Privacy Policy
Effective Date: January 1, 2026
DoorCash ("we," "our," "the app") is a rental property cash flow tracker for iOS. We built DoorCash with privacy as a priority. This policy explains what data we collect, where it goes, and what control you have over it.
What Data DoorCash Collects
When you use DoorCash, the app handles the following types of information:
- Property information — names, addresses, and details of your rental properties
- Financial transactions — income and expense records you enter or import (amounts, dates, categories, notes)
- Receipts — photos you scan for transaction entry (processed on-device using Apple's Vision framework)
- Bank account connections — if you choose to link a bank account via Plaid, we store account metadata (institution name, account nickname, last four digits, account type)
- Authentication data — your Apple ID identity token, used to create your account via Sign in with Apple
What Stays on Your Device
The core of your financial data lives on your device, not on our servers.
- All property records, transactions, and receipt images are stored locally using Apple's SwiftData framework.
- If you enable iCloud sync, this data is also stored in your private iCloud container via Apple CloudKit. Apple manages encryption and access. We cannot read your CloudKit data.
- Receipt scanning and auto-categorization happen entirely on-device using Apple's Vision and Core ML frameworks. Your receipt photos are never uploaded to our servers.
- Natural language queries about your portfolio anonymize your data before sending it to any external API. Property names are replaced with generic labels (e.g., "Property A"), and addresses are stripped entirely.
What Goes to Third Parties
DoorCash uses a small number of third-party services. Here is exactly what each one receives:
Plaid (Bank Account Connections)
- What they receive: Your bank login credentials, which you enter directly into Plaid's secure interface (Plaid Link). Plaid also processes your bank transaction data to make it available for import into DoorCash.
- What we receive from Plaid: Transaction details (amounts, dates, merchant names, categories) for accounts you have linked. These are presented to you for review before entering your ledger.
- What we never receive: Your bank login credentials. These are handled entirely by Plaid and never pass through our servers. Plaid's access tokens are stored server-side with encryption at rest.
- Plaid's own privacy policy: https://plaid.com/legal
Apple CloudKit (iCloud Sync)
- What they receive: Your property and transaction data, encrypted and stored in your private iCloud container.
- Who can access it: Only you, through devices signed into your Apple ID. We do not have access to your CloudKit data.
- Apple's privacy policy: https://www.apple.com/legal/privacy
What We Do NOT Do
- We do not sell your data. Not to advertisers, data brokers, or anyone else.
- We do not build profiles about you. We do not track your behavior across apps or websites.
- We do not share your data with third parties beyond the services listed above, which are strictly necessary for the app to function.
Data Retention
- On-device data: Stays on your device (and in your iCloud container, if enabled) until you delete it. You have full control.
- Server-side data: Your authentication record and linked account metadata are retained as long as your account exists.
- Plaid data: Transaction data fetched from Plaid is stored temporarily for your review. Once you approve or dismiss imported transactions, the staging data can be cleared.
- Deleting your account: When you delete your DoorCash account, we remove all server-side data associated with your account, including authentication records, linked account metadata, and any staged transaction data. On-device data remains on your device until you delete the app. CloudKit data can be removed through your iCloud storage settings.
Your Rights
Right to Access
You can request a copy of any data we hold about you on our servers. Since most of your data lives on-device, you already have direct access to it.
Right to Delete
You can delete your account and all associated server-side data at any time from within the app. This is a permanent action.
Right to Portability
DoorCash supports exporting your financial data as PDF or CSV files, which you can use with any other application.
For California Residents (CCPA)
You have the right to know what personal information we collect, request its deletion, and opt out of its sale. We do not sell personal information. To exercise your rights, contact us at the address below.
Security
- All network communication uses HTTPS/TLS encryption.
- Bank credentials are handled exclusively by Plaid's secure infrastructure.
- Plaid access tokens are stored server-side with encryption at rest.
- All server-side data is protected by row-level security, ensuring users can only access their own records.
- Webhook endpoints verify Plaid's cryptographic signatures before processing.
- Authentication uses Sign in with Apple, which does not expose your email address to us unless you choose to share it.
Children's Privacy
DoorCash is not intended for use by children under 13. We do not knowingly collect personal information from children.
Changes to This Policy
If we make material changes to this privacy policy, we will notify you through the app before the changes take effect. The updated policy will include a new effective date.
Contact Us
If you have questions about this privacy policy or want to exercise your data rights:
Email: hello@doorcash.app
This privacy policy is effective as of January 1, 2026.