no further synchronization occurs.

5. Camera and Contacts Permissions

Camera

The App requests camera permission to allow you to take photos of receipts or documents and attach them to transactions. Photos are stored locally on your device and optionally backed up to your Google Drive. The camera is never activated without your explicit action.

Contacts

The App may request access to your contacts to help you quickly fill in account names and phone numbers. Contact data is not stored, uploaded, or transmitted. It is only used for on-device auto-completion suggestions.

6. Notifications

The App may request permission to send notifications (Android 13+). Notifications are used to inform you about background sync progress, shared ledger activity (e.g., incoming transactions from your partner), and backup status. No notifications are sent without your permission. You can disable notifications at any time via Android Settings → Apps → QarzDaftar → Notifications.

7. Background Processing

The App uses Android WorkManager to perform periodic background synchronization with Google Drive. This ensures your backups and shared ledger data stay up to date even when the App is not actively open. The App may request to be excluded from battery optimization to ensure reliable background sync. You can manage this at any time via Android Settings → Battery → QarzDaftar.

8. Biometric Authentication

The App supports biometric lock (fingerprint or face recognition) using the Android BiometricPrompt API. Biometric data is never accessed, stored, or transmitted by the App. Authentication is handled entirely by the Android operating system.

9. In-App Purchases and Subscription

QarzDaftar uses a freemium model:

• Free tier — Core features are free forever: unlimited transactions, up to 5 accounts, balance tracking, dashboard, search, templates, groups, primary currency, PIN/biometric lock
• Pro subscription — Optional paid upgrade ($1.99/month or $9.99/year) for cloud sync via Google Drive, shared ledgers, multi-currency, PDF & Excel export, and unlimited accounts

All payment processing is handled by Google Play Billing. We do not collect, store, or have access to your payment information (credit card numbers, billing address, etc.). If your subscription expires, you are downgraded to the free tier — no data is ever deleted.

10. Data Security

• All data is stored in a local database on your device
• All network communication with Google Drive uses HTTPS/TLS encryption
• Google Drive authentication uses OAuth 2.0 — the App never sees or stores your Google password
• Optional biometric lock provides an additional layer of device-level protection

11. Data Retention and Deletion

• Local data: Stored indefinitely until you delete it within the App, clear app data, or uninstall the App
• Google Drive backups: Stored in your Drive until you manually delete them
• Transaction archiving: You can archive old transactions to keep the App responsive while preserving your records
• Complete deletion: Uninstalling the App removes all local data. To remove Drive backups, delete the QarzDaftar folder from your Google Drive

How to Delete Your Data

Option 1: Delete Data Within the App

1. Open QarzDaftar on your device.
2. To delete individual items: go to any account or transaction, tap on it, and use the delete option.
3. To delete all accounts and transactions: delete each account from the accounts list — this will also remove all associated transactions.

Option 2: Clear All App Data via Device Settings

1. Open your device Settings.
2. Go to Apps → QarzDaftar.
3. Tap Storage → Clear Data. This deletes all local data including accounts, transactions, settings, and photos.

Option 3: Uninstall the App

Uninstalling QarzDaftar from your device will permanently remove all local data, including accounts, transactions, photos, templates, and settings.

Option 4: Delete Google Drive Backups

If you used the Google Drive backup feature, a copy of your data may exist on your Google Drive. To delete it:

1. Open Google Drive on your computer or phone.
2. Find the QarzDaftar folder.
3. Delete the folder and empty the Trash.
4. (Optional) Revoke the app's access to your Google account at Google Account Permissions.

What Data Is Deleted

Note: If you used the Shared Ledger feature, your partner may have a copy of shared transaction data on their device or Google Drive. Deleting your data does not delete the copy on your partner's device.

If you need assistance deleting your data, contact us at odilhon1985@gmail.com with the subject "QarzDaftar Data Deletion Request".

12. Children's Privacy

QarzDaftar is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided data through the App, the data exists only on that device and can be deleted by clearing app data or uninstalling.

13. Third-Party Services

The App integrates with the following third-party services:

14. Your Rights

You have the right to:

• Access all your data — it's stored on your device and you have full access from within the App
• Export your data — use the Export feature to generate Excel (XLSX) or PDF reports
• Delete any or all data — delete individual transactions, accounts, or clear all app data
• Revoke permissions — revoke Google Drive access, camera, contacts, or biometric permissions at any time via Android Settings
• Disconnect shared ledgers at any time

15. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be reflected by updating the "Last updated" date at the top. We encourage you to review this policy periodically. Continued use of the App after changes constitutes acceptance of the updated policy.

16. Contact Us

If you have any questions or concerns about this Privacy Policy or the App's data practices, please contact us: