DYCED - Privacy Policy
Privacy Policy for Dyced
Â
Effective date: June 3, 2026
Last updated: June 3, 2026
Â
This Privacy Policy explains how Komail Ali ("we," "us," or "our"), the individual developer of the mobile application Dyced (the "App"), collects, uses, shares, and protects your information when you use the App. By downloading, installing, or using Dyced, you agree to the practices described below.
Â
If you have any questions about this Policy or your data, contact us at Komail.ali1@yahoo.com.
Â
Â
1. Who we are
Â
Dyced is a travel and expense tracking application that lets you record expenses (including by voice), scan receipts, organize trips, view itineraries on a map, and optionally share trips and expenses with people you invite. The App is published by Komail Ali as an individual developer.
Â
Â
2. Information we collect
Â
We collect only the information necessary to operate the App, secure your account, and provide the features you use.
Â
2.1 Information you provide
Â
- Account information. When you sign in, we receive your name, email address, and a unique user identifier from the sign-in provider you choose (e.g., Sign in with Apple, Google).
- Expense and trip content. Expense amounts, currencies, categories, dates, merchant names, notes, trip names, itinerary entries, locations you add to a trip, group memberships, and any other content you create in the App.
- Receipts and images. Photos of receipts you capture with the camera or upload from your photo library, and images you attach to expenses or messages.
- Voice input. Audio captured for voice-based expense entry and the transcribed text. Audio is processed using Apple's on-device or Apple-provided speech recognition (see Section 4).
- Messages. Text and image messages you send to people you have shared a trip or group with.
- Communications with us. Any information you send us by email, including the contents of support requests.
Â
2.2 Information collected automatically
Â
- Device and diagnostic data. Device model, operating system version, app version, language and region, anonymous installation identifier, and crash or error logs used to diagnose problems.
- Push notification token. An Apple Push Notification service (APNs) / Firebase Cloud Messaging token assigned to your device so we can send notifications you have enabled.
- Approximate usage timestamps. When records are created, modified, or synced, so that data can be ordered and reconciled across devices.
Â
2.3 Information you grant permission for
Â
The App requests these system permissions only at the moment a feature needs them. You can change or revoke any of these at any time in iOS Settings → Privacy & Security.
Â
- Camera: Scanning and photographing receipts.
- Microphone: Voice-based expense entry.
- Speech recognition: Converting voice input to expense text.
- Photo Library (add): Saving a shared receipt image to your library when you tap Save Image.
- Location (When In Use): Estimating live travel time to your next stop while viewing a trip itinerary map. Location is used only while the map is open and is not stored on our servers or shared.
- Notifications: Delivering reminders, sync events, and messages from people you share trips with.
Â
We do not access your contacts, calendars, health data, or background location.
Â
Â
3. How we use your information
Â
We use the information described above only to:
Â
- Authenticate you and keep your account secure.
- Sync your expenses, trips, receipts, and messages across your devices and with people you have explicitly shared them with.
- Provide the App's features (voice entry, OCR/receipt capture, itinerary mapping, group expense splitting, notifications, etc.).
- Diagnose crashes and fix bugs.
- Prevent fraud, abuse, and violations of our terms.
- Respond to your support requests and legal obligations.
Â
We do not use your information for advertising, do not sell your information, and do not use it to build profiles for marketing.
Â
Â
4. How information is processed and stored
Â
The App uses Google Firebase (provided by Google LLC) as its backend infrastructure. Specifically:
Â
- Firebase Authentication verifies your identity.
- Cloud Firestore stores your expenses, trips, groups, and messages.
- Firebase Storage stores receipt images and other attachments.
- Cloud Functions for Firebase runs server-side logic such as currency conversion, invitations, and notifications.
- Firebase Cloud Messaging delivers push notifications.
Â
Data is stored on Google Cloud infrastructure and is protected in transit (TLS) and at rest using industry-standard encryption. Access to your data is controlled by per-user security rules so that only you and people you have explicitly shared trips or groups with can read it.
Â
Voice and speech recognition is performed using Apple's on-device or Apple-hosted Speech framework. Raw audio is not sent to our servers; only the transcribed text you confirm becomes part of your expense record.
Â
Â
5. Sharing your information
Â
We share your information only in these limited cases:
Â
1. People you choose. When you add a co-traveler to a trip, invite someone to a group, or send a message, the content you intentionally share becomes visible to those people through the App.
2. Service providers. Google (Firebase / Google Cloud) and Apple (Sign in with Apple, APNs, Speech) process data on our behalf, under contractual obligations that require equivalent protections to those described in this Policy. These providers are not permitted to use your data for their own purposes.
3. Legal requirements. We may disclose information if required by law, subpoena, or other valid legal process, or to protect the rights, property, or safety of users or the public.
4. Business transfer. If the App is ever transferred to another developer or entity, your data may be transferred as part of that transaction. You will be notified in advance and given the option to delete your account before any transfer takes effect.
Â
We do not sell or rent your personal information to third parties, and we do not share it for cross-context behavioral advertising.
Â
Â
6. Data retention
Â
We retain your information for as long as your account is active. When you delete your account (see Section 8), your personal data, expenses, trips, receipts, and messages are deleted from our active systems within 30 days, and from encrypted backups within 90 days. We may retain a minimal record (e.g., the fact that an account with your user ID existed) where required by law or to prevent abuse.
Â
Content you have shared with other users (e.g., a group expense visible to a co-traveler) may remain visible to them after your deletion, in the same way an email you sent remains in the recipient's inbox.
Â
Â
7. Children
Â
Dyced is not directed to children under 13 (or the equivalent minimum age in your jurisdiction), and we do not knowingly collect personal information from them. If you believe a child has provided us with personal information, contact us at Komail.ali1@yahoo.com and we will delete it.
Â
Â
8. Your rights and choices
Â
Regardless of where you live, you can:
Â
- Access your data — most of it is visible directly in the App.
- Correct your data — by editing it in the App.
- Export your data — contact us at Komail.ali1@yahoo.com.
- Delete your account and all associated data — open the App and go to Settings → Account → Delete Account, or email Komail.ali1@yahoo.com. Account deletion is permanent and follows the retention timeline in Section 6.
- Revoke permissions — at any time in iOS Settings → Privacy & Security, or Settings → Notifications.
Â
8.1 Residents of the European Economic Area, United Kingdom, and Switzerland (GDPR / UK GDPR)
Â
You also have the right to (a) restrict or object to processing, (b) data portability, (c) withdraw consent at any time, and (d) lodge a complaint with your local data protection authority. Our legal bases for processing are: performance of a contract (providing the App's features you requested), legitimate interests (security, fraud prevention, diagnostics), consent (camera, microphone, location, notifications), and legal obligations.
Â
8.2 Residents of California (CCPA / CPRA)
Â
In the past 12 months we have collected the categories of personal information described in Section 2 for the purposes described in Section 3. We have not sold or shared personal information for cross-context behavioral advertising, and we do not knowingly collect personal information from minors under 16. You have the right to know, delete, correct, and limit the use of sensitive personal information, and the right not to be discriminated against for exercising these rights. To exercise them, contact Komail.ali1@yahoo.com.
Â
8.3 Other regions
Â
Residents of other jurisdictions (including Canada, Brazil, and Australia) have substantially similar rights and may contact us using the same email.
Â
Â
9. International data transfers
Â
Firebase and Google Cloud may process data in countries other than your own, including the United States. Where required, transfers rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses and Google's data-processing terms.
Â
Â
10. Security
Â
We use TLS for data in transit, encryption at rest on Google Cloud, per-user Firestore and Storage security rules, and authentication tokens scoped to the signed-in user. No system is perfectly secure; if we become aware of a breach that affects your data, we will notify you and the appropriate authorities as required by law.
Â
Â
11. Third-party services
Â
The App relies on the following third-party services. Their privacy policies govern their handling of your data:
Â
- Apple — Sign in with Apple, Push Notifications, Speech Recognition: https://www.apple.com/legal/privacy/
- Google (Firebase / Google Cloud) — Authentication, database, storage, functions, messaging: https://firebase.google.com/support/privacy and https://policies.google.com/privacy
Â
Â
12. Tracking
Â
Dyced does not track you across apps or websites owned by other companies, and does not use the iOS Advertising Identifier (IDFA). The App's NSPrivacyTracking flag is set to false.
Â
Â
13. Changes to this Policy
Â
We may update this Policy from time to time. When we do, we will revise the "Last updated" date above and, for material changes, notify you in the App or by email before the change takes effect. Your continued use of the App after the change becomes effective constitutes acceptance of the updated Policy.
Â
Â
14. Contact
Â
If you have questions, requests, or complaints regarding this Policy or your personal data, contact:
Â
Komail Ali
Email: Komail.ali1@yahoo.com
Â
We will respond within 30 days, or sooner where required by law.