Privacy Policy - Nuvio Money Manager

1. Introduction and Overview

This Privacy Policy ("Policy") describes how Nuvio ("we," "us," "our," or "the App") handles information when you use our mobile application available on Apple's App Store. Nuvio is developed and operated from Washington State, United States.

Nuvio is a personal finance management application designed with privacy as its foundational principle. We have architected the App specifically to avoid collecting, processing, or storing any user data whatsoever.

Our Fundamental Privacy Commitment: Nuvio operates on a complete zero data collection model. We do not collect, receive, transmit, store, process, sell, share, or have access to any of your personal information, financial data, or any other information you enter into the App. All data you create within the App remains exclusively on your device under your complete and sole control.

This Policy is designed to inform you about our privacy practices and to comply with applicable privacy laws including but not limited to the Washington State Consumer Protection Act (RCW 19.86), the Washington My Health My Data Act, the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), the General Data Protection Regulation (GDPR), and other applicable federal, state, and international privacy laws and regulations.

By downloading, installing, or using Nuvio, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with this Policy, please do not download, install, or use the App.

2. Definitions

For the purposes of this Privacy Policy, the following definitions apply:

"Personal Information" means any information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular individual or household, as defined under applicable privacy laws including the CCPA and Washington State law.
"Financial Information" means any information relating to financial accounts, transactions, income, expenses, debts, loans, budgets, or other financial data.
"Device" means the Apple iPhone, iPad, or other compatible device on which you install and use the App.
"Local Storage" means data storage mechanisms on your Device, including but not limited to Apple's Core Data framework, that store information exclusively on your physical Device.
"Processing" means any operation performed on Personal Information, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, alignment, combination, restriction, erasure, or destruction.
"Third Party" means any individual, company, or entity other than you or us.
"Service Provider" means any Third Party that processes Personal Information on behalf of a business.
"Sale" or "Sell" means selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating Personal Information for monetary or other valuable consideration, as defined under applicable privacy laws.

3. Data Controller Information

For the purposes of applicable data protection laws, the data controller is:

Nuvio
Washington State, United States
Email: infow3bdev@gmail.com

However, it is important to note that because we do not collect, receive, or process any Personal Information through the App, the traditional role of "data controller" does not apply in the conventional sense. All data you enter into the App remains under your exclusive control on your Device.

4. Zero Data Collection Policy

Absolute Zero Collection: Nuvio does not collect any data from you. This is not a limited or qualified statement. We have specifically designed and built the App architecture to make data collection technically impossible.

Technical Implementation: The App:

Contains no code that transmits data to any server, API, or external service
Does not include any analytics SDKs, frameworks, or libraries
Does not include any advertising SDKs, frameworks, or libraries
Does not include any crash reporting SDKs, frameworks, or libraries
Does not include any social media SDKs, frameworks, or libraries
Does not make any network requests for data collection purposes
Does not require or request internet connectivity for any functionality
Does not access any device identifiers for tracking purposes
Does not use any form of cookies, pixels, beacons, or similar tracking technologies

No Exceptions: There are no exceptions to our zero data collection policy. We do not collect data under any circumstances, for any purpose, at any time.

5. Categories of Data We Explicitly Do Not Collect

To provide complete transparency and clarity, the following is a comprehensive list of data categories that we DO NOT collect:

5.1 Personal Identifiers

Name (real name, alias, nickname, or any other identifier)
Email address
Phone number
Physical address (postal address, street address, city, state, ZIP code)
Social Security number or other government-issued identifiers
Driver's license number
Passport number
Account names or usernames
Online identifiers
IP address

5.2 Financial Information

Bank account numbers
Credit card numbers
Debit card numbers
Financial account credentials
Transaction history
Income information
Expense information
Budget information
Loan information
Investment information
Any financial data you enter into the App

5.3 Device and Technical Information

Device identifiers (IDFA, IDFV, UDID, or any other device ID)
Device type or model
Operating system and version
Browser type and version
Hardware specifications
Screen resolution
Language settings
Time zone
Network information (carrier, connection type, Wi-Fi network names)
Device fingerprints or any form of device identification

5.4 Usage and Behavioral Data

App usage patterns
Features used or accessed
Session duration or frequency
Click patterns or interactions
Navigation paths
Search queries within the App
User preferences or settings
Error logs or diagnostic data
Performance data

5.5 Location Data

GPS coordinates
Precise location
Approximate location
Location history
IP-based geolocation
Cell tower data
Wi-Fi-based location

5.6 Biometric and Sensitive Data

Fingerprint data
Facial recognition data
Voice recordings
Health information
Genetic information
Religious or philosophical beliefs
Political opinions
Sexual orientation
Race or ethnicity
Trade union membership

5.7 Third-Party Data

Contacts or address book information
Calendar data
Photos or media files
Messages or communications
Social media profiles or data
Data from other apps on your Device

6. Local Data Storage

All information you enter into Nuvio is stored exclusively on your Device using Apple's Core Data framework. This data never leaves your Device and is never accessible to us.

6.1 What is Stored Locally

The following types of information that YOU choose to enter are stored locally on YOUR Device:

Transaction records you create (amounts, descriptions, categories, dates)
Budget configurations you set up
Loan tracking information you enter
Custom categories and tags you create
App settings and preferences you configure
Any other data you voluntarily enter into the App

6.2 How Local Storage Works

Core Data is Apple's native persistence framework that stores data in a SQLite database on your Device. Key characteristics include:

Data is stored in the App's sandboxed container on your Device
Other apps cannot access this data due to iOS sandboxing
Data is protected by your Device's security features (passcode, Face ID, Touch ID)
Data may be included in your iCloud or iTunes backups if you have enabled device backups
Data is deleted when you uninstall the App

6.3 Our Access to Your Local Data

We have absolutely no access to your locally stored data. We cannot:

View your data
Read your data
Copy your data
Retrieve your data
Modify your data
Delete your data
Analyze your data
Share your data
Access your data in any way whatsoever

6.4 Your Responsibility

Because data is stored only on your Device, you are solely responsible for:

Creating backups of your data through device backups
Maintaining the security of your Device
Protecting access to your Device
Any loss of data due to device failure, loss, theft, damage, or uninstallation

7. Third Party Services and Data Sharing

7.1 No Third Party Data Sharing

Because we collect absolutely no data, we share absolutely no data with third parties. There is no data to share.

We do not sell your Personal Information
We do not share your Personal Information for cross-context behavioral advertising
We do not disclose your Personal Information for business purposes
We do not transfer your Personal Information to third parties
We do not provide your Personal Information to service providers
We have no data to share, sell, or transfer

7.2 No Third Party SDKs or Services

The App does not integrate any third party services that collect data, including but not limited to:

Google Analytics, Firebase Analytics, or any analytics service
Facebook SDK, Meta SDK, or any social media SDK
Google Ads, Facebook Ads, or any advertising network
Crashlytics, Sentry, Bugsnag, or any crash reporting service
Mixpanel, Amplitude, or any product analytics service
Customer.io, Braze, or any marketing automation service
Any attribution or measurement SDK
Any A/B testing or experimentation SDK
Any push notification service that tracks users
Any cloud storage or synchronization service

7.3 Apple App Store

The App is distributed through Apple's App Store. Apple may collect certain information when you download the App as described in Apple's Privacy Policy. This data collection by Apple is governed by Apple's terms and privacy policy, and we do not receive personally identifiable information from Apple about individual users.

7.4 Website Contact Form

If you choose to contact us through our website at nuviomm.com, the information you voluntarily provide (such as your name, email address, and message content) may be transmitted to us for the sole purpose of responding to your inquiry. This website contact information:

Is completely separate from the App
Is provided voluntarily by you
Is used solely to respond to your inquiry
Is not connected to any App usage data (because we collect none)
May be transmitted via third party services (such as email or form providers)

8. Data Security

8.1 Security Through Architecture

Our primary security measure is our architecture: by not collecting any data, we eliminate the risk of data breaches from our systems. You cannot breach data that does not exist.

8.2 Local Data Security

Your locally stored data benefits from iOS's robust security architecture:

App Sandboxing: Each iOS app operates in its own sandbox, preventing other apps from accessing your data
Hardware Encryption: Data is encrypted using hardware-level encryption on supported devices
Data Protection: iOS Data Protection encrypts files using your passcode as part of the encryption key
Secure Enclave: Biometric data (Face ID, Touch ID) is protected by the Secure Enclave
Device Passcode: Your device passcode provides an additional layer of protection

8.3 No Server-Side Security Concerns

Because we operate no servers that store user data:

There is no server-side attack surface
There is no database that can be breached
There are no API endpoints that can be exploited
There is no risk of man-in-the-middle attacks on your data
There is no risk of unauthorized server access

8.4 Your Security Responsibilities

To maintain the security of your data, we recommend:

Using a strong device passcode (at least 6 digits, preferably alphanumeric)
Enabling Face ID or Touch ID for additional security
Keeping your iOS version updated to receive security patches
Not jailbreaking your device, which compromises security
Being cautious about physical access to your device
Enabling "Find My" to remotely wipe your device if lost or stolen
Regularly backing up your device to preserve your data

8.5 Data Breach Notification

In the unlikely event of a security incident affecting our website or business operations (not the App, as we hold no App user data), we will comply with all applicable breach notification laws, including Washington State's data breach notification requirements (RCW 19.255.010) and other applicable state and federal laws.

9. Your Rights and Data Control

9.1 Complete Data Control

You have complete and exclusive control over your data within the App. You may:

Access: View all your data at any time within the App
Export: Export your transaction data in CSV format for portability and backup
Modify: Edit or update any information you have entered
Delete: Delete individual records or specific data
Erase All: Delete all data using the App's data management features
Complete Removal: Uninstalling the App removes all associated data from your Device

9.2 No Data Requests to Us

Because we do not collect or store any of your data, we cannot fulfill requests to:

Access your Personal Information (we have none)
Provide copies of your data (we have none)
Correct your data (we have none)
Delete your data (we have none)
Port your data (we have none)
Opt you out of data sales (we sell no data)

All data management must be performed by you directly within the App or on your Device.

9.3 Right to Information

You have the right to know what data we collect about you. The answer is: none. This Privacy Policy provides complete transparency about our data practices.

10. Data Retention

10.1 Local Data Retention

Your data is retained on your Device for as long as:

You keep the App installed on your Device
You choose to retain the data (you can delete it at any time)
Your Device is functional and accessible

10.2 No Server-Side Retention

Because we do not collect your data, there is no server-side retention period. We retain zero data because we collect zero data.

10.3 Data Deletion

You may permanently delete your data at any time by:

Using the in-app data management features to delete specific records
Using the in-app option to delete all data
Uninstalling the App from your Device, which removes all associated data
Performing a factory reset on your Device

10.4 Backup Considerations

If you have enabled iCloud Backup or create iTunes/Finder backups, your App data may be included in those backups. Managing or deleting this backed-up data is governed by Apple's policies and your backup settings.

11. Children's Privacy

11.1 COPPA Compliance

We comply with the Children's Online Privacy Protection Act (COPPA) and similar laws worldwide. However, because we collect no information from any user, the protections typically required under these laws are inherently satisfied.

11.2 No Collection from Children

We do not knowingly collect any Personal Information from anyone, including children under 13 years of age (or the applicable age in other jurisdictions, such as 16 in the European Union). Since we collect no data from any user, no special provisions for children's data are necessary.

11.3 Parental Guidance

The App is designed for general audiences interested in personal finance management. We recommend that parents and guardians supervise their children's use of mobile applications and devices, and review the settings and content of apps their children use.

11.4 Contact Regarding Children

If you are a parent or guardian and believe your child has somehow provided us with Personal Information (although this is technically impossible through the App), please contact us at infow3bdev@gmail.com. If we become aware that we have inadvertently received Personal Information from a child through any means, we will delete such information immediately.

12. Washington State Privacy Rights

12.1 Washington State Consumer Protection

As a Washington State-based developer, we operate in compliance with Washington State's Consumer Protection Act (RCW 19.86) and other applicable state laws regarding consumer privacy and data protection.

12.2 Washington My Health My Data Act

The Washington My Health My Data Act provides enhanced protections for consumer health data. While Nuvio may be used to track health-related expenses, we do not collect any health data or any other data. All such information remains on your Device and is never accessible to us.

12.3 Washington State Data Breach Laws

Washington State's data breach notification law (RCW 19.255.010) requires businesses to notify consumers of security breaches involving personal information. Because we do not collect or store any personal information, there is no risk of a data breach involving your data from our systems.

12.4 Washington State Rights

Under Washington State law, consumers have various rights regarding their personal information. Because we collect no personal information, these rights are automatically satisfied:

Right to know what data is collected (Answer: None)
Right to access data (All your data is on your Device)
Right to delete data (You control all deletion via the App)
Right to data portability (Export feature available in the App)
Right to non-discrimination for exercising rights (Not applicable as we have no data)

13. California Residents (CCPA/CPRA)

13.1 California Consumer Privacy Act

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA). This section describes those rights and how they apply given our zero data collection policy.

13.2 Categories of Personal Information

Under the CCPA, we are required to disclose the categories of Personal Information we collect. We collect no categories of Personal Information. Specifically:

Identifiers: Not collected
Personal Information under Cal. Civ. Code 1798.80: Not collected
Protected classification characteristics: Not collected
Commercial information: Not collected
Biometric information: Not collected
Internet or network activity: Not collected
Geolocation data: Not collected
Sensory data: Not collected
Professional or employment information: Not collected
Education information: Not collected
Inferences: Not collected (no data to draw inferences from)
Sensitive Personal Information: Not collected

13.3 Sale and Sharing of Personal Information

We do not sell your Personal Information. We have not sold Personal Information in the preceding 12 months or ever. We will not sell your Personal Information in the future.

We do not share your Personal Information for cross-context behavioral advertising. We have not shared Personal Information for such purposes in the preceding 12 months or ever.

13.4 California Consumer Rights

California residents have the following rights under the CCPA/CPRA. We explain how each right applies given our zero data collection:

Right to Know: You have the right to know what Personal Information we collect, use, disclose, and sell. We collect, use, disclose, and sell no Personal Information.
Right to Delete: You have the right to request deletion of your Personal Information. We have no Personal Information to delete. You can delete your local data yourself within the App.
Right to Correct: You have the right to correct inaccurate Personal Information. We have no Personal Information to correct. You can correct your local data yourself within the App.
Right to Opt-Out of Sale: You have the right to opt out of the sale of your Personal Information. We do not sell Personal Information.
Right to Limit Use of Sensitive Personal Information: You have the right to limit the use of sensitive Personal Information. We do not collect sensitive Personal Information.
Right to Non-Discrimination: You have the right not to be discriminated against for exercising your privacy rights. This right is not applicable as we have no data to use for discrimination.

13.5 Do Not Sell or Share My Personal Information

Because we do not sell or share any Personal Information, a "Do Not Sell or Share My Personal Information" opt-out mechanism is not necessary. There is nothing to opt out of.

13.6 Financial Incentives

We do not offer any financial incentives related to the collection, retention, or sale of Personal Information.

13.7 Authorized Agents

California residents may designate an authorized agent to make requests on their behalf. However, because we collect no Personal Information, there are no requests we can fulfill.

13.8 Shine the Light

Under California Civil Code Section 1798.83 ("Shine the Light"), California residents may request information about disclosure of Personal Information to third parties for direct marketing purposes. We do not disclose Personal Information to third parties for direct marketing purposes because we collect no Personal Information.

14. European Users (GDPR)

14.1 General Data Protection Regulation

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR) and equivalent laws. This section explains how these rights apply to our zero data collection model.

14.2 Legal Basis for Processing

Under the GDPR, processing of Personal Data requires a legal basis. Because we do not process any Personal Data, no legal basis is required or applicable.

14.3 Data Subject Rights

European data subjects have the following rights under GDPR:

Right of Access (Article 15): You have the right to access your Personal Data. We hold no Personal Data about you.
Right to Rectification (Article 16): You have the right to correct inaccurate Personal Data. We hold no Personal Data to correct.
Right to Erasure (Article 17): You have the right to erasure ("right to be forgotten"). We hold no Personal Data to erase. You control erasure of your local data.
Right to Restriction (Article 18): You have the right to restrict processing. We do not process any Personal Data.
Right to Data Portability (Article 20): You have the right to receive your data in a portable format. Use the App's export feature for your local data.
Right to Object (Article 21): You have the right to object to processing. We do not process any Personal Data.
Rights Related to Automated Decision-Making (Article 22): You have rights related to automated decision-making and profiling. We do not engage in any automated decision-making or profiling.

14.4 Data Protection Officer

Given our zero data collection policy, we have not appointed a Data Protection Officer as we do not process Personal Data.

14.5 Supervisory Authority

You have the right to lodge a complaint with a supervisory authority, particularly in the EU Member State of your habitual residence, place of work, or place of alleged infringement. However, given our zero data collection, we encourage you to contact us first at infow3bdev@gmail.com.

15. International Data Transfers

15.1 No International Transfers

Because all data remains exclusively on your Device and we do not collect any data, there are no international transfers of your Personal Information to consider.

15.2 Local Processing

All data processing occurs locally on your Device, in whatever country you and your Device are located. Your data never leaves your Device to travel to any other jurisdiction.

15.3 Global Availability

The App is available globally through the App Store. Regardless of where you are located, your data remains on your Device and is subject to your local jurisdiction's laws as they pertain to data stored on devices you own and control.

16. Website Privacy Practices

16.1 Website vs. App

This section describes privacy practices for our website at nuviomm.com, which are separate from the App's privacy practices.

16.2 Website Data Collection

Our website may collect limited information through:

Contact Form: If you submit a contact form, we receive the information you voluntarily provide (name, email, message) for the purpose of responding to your inquiry.
Server Logs: Our website hosting provider may automatically collect standard log data (IP address, browser type, referring pages) as part of standard web hosting operations.

16.3 Website Cookies

Our website may use essential cookies necessary for website functionality. We do not use cookies for tracking, advertising, or analytics purposes on our website.

16.4 Third Party Website Services

Our website may utilize third party services for hosting, form processing, or other operational purposes. These third parties may have their own privacy policies governing their services.

17. Changes to This Privacy Policy

17.1 Modification Rights

We reserve the right to modify this Privacy Policy at any time. Any changes will be effective immediately upon posting the updated Policy on this page with a new "Last Updated" date.

17.2 Notification of Changes

For material changes to this Policy, we will make reasonable efforts to provide notice, such as updating the App Store description or prominently posting a notice on our website. However, it is your responsibility to periodically review this Policy for changes.

17.3 Our Commitment

While we may update this Policy to clarify our practices, comply with legal requirements, or reflect changes in our operations, our fundamental commitment to zero data collection will not change.

If we ever consider changing this core principle (which we do not anticipate), we would:

Provide prominent advance notice
Obtain your explicit consent before any data collection begins
Comply with all applicable laws regarding consent and notification
Allow you to continue using existing versions without data collection

17.4 Continued Use

Your continued use of the App after any modifications to this Policy indicates your acceptance of the modified Policy.

18. Contact Information

18.1 How to Contact Us

If you have any questions, concerns, comments, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: infow3bdev@gmail.com
Website Contact Form: nuviomm.com/contact

18.2 Response Time

We will make reasonable efforts to respond to your inquiries within 48 hours during business days, and in any event within any timeframes required by applicable law.

18.3 Important Note

Please understand that because we do not collect any data through the App, we cannot provide you with copies of your data, delete data, or make corrections to data on your behalf. All such data management must be performed by you directly within the App on your Device.

19. Effective Date and Governing Law

19.1 Effective Date

This Privacy Policy is effective as of December 30, 2025.

19.2 Governing Law

This Privacy Policy and any disputes arising from or relating to it shall be governed by and construed in accordance with the laws of the State of Washington, United States, without regard to its conflict of law provisions, except where preempted by federal law.

19.3 Severability

If any provision of this Privacy Policy is found to be unenforceable or invalid by a court of competent jurisdiction, that provision shall be limited or eliminated to the minimum extent necessary so that this Privacy Policy shall otherwise remain in full force and effect.

19.4 Entire Agreement

This Privacy Policy, together with our Terms of Service, constitutes the entire agreement between you and us regarding privacy and data handling in connection with the App.