Privacy Policy
Your data stays minimal.
Whatifolio keeps data collection limited. We use a small amount of technical, account, purchase, and calculation data to make the app work, protect welcome whatifs from abuse, restore purchases, and provide support.
Information we collect
Whatifolio may process the following information when you use the app:
- Anonymous app install identifier used as a support ID and RevenueCat app user ID.
- A hidden anti-abuse device identifier used to protect welcome whatifs across reinstall attempts. On Android, this may use a platform-scoped Android app identifier. On iOS, this may use a secure local identifier stored by the app.
- Apple or Google sign-in information when you choose to sign in. Sign-in is optional and is used to help keep purchases and whatifs available across supported devices. The backend stores the sign-in provider and a server-side cryptographic hash of the provider account identifier, not your raw Apple or Google account identifier.
- Device timezone, used for backend consistency and legacy usage-period compatibility.
- Calculation inputs such as investment amount, selected asset, and selected year.
- Whatif wallet balance, wallet ledger activity, entitlement status, and purchase-related metadata.
- Network information such as IP address, used for basic anti-abuse and backend security.
- Basic technical logs needed to operate and protect the backend service.
Information we do not collect
Whatifolio does not use or store your name, email address, contacts, precise location, financial account credentials, brokerage account, bank account, or portfolio holdings. The app does not allow deposits, withdrawals, trading, or brokerage activity. Whatifolio does not use collected identifiers for advertising tracking or cross-app tracking.
Purchases and paid access
Purchases are processed by Apple App Store or Google Play billing. Whatifolio does not collect or store your payment card details. RevenueCat is used to manage purchase status, consumable whatif packs, Lifetime Unlimited access, restore purchases, and entitlement webhooks.
How we use information
- To calculate educational what-if investment estimates.
- To grant welcome whatifs, spend whatifs on calculations, and unlock Lifetime Unlimited access.
- To restore purchases and keep paid access in sync.
- To provide support when you share your in-app Support ID.
- To monitor reliability, protect welcome whatifs from abuse, prevent misuse, and protect the backend service.
Anti-abuse identifiers
Whatifolio may send a hidden device key to the backend to help prevent repeated free-limit resets through app reinstall attempts. The backend does not store the raw device key. It stores only a server-side cryptographic hash used for welcome-grant protection and service protection.
Third-party services
Whatifolio may use the following service providers:
- Apple App Store and Google Play for billing and purchase processing.
- Apple and Google sign-in services when you choose to sign in.
- RevenueCat for purchase, entitlement, and whatif-pack management.
- Backend hosting providers for the Whatifolio API.
- Market data providers such as Alpha Vantage for market data snapshots.
Data retention
We keep anonymous usage, account-link, wallet, purchase, entitlement, and technical records for as long as needed to operate the app, restore purchases, provide support, comply with store requirements, and protect the service. Support requests should include the in-app Support ID when possible.
Account deletion
Whatifolio users who choose to sign in with Apple or Google can request deletion of their Whatifolio account and associated backend data from inside the app.
To delete your Whatifolio account:
- Open Whatifolio.
- Go to About.
- Open Account & purchases.
- Tap Delete account permanently.
- Confirm deletion.
When deletion is completed, Whatifolio deletes the account link, active app sessions, saved whatifs and result snapshots associated with the account, wallet records, RevenueCat event records associated with the Whatifolio user, and backend user or account data that we control.
After account deletion, the current app install returns to anonymous device-only access. The local Support ID or install identifier may continue to be used for device-only app functionality unless the app is uninstalled or reset.
Whatifolio does not delete store-managed billing records, receipts, refund records, transaction identifiers, or purchase history kept by Apple App Store, Google Play, or RevenueCat. These records may be retained as required for billing, purchase restore, refunds, fraud prevention, security, tax, accounting, legal, dispute handling, or store compliance purposes.
Children's privacy
Whatifolio is not directed to children under 13. If you believe a child has provided personal information, please contact support.
Changes
We may update this Privacy Policy as the app changes. The latest version will be posted on this page with an updated effective date.