Divly Back to home

Privacy Policy

Privacy Policy

Last updated: May 20, 2026

This Privacy Policy describes how Divly ("we", "our", or "the app") handles information when you use the Divly iOS application. We designed Divly to collect as little personal information as possible, and to keep the data that is collected limited to what the app actually needs to work.

Divly does not sell your personal data. Divly does not show advertising. We use privacy-conscious, anonymous product analytics only to detect bugs, understand broken flows, and improve the app.

1. Who we are

Divly is an independent iOS application. For any privacy-related questions, you can contact us at contact@fatihkutlar.com.

2. How you can use Divly

You can use Divly in two modes:

  • Guest mode (no account): You can create groups, add expenses, and split bills entirely on your device without signing in. In this mode, Divly does not transmit your personal data, expense data, or profile to our servers.
  • Signed-in mode: You can optionally sign in with Apple or email/password to sync shared groups across your devices and invite other people. In this mode, some data is stored on our backend as described below.

3. Information we handle

3.1 Account information (only in signed-in mode)

When you sign in, we use Supabase as our authentication and data backend. Depending on how you sign in, we receive:

  • Sign in with Apple: A Supabase user ID, and the identity token issued by Apple. If you share your name during the first Apple Sign In, we store your full name on your profile.
  • Email sign up / sign in: Your email address, an encrypted password managed by Supabase Auth, and the full name you provide at sign up.

Your profile may include a username, full name, and avatar URL. You can edit these inside the app.

3.2 Group and expense data

When you are signed in and create, join, or sync a shared group, the following information is stored on our backend so that other members of the group can see it:

  • Group details (name, currency, creation date, members)
  • Expenses, items, amounts, splits, notes, and category
  • Settlements you record between members
  • Group invite tokens and their expiry/use count

In guest mode, this data stays on your device only.

3.3 Push notification tokens

If you are signed in and grant notification permission, the app registers your device for Apple Push Notifications and stores the device token linked to your user ID in our backend. We use it only to send notifications related to your groups (for example, shared-group updates). When you sign out, we remove your device token from the backend.

3.4 Receipt scanning

Divly offers an optional receipt-scanning feature that uses your device's camera. The image is processed on-device using Apple's Vision framework to detect the total amount. Receipt images are not uploaded to our servers and are not shared with third parties.

3.5 Currency conversion

When you use multi-currency features, the app fetches public exchange rates from ExchangeRate-API (v6.exchangerate-api.com). Only the base currency code is sent (for example, USD). No personal information, expense content, or account identifier is included in these requests. The latest rates are cached on your device for offline fallback.

3.6 Local app data

Divly stores several preferences and small pieces of data on your device (for example, in UserDefaults and, in signed-in mode, an App Group shared with the home-screen widget). This includes things like your selected currency, onboarding status, guest-mode choice, cached exchange rates, and your current user ID. This data does not leave your device except as described in the sections above.

3.7 iCloud backup (optional)

Divly offers an optional backup feature that uses your own iCloud account. If you enable it, your local data is stored in your personal iCloud container. We do not have access to this data.

3.8 In-app purchases

Subscription purchases are processed by Apple through StoreKit and the App Store. Divly does not receive or store your payment card details. We only read the entitlement status (whether you currently have an active subscription) from StoreKit in order to unlock Premium features.

3.9 Product analytics

Divly uses PostHog to understand anonymous product usage patterns such as onboarding progress, feature usage, subscription flow outcomes, notification permission outcomes, and reliability issues. We do not send expense descriptions, group names, member names, email addresses, receipt images, invite tokens, comments, or exact expense amounts to PostHog.

You can disable analytics in the app by going to Settings > Profile > Analytics Permissions.

4. What we do not collect

  • We do not use advertising SDKs, sell analytics data, or build advertising profiles.
  • We do not track your activity across other apps or websites.
  • We do not access your contacts, location, microphone, or calendar.

5. How we use information

We use the information described above only to:

  • Provide and operate the core app features (groups, expenses, splits, settlements).
  • Authenticate you and keep your session active.
  • Sync shared-group data across members.
  • Deliver push notifications about groups you are part of.
  • Provide Premium features through App Store subscriptions.
  • Diagnose bugs, fraud, and abuse of our backend.

6. Service providers

  • Apple — Sign in with Apple, Push Notifications, App Store subscriptions, iCloud (optional backup).
  • Supabase — Authentication, database, and storage for signed-in accounts and shared groups.
  • PostHog — Privacy-conscious anonymous product analytics.
  • ExchangeRate-API — Public currency exchange rates.

These providers act as processors for the limited purposes described above.

7. Data retention

We keep your account and group data for as long as your account is active. You can delete your account directly in Divly by going to Settings > Profile > Delete Account. Account deletion permanently removes your Divly account, profile, device tokens, and synced cloud data linked to your account. Shared groups you joined may keep their non-personal group history for other members, but your personal account link is removed. Deleting your Divly account does not cancel Apple subscriptions; subscriptions are managed separately from your Apple Account settings.

8. Your rights

Depending on where you live, you may have rights under applicable data-protection laws, including the right to access, correct, or delete your personal data, and to object to or restrict certain processing. You can exercise these rights by contacting contact@fatihkutlar.com. We will respond within a reasonable time.

9. Children

Divly is not directed to children under the age required by your local law to consent to the processing of personal data (generally 13-16 depending on the jurisdiction). We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us so we can remove it.

10. Security

We rely on industry-standard transport security (HTTPS/TLS) for all network traffic, on Apple platform security for on-device data, and on Supabase's managed security controls for backend storage. No method of transmission or storage is 100% secure, but we take reasonable measures to protect your information.

11. International transfers

Our service providers may process data in countries other than the one you live in. By using Divly you acknowledge that your information may be processed in those jurisdictions under appropriate safeguards required by applicable law.

12. Changes to this policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, provide additional notice in the app.

13. Contact

Questions about this policy or your data? Contact us at contact@fatihkutlar.com.