Privacy Policy

Last updated: 19 May 2026

Money Drip is an app that helps you take control of your fixed expenses. Privacy matters to us, and we designed the app to collect as little data as possible. This policy explains in plain language what data we use, why, and what your rights are.

1. Who we are

Money Drip is offered by A.Y.V. Hubers Beheer B.V., established in Rotterdam, the Netherlands. A.Y.V. Hubers Beheer B.V. is the data controller for all personal data processed through the app.

A.Y.V. Hubers Beheer B.V.

Laan op Zuid 188

3071AA Rotterdam, The Netherlands

Chamber of Commerce: 24425152

VAT: NL818710093B01

Privacy contact: privacy@moneydrip.app

2. What the app does

Money Drip helps you gain insight into your fixed expenses, subscriptions, and daily spending. You can scan bank statements or credit card overviews using AI, add bills manually, and optionally compare your spending anonymously with people similar to you (Peek over the fence).

3. What data we collect

3.1. Data that stays on your device only

The following data is stored locally on your iPhone or iPad and syncs through your own iCloud account. We have no access to it:

Bills and subscriptions you add (name, amount, date, category)
Sneaky Habits and donations you record
Preferences such as language and sound settings
Your Peek profile (household size, children, housing type, age bracket, country, optional income bracket)

3.2. Data sent to our servers

For specific functionality, we send limited data to our servers at Cloudflare. Per function we explain what data this is.

Scan function (Money Drip AI):

The photo or PDF file of the statement you scan (processed immediately and not retained)
A random device identifier to prevent abuse and track your monthly scan quota

Peek over the fence (anonymous comparison):

When you participate in Peek over the fence, we send your profile attributes and category totals to our server. We do not store an individual profile of you. We only keep statistical counters per cohort (groups of people with similar profiles): how many people, average total, average per category. Additionally, we store one technical helper file per device with cohort keys, so you can always reverse your participation.

Idea function (feedback):

The idea or feedback you voluntarily submit
Language and app version (technical context)
Submission timestamp

We do not ask for an email address or any other identification with idea submissions.

3.3. What we do NOT collect

Money Drip is intentionally designed without tracking. We do not collect:

Cookies or similar tracking technology
Analytics about how you use the app
Advertising IDs from Apple or third parties
Location data
Contact information from your address book
Your real name, email, or phone number (unless you enter it yourself in an idea submission, which we don't ask for in v1.0)
Third-party data such as from Facebook, Google, or ad networks

4. Why we process this data

Under GDPR, we need a legal basis for each processing activity. For Money Drip we use:

Scan function and device ID: legitimate interest. You actively request the scan, and the device ID is needed to prevent abuse.
Peek over the fence: your explicit consent. You agree via the consent screen before we send anything. You can withdraw consent at any time via Settings.
Idea function: your consent. You voluntarily fill in and submit.

5. Who we share data with

We share data with two sub-processors, and no one else. We never sell or rent your data to third parties.

Anthropic (United States):

Anthropic processes the photos and PDF files you scan using AI. The scan is performed and the result returned. Anthropic does not retain the scan for its own purposes. Anthropic is based in the United States and certified under the EU-US Data Privacy Framework (DPF), which is an appropriate safeguard under GDPR.

Cloudflare (primarily EU, sometimes US under DPF):

Cloudflare hosts our server (Worker) and stores the anonymous Peek aggregates and technical helper files. Cloudflare has data centers worldwide and automatically selects the nearest one, usually within the EU. For any processing outside the EU, Cloudflare is certified under the DPF.

6. How long we retain data

Scan photos and PDF files: not retained. Processed immediately and discarded after the scan.
Device ID for scan quota: until the end of each month, then automatically reset.
Peek aggregates (anonymous counts): indefinitely, as they cannot be traced to an individual.
Peek technical helper file per device: up to 12 months of inactivity, then automatically deleted.
Idea submissions: maximum 12 months, then deleted.

7. International data transfers

Some data is processed outside the EU, particularly by Anthropic in the United States. For these transfers we rely on the EU-US Data Privacy Framework as an appropriate safeguard, as recognized by the European Commission. Cloudflare processes primarily within the EU.

8. Your rights

Under GDPR you have the following rights:

Right of access: you can ask what data we hold about you.
Right to rectification: you can have incorrect data corrected.
Right to erasure: you can request deletion of your data. For Peek you can do this directly in the app via Settings → Peek over the fence → Delete my profile.
Right to restriction: you can request that processing be limited.
Right to data portability: you can request your data in a common format.
Right to object: you can object to processing based on legitimate interest.
Right to withdraw consent: where processing is based on consent, you can withdraw it at any time.

Send a request to privacy@moneydrip.app. We respond within 30 days.

9. Minimum age

Money Drip is intended for users aged 16 and older. We intentionally do not collect data from children under 16. For the Peek feature, the lowest age bracket is 18-25 years.

10. Changes to this privacy policy

We may update this policy. For significant changes, we will display a notice in the app. The date at the top of this document shows when it was last updated.

11. Complaints and contact

Questions or complaints? Contact us at privacy@moneydrip.app. We're happy to help. If we cannot resolve your concern, you have the right to file a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl.

12. Region-specific rights

United Kingdom (UK-GDPR):

Users from the UK have similar rights as under GDPR. Complaints can be filed with the Information Commissioner's Office (ICO) at ico.org.uk.

Turkey (KVKK):

Users from Turkey are covered by the Kişisel Verilerin Korunması Kanunu (KVKK). You have rights similar to those under GDPR. Complaints can be filed with Kişisel Verileri Koruma Kurumu (KVKK) at kvkk.gov.tr.

California (CCPA/CPRA):

California residents have additional rights under the California Consumer Privacy Act. You have the right to know what data we collect, the right to deletion, and the right to non-discrimination when exercising your rights. We do not sell your data to third parties.