Schmidti Budget
Privacy Terms Legal notice Support Deutsch

Privacy Policy

Last updated: 2 June 2026

This Privacy Policy explains what data Schmidti Budget collects, why we collect it, who processes it on our behalf, and the rights you have under the EU General Data Protection Regulation (GDPR). It applies to the Schmidti Budget mobile application available on the Apple App Store.

1. Who we are

The controller responsible for processing your personal data is:

Johannes Schmidt
Zeisigweg 16a, 81827 München, Germany
Email: [email protected]

If you have any questions about this policy or your data, you can reach us at the email address above.

2. What we collect and why

Schmidti Budget is a household budgeting app. We only collect what we need to provide the service.

2.1 Account data

  • Email address. Required to sign in and to recover your account. You can also start in guest mode without providing an email address.
  • Display name (username). Optional. If you don't set one, your email is used as a fallback.
  • Firebase user identifier. Firebase Authentication assigns a user ID to every account, including temporary guest accounts.
  • Sign-in provider identifier. If you sign in with email/password, Google, or Apple, Firebase stores the identifier needed to recognize you on later sign-ins. We never receive your Google or Apple password.

Purpose: account creation, sign-in, account recovery, and guest access.
Legal basis (GDPR Art. 6): performance of a contract (Art. 6(1)(b)).

2.1.1 Guest mode and account upgrades

When you start Schmidti Budget as a guest, Firebase Authentication creates a temporary anonymous account. Budget data you enter in guest mode is stored in Cloud Firestore and tied to that anonymous Firebase user ID.

If you later create an account with email/password, Google, or Apple from inside the guest account, Firebase links the new sign-in method to the same user ID so your existing buckets and transactions remain available.

Because guest data is not backed up or synced, if you switch phones or otherwise lose access to the anonymous Firebase session on this device before creating a permanent sign-in method, we may not be able to reconnect you to the guest data. Signing in to an already existing account does not merge guest data into that account.

Guest accounts cannot use household group collaboration. Group collaboration requires a permanent sign-in method.

2.2 Budget data you enter

  • Buckets (names, emoji, balances, targets).
  • Transactions (amounts, categories, dates, notes).
  • Recurring transactions (amounts, frequencies).

This is the content you actively enter into the app. It is stored in our hosted database so you can access it from your devices and so household members in a shared group can collaborate.

Purpose: providing the core budgeting features.
Legal basis: performance of a contract (Art. 6(1)(b)).

2.3 Group / household data

If you create or join a shared household group, we store:

  • The group's name and membership list.
  • Pending invitations (the email address of invited members until the invitation is accepted, declined, or revoked).

Purpose: enabling shared budgeting across household members.
Legal basis: performance of a contract (Art. 6(1)(b)).

2.4 Technical metadata

  • Standard server-side request metadata such as timestamps. We do not collect IP addresses, device identifiers, or location data for our own use.
  • Personal usage counters stored on your user document: the lifetime number of transactions you created and the number of times you opened the app. These counters are per-user and only shown to you (in the "Fun Facts" section of your account page). They are not used for analytics, profiling, or any decision affecting you.

2.5 Anonymous product analytics

  • Anonymous product-interaction events such as app start, account creation method, bucket type created, transaction type created, group creation, invitation sent/accepted, and selected validation errors.

We do not send email addresses, Firebase user IDs, group IDs, bucket IDs, bucket names, transaction names or notes, amounts, balances, or other financial content to analytics.

Purpose: understanding whether the core budgeting flows work and improving
the app.
Legal basis: legitimate interests (Art. 6(1)(f)) in improving the app while
minimising the data collected.

3. Processors we use

We use the following service providers ("processors" under GDPR Art. 28) to operate Schmidti Budget. Each processor is bound by a data-processing agreement and is committed to GDPR-grade safeguards.

Processor Role Location of processing Safeguard for transfers
Google Ireland Limited / Google LLC (Firebase Authentication, Cloud Firestore) Account auth and primary database eur3 (European multi-region: Netherlands and Belgium) EU-US Data Privacy Framework, Standard Contractual Clauses
Apple Inc. (Sign in with Apple, optional) Optional sign-in provider United States Standard Contractual Clauses
Google LLC (Google Sign-In, optional) Optional sign-in provider United States EU-US Data Privacy Framework, Standard Contractual Clauses
Sumbit Labs Limited (Aptabase) Anonymous product analytics European Union / Germany Processing inside the EU

If you sign in via Apple or Google, that provider also processes your authentication request directly under their own privacy policies.

4. Where your data is stored

Your budget data is stored in Cloud Firestore in eur3 (European multi-region: Netherlands and Belgium). Authentication credentials are managed by Firebase Authentication. Anonymous product analytics are stored by Aptabase in the European Union / Germany. We do not transfer your data to other third parties beyond the processors listed above.

5. How long we keep your data

We keep your data for as long as you have an account, including a temporary guest account.

When you delete your account from within the app:

  • Your personal data (profile, personal buckets, transactions, recurring transactions, and templates) is deleted immediately.
  • Data you contributed to a shared household group is transferred to the remaining group owner so the group can continue to function. If you were the sole member of a group, the group is deleted as well.
  • Outstanding invitations you created or received are deleted.
  • Routine Firebase backups may briefly retain copies of deleted data before they expire (typically within 30 days).

You can request deletion at any time directly inside the app via Account → Delete Account, where that action is available for your account type. The same deletion behavior applies to guest accounts. You can also request deletion or any other rights below by emailing [email protected].

6. Your rights under the GDPR

You have the right to:

  • Access (Art. 15) — request a copy of your personal data.
  • Rectification (Art. 16) — ask us to correct inaccurate data.
  • Erasure (Art. 17) — delete your data, either via the in-app Delete Account flow or by emailing us.
  • Restriction of processing (Art. 18).
  • Data portability (Art. 20) — export of your budget data.
  • Object to processing (Art. 21).
  • Lodge a complaint with a supervisory authority. In Germany, the competent authority is the data protection authority of the federal state in which the controller is based.

To exercise any of these rights, contact us at [email protected]. We respond within one month per Art. 12(3).

7. Encryption and security

Data in transit between your device and our processors is encrypted using HTTPS / TLS. Data at rest in Cloud Firestore is encrypted by Google's infrastructure. Access to the database is restricted by Firebase Security Rules so that you can only read and write data linked to your account or to a group you are a member of.

Schmidti Budget does not currently apply end-to-end encryption to your budget data. An optional client-side encryption feature is planned for a future release.

8. Children

Schmidti Budget is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it.

9. No tracking or advertising

Schmidti Budget contains no advertising and no cross-app tracking. We never sell or share your personal data with advertisers. The App Tracking Transparency prompt does not appear because the app does not track you across apps and websites. Product analytics are anonymous and used only to improve the app.

10. Changes to this policy

If we change this Privacy Policy, we will update the "Last updated" date above and, where the changes are material, notify you in the app or by email before the changes take effect.

11. Contact

Questions about this Privacy Policy: [email protected]

© 2026 Johannes Schmidt
Privacy / Terms / Legal notice / Support