Privacy Policy
Last updated: April 11, 2026
Overview
Throof ("we", "our", or "the app") is an envelope budgeting app for iOS. We are committed to protecting your privacy. This policy explains how your information is handled when you use Throof.
Throof is designed with a privacy-first architecture. All your financial data stays on your device. We do not operate servers that collect, store, or process your personal information.
Data Storage
All budgeting data — including envelopes, transactions, accounts, goals, and settings — is stored locally on your device using Apple's SwiftData framework. Your data is never transmitted to our servers because we do not have any.
If you delete the app, all locally stored data is permanently removed from your device.
SMS Messages
Throof offers an optional SMS import feature that reads bank transaction notifications to automatically log transactions. This feature:
- Only accesses SMS messages when you explicitly initiate an import
- Processes messages entirely on your device
- Does not store, upload, or share your SMS messages
- Only extracts transaction details (amount, merchant, date) and discards the raw message content after parsing
AI-Powered SMS Parsing (Optional)
Throof offers an optional AI-enhanced SMS parsing feature that uses the Anthropic Claude API to improve transaction extraction accuracy. This feature:
- Is entirely optional and disabled by default
- Requires you to provide your own Anthropic API key
- Sends only the text content of individual SMS messages to Anthropic's API for parsing — no other personal data is transmitted
- Your API key is stored securely in the iOS Keychain on your device
When this feature is enabled, SMS text is sent to Anthropic's servers for processing. Anthropic's use of this data is governed by Anthropic's Privacy Policy. Throof does not receive, store, or have access to any data processed by Anthropic.
Notifications
Throof may request permission to send local notifications (e.g., budget reminders). These notifications are generated and scheduled entirely on your device. No notification data is sent to external servers.
Data Collection
Throof does not collect:
- Personal information (name, email, phone number)
- Usage analytics or telemetry
- Device identifiers or advertising IDs
- Location data
- Crash reports (unless you opt in via Apple's standard crash reporting)
We do not use any third-party analytics, tracking, or advertising SDKs.
No Account Required
Throof does not require you to create an account, sign in, or provide any personal information to use the app. There is no registration, no email collection, and no user profiles.
Third-Party Services
Throof does not integrate with any third-party services except:
- Anthropic Claude API (optional, user-initiated) — Used only for AI-enhanced SMS parsing when you provide your own API key and explicitly enable the feature.
Data Security
Your data is protected by:
- iOS device-level encryption and passcode/biometric protection
- iOS Keychain for secure storage of sensitive credentials (API keys)
- Apple's App Sandbox, which isolates your data from other apps
Children's Privacy
Throof is not directed at children under 13. We do not knowingly collect any information from children. Since no data is collected from any users, this applies universally.
Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be reflected on this page with an updated "Last updated" date. We encourage you to review this page periodically.
Contact Us
If you have any questions about this Privacy Policy, please contact us at: