Privacy Policy

Ching (清數理財) · Last updated: 8 April 2026 · Effective: 8 April 2026

1. Data Controller

Ching (清數理財) is developed and maintained by iloveworking Ltd, based in Hong Kong ("we", "us", "our").

Contact: chingsupport@iloveworking.dev

2. What We Collect

Ching is a local-first personal finance app. Your financial data (transactions, accounts, budgets, stock holdings) is stored in a SQLite database on your device only. No account or login is required.

We do not collect personal data by default. The optional features below only transmit data when you explicitly enable them and give consent.

3. AI Advisor (Optional)

When you enable the AI Advisor feature and give consent, a summary of your financial data is sent to our server for analysis:

You control exactly what data is shared via Settings > AI & Privacy — you can exclude accounts, budgets, investments, or couple data individually.

4. Where AI Data Goes

When you use the AI Advisor, your financial snapshot passes through:

Cloudflare Workers & AI Gateway (Cloudflare, Inc., USA) — Your data is routed through Cloudflare's network to an AI gateway endpoint. Due to API geographic restrictions, processing occurs outside Hong Kong (typically United States, Japan, or Singapore). Cloudflare may log request metadata (timestamps, IP addresses) per their privacy policy.

Anthropic (Claude API) (Anthropic, PBC, USA) — Processes your financial data to generate insights. As an API billing customer, your data is not used for model training per Anthropic's privacy policy.

AI responses are cached on your device for up to 24 hours, then automatically discarded. Your IP address is processed by Cloudflare for rate limiting and is not stored beyond the request.

5. Payment Notification Capture (Optional, Android Only)

If you enable "Auto-Capture Payments", the app uses Android's Notification Listener Service to read payment notifications from supported apps (Octopus, Google Pay, PayMe, HSBC, BOCHK).

6. Report Issue (Optional)

If you use the "Report Issue" feature in Settings, the following data is sent to our Cloudflare Worker for debugging purposes:

This data is stored in Cloudflare KV for support purposes and is retained for up to 30 days, after which it is automatically deleted. No financial data (transactions, balances, accounts) is included in bug reports.

7. Partner Mode (Optional)

If you enable Partner Mode, selected transactions are synced between you and your partner via Cloudflare Workers. You choose whether to share all transactions or only split expenses.

The following data is stored on our Cloudflare database while the partnership is active:

This data is deleted when either partner disconnects. Undelivered transactions are cleaned up after 24 hours. Inactive devices are purged after 30 days.

8. Analytics

We use Firebase Analytics (operated by Google LLC, USA) to understand app usage patterns. Firebase collects:

Firebase does not receive your financial data. We do not use analytics data for advertising or user profiling. You can review Firebase's privacy documentation.

9. Push Notifications

We use Firebase Cloud Messaging (FCM) to deliver push notifications (e.g., partner sync alerts). When you grant notification permission, a unique device token is generated by Firebase and sent to Google's servers to route notifications to your device. This token does not contain personal or financial information. You can disable push notifications at any time in your device settings.

10. Legal Basis for Processing

11. International Data Transfers

When you use optional features that transmit data, your information may be processed outside Hong Kong:

These transfers are necessary to provide the services you have opted into. Our service providers maintain appropriate security safeguards for cross-border data processing.

12. Third-Party Service Providers

The following table summarises all third-party services that may process your data when you use optional features:

Service Provider Purpose Data Processed Privacy Policy
Cloudflare Workers & AI Gateway Cloudflare, Inc. (USA) AI request routing, Partner Mode sync, Report Issue Financial snapshot, bug reports, IP address, request metadata Link
Claude API Anthropic, PBC (USA) AI financial analysis Financial snapshot (grouped balances, transactions) Link
Firebase Analytics Google LLC (USA) App usage analytics Interaction events, device info, app-instance ID Link
Firebase Cloud Messaging Google LLC (USA) Push notifications Device token (FCM token) Link

We do not use any advertising networks, social media SDKs, or other third-party tracking services beyond those listed above.

13. Cookies and Local Storage

Ching is a native mobile application and does not use cookies. All app preferences are stored locally on your device using standard Android/iOS storage mechanisms (SharedPreferences / UserDefaults). This privacy policy page itself does not set any cookies or use any tracking scripts.

14. Data Retention

15. What We Do Not Do

The AI Advisor provides automated analysis and suggestions based on your financial data. These are informational only and do not constitute financial advice. No automated decisions with legal or similarly significant effects are made about you.

16. Your Rights

Under the Hong Kong Personal Data (Privacy) Ordinance (Cap. 486) and applicable data protection laws, you have the right to:

To exercise these rights, contact us at chingsupport@iloveworking.dev. We will respond within 40 days as required by Hong Kong law.

If you believe your data privacy rights have been violated, you may lodge a complaint with the Office of the Privacy Commissioner for Personal Data (PCPD).

17. Children's Privacy

Ching is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

18. Security

We protect your data through: local-first architecture (data stays on your device by default), encrypted API key storage (Flutter Secure Storage), encrypted HTTPS connections for all server communications, and API key authentication for server endpoints.

19. Changes to This Policy

This policy may be updated to reflect changes in our practices or legal requirements. We encourage you to review this page periodically. The "Last updated" date at the top indicates when the policy was last revised. Continued use of the app after changes constitutes acceptance of the updated policy.

20. Contact

For questions, data access requests, deletion requests, or concerns:

Email: chingsupport@iloveworking.dev

For formal data access or correction requests under the Personal Data (Privacy) Ordinance (Cap. 486), we will respond within 40 days as required by law.

In the event of any inconsistency between the English and Chinese versions of this policy, the English version shall prevail.

© 2026 iloveworking Ltd.