Sprout Finance

Privacy Policy

Sprout Privacy Policy

Last updated March 8, 2026

This policy explains how the Sprout iOS app handles information when you use local features, connect financial accounts, scan receipts, or sign in for cloud sync.

Key Points

  • You can use Sprout with local or sample data without creating an account.
  • Bank connections, cloud sync, notifications, receipt scanning, and biometric protection are optional.
  • Sprout does not sell personal data, use it for advertising, or track you across other apps or websites.

Information We Collect

  • Financial information you choose to connect or enter, including balances, transactions, holdings, liabilities, budgets, goals, and related history.
  • Account and sync information, including a user ID, sign-in provider details, and your email address when you choose a sign-in flow.
  • Receipt information, including images, extracted text, merchant names, totals, dates, notes, and transaction links.
  • App settings and security preferences, including notification preferences, currency settings, session settings, and biometric lock preferences.
  • Technical and recovery identifiers stored in the iOS Keychain or app storage to maintain sessions, secure tokens, and restore linked connections.

How We Use Information

  • To provide dashboards, transactions, budgets, investments, goals, recurring charges, receipts, and summaries.
  • To connect financial accounts through Plaid and import the data needed for those features.
  • To authenticate you, keep you signed in, and sync or restore your data across devices when you choose cloud features.
  • To generate local reminders, summaries, and budget alerts if you enable notifications.
  • To protect your data and support device-based authentication when enabled.

Bank Connections and Third Parties

  • If you connect a bank account, Plaid provides the bank-link flow and returns account and transaction data to Sprout.
  • If you sign in for cloud features, Supabase is used for authentication, sync, and backend storage.
  • If you choose Sign in with Apple or Google, those providers may process authentication data under their own policies.
  • Receipt text recognition is performed on device using Apple system frameworks by default.
  • Sprout does not sell or rent information to advertisers, data brokers, or unrelated third parties.

Permissions and Security

  • Camera and photo library access are used only if you choose to scan or import receipt images.
  • Face ID or Touch ID is used only if you enable biometric protection or biometric re-authentication.
  • Notifications are used only if you grant permission so the app can deliver local reminders, summaries, and alerts.
  • Network requests for connected features are transmitted over HTTPS.

Retention and Choices

  • Data is generally kept until you delete it, disconnect an account, clear local app data, or remove synced content.
  • You can use local or sample data without signing in.
  • You can disconnect linked banks, clear local data, sign out, or delete your account from the app where available.
  • You can disable notifications, receipt access, or biometric features through iOS settings or in the app.