Privacy Policy for Cronus AI
Last Updated: May 20, 2026
At Cronus AI (operated by BeliVSoft LLC), your privacy is our top priority. This Privacy Policy explains how we collect, use, and protect your information when you use our mobile application and services.
1. Information We Collect
1.1 Financial Data via Email Sync
When you connect your Gmail or Outlook account, Cronus AI reads bank notification emails directly on your device. Email content is never transmitted to or stored on our servers.
- What we process: Only emails from supported financial institutions, processed locally on your device.
- What we extract: Transaction amount, merchant name, date, and currency — extracted and stored locally.
- What syncs to the cloud: Only transactions entered manually by the user and app personalization preferences (categories, budgets, settings). Automatically extracted transaction data is stored locally on your device and is not uploaded to our servers.
- No Email Storage: Bank emails are never stored on our servers. Once read on your device, email content is not retained beyond the extraction moment.
1.2 User-Provided Information
- Account Information: Name, email address, and profile preferences when you create an account.
- Manual Entries: Transactions, budgets, and customizations you enter manually are synced to the cloud under your account to enable multi-device access.
1.3 Device and Usage Information
- Biometric Data: We use device-level biometrics (FaceID/TouchID) for app locking. This data remains on your device and is never transmitted to us.
- Technical Logs: IP address, device type, and operating system version to ensure app stability and performance.
1.4 Location Data
- What we collect: Approximate or precise device location at the exact moment a bank notification is detected in the background.
- Why we use it: To associate each detected transaction with the physical location where it occurred.
- Where it is stored: Locally on your device alongside the transaction data. It is not uploaded to our servers unless the user manually syncs their data.
- Required permission: This feature requires "background location" access permission.
- User control: You can revoke this permission from your device settings at any time. If revoked, new transactions will simply not have an associated location.
2. How We Use Your Information
We use the collected data to:
- Automate your expense tracking and categorization, processing email data exclusively on your device.
- Provide AI-driven financial insights and predictions. When you use the AI Assistant, your queries and an anonymized summary of your financial context are sent to our servers to generate a response. The original content of bank emails is never sent to our servers.
- Calculate your Financial Health Score.
- Sync your manually entered data and preferences across multiple devices (Cloud Sync).
- Provide customer support and respond to inquiries.
3. Data Security
We implement industry-standard security measures, including:
- SQLCipher Encryption: Your local database is fully encrypted on-device.
- Secure Transmission: All data sent to our servers is encrypted via TLS/SSL.
- AI Data Access: Our AI assistant only accesses anonymized or aggregated financial data (e.g., spending totals and category summaries). It never accesses the original content of your emails.
4. Use of Google API Services
Cronus AI's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
- Scope used: Cronus AI uses the Gmail API exclusively with the
gmail.readonly permission to read bank notification emails. No other Gmail scopes are requested. - Limited use: Data obtained through Google APIs is used solely to provide and improve the in-app features described in this policy. It is not used for advertising, data brokering, or any purpose unrelated to the core service.
- No data selling: Cronus AI does not sell, transfer, or use Google user data for any purpose other than providing the Cronus AI service.
- No unauthorized use: We do not allow humans to read your Gmail data unless you explicitly grant permission, it is necessary for security purposes, or it is required by law.
5. Data Sharing
Cronus AI does not sell your personal or financial data to third parties. We only share information when:
- Required by Law: To comply with legal obligations or valid legal processes.
- Service Providers: With trusted partners who help us provide our service (e.g., cloud hosting), provided they adhere to strict confidentiality and do not use data for their own purposes.
6. Your Rights
You have the following rights regarding your data:
- Access: You can view all your transactions and account data within the app.
- Export: You can export your transaction history to CSV format at any time.
- Deletion: You can request the deletion of your account and all associated data through the app settings or by contacting us.
6.1 Additional Rights for California Residents (CCPA)
If you reside in California, you additionally have the right to:
- Right to Know: Request details about the categories and specific pieces of personal information we have collected about you, the sources of that information, the purposes for collection, and the categories of third parties with whom we share it.
- Right to Delete: Request the deletion of personal information we have collected from you, subject to certain legal exceptions.
- Right to Opt-Out of Sale: Cronus AI does not sell your personal information. However, you have the right to direct us not to sell your personal information at any time.
- Right to Non-Discrimination: You will not receive discriminatory treatment for exercising any of your CCPA rights.
To exercise these rights, contact us at [email protected]. We will verify your identity before processing any request.
6.2 Additional Rights for Residents of the Dominican Republic (Law 172-13)
If you reside in the Dominican Republic, you additionally have the right to:
- Access: Obtain confirmation of whether your personal data is being processed and request a copy of such data.
- Rectification: Request the correction of inaccurate or incomplete personal data.
- Cancellation: Request the deletion or suppression of your personal data when it is no longer necessary for the purposes for which it was collected.
- Opposition: Object to the processing of your personal data for legitimate reasons related to your particular situation.
To exercise these rights, contact us at [email protected].
7. Updates to This Policy
We may update this Privacy Policy from time to time. Significant changes will be notified via the app or email.
8. Contact Us
If you have any questions about this Privacy Policy, please contact us at:
Email: [email protected]
Company: BeliVSoft LLC