Skip to content
SubGuardSubGuard

Privacy Policy

Last updated: 2026-05-01

1. Overview

SubGuard ('we', 'our', or 'us') is committed to protecting your privacy. This Privacy Policy explains what information we collect, why we collect it, and how we use and protect it. By downloading or using SubGuard, you agree to the practices described here. If you do not agree, please do not use the app.

2. Data we collect

SubGuard collects only the minimum data needed to deliver its core functionality. This includes: (a) your email address, used solely to identify the connected mail account; (b) subscription-related fields parsed from receipt emails — service name, billed amount, billing currency, billing cycle (weekly / monthly / quarterly / yearly), and renewal date. Email body content is processed on-device and is never transmitted to or stored on our servers. We do not collect passwords, payment card numbers, bank account data, or any other sensitive financial information.

3. How we use your data

The data listed above is used exclusively to power your in-app experience: rendering your subscription dashboard, calculating annual cost projections, and scheduling renewal and trial-ending notifications. We do not use your data for advertising, profiling, or any purpose beyond what is stated here. We do not sell, rent, or license your personal information to any third party.

4. Mail access and OAuth

Gmail integration is implemented through Google's official OAuth 2.0 protocol. SubGuard requests only the 'mail.readonly' scope — the narrowest scope that permits reading receipt emails. We do not request write, send, or delete permissions. SubGuard is verified through Google's OAuth verification process, which includes a security assessment. iCloud Mail integration requires an app-specific password generated in your Apple ID settings. That password is stored exclusively in the iOS Keychain on your device and is never transmitted to our servers. Email parsing happens locally on your device; only the extracted subscription fields (service, amount, cycle, date) are written to your local database.

5. On-device processing

SubGuard is designed with a local-first architecture. All email parsing, subscription detection, notification scheduling, and currency conversion take place on your device. No email content or raw message text leaves the app. The app can operate in fully offline mode; an internet connection is required only for the initial OAuth handshake and, if you choose to enable it, iCloud sync.

6. Cloud backup and sync

iCloud backup is opt-in and disabled by default. If you enable it, your subscription list (service names, amounts, dates — not email content) is stored in your personal iCloud account under your own Apple ID. SubGuard does not operate its own cloud storage for user subscription data. You control your iCloud data entirely through Apple's standard settings and can delete it at any time via Settings → [Your Name] → iCloud → Manage Account Storage.

7. Data retention and deletion

Your data is retained on your device for as long as you use the app. Disconnecting a mail account from within SubGuard immediately clears all locally stored subscription data associated with that account. Uninstalling the app removes the local database. If you enabled iCloud backup, you must also delete the app's iCloud data separately (Settings → [Your Name] → iCloud → Manage Account Storage → SubGuard). To request deletion of any other identifiers we may hold, contact us at help@positivibe.app and we will respond within 30 days.

8. Security

We take technical and organisational measures to protect your information. On-device data is encrypted using iOS Data Protection (NSFileProtectionComplete). OAuth tokens are stored in the iOS Keychain. We do not log, store, or process email content on our infrastructure. Our backend services, used only for app analytics and crash reporting, operate over TLS 1.2 or higher. No system is 100% secure; if you discover a vulnerability, please report it to help@positivibe.app.

9. Third-party services

SubGuard uses a minimal set of third-party SDKs: (a) Apple's native frameworks for notifications, Keychain, and CloudKit — governed by Apple's privacy policy; (b) a crash-reporting service to diagnose app stability issues — crash reports contain device model, OS version, and a stack trace, but never email content or subscription data. We do not integrate any advertising SDKs, social login SDKs, or analytics SDKs that track cross-app behaviour.

10. Children's privacy

SubGuard is not directed at children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at help@positivibe.app and we will delete it promptly.

11. Your rights (GDPR / CCPA)

Depending on where you live, you may have the right to access, correct, port, or delete the personal data we hold about you, and to object to or restrict certain processing. EU/EEA residents may exercise these rights under the General Data Protection Regulation (GDPR). California residents may exercise rights under the California Consumer Privacy Act (CCPA), including the right to know, delete, and opt out of sale (we do not sell data). To exercise any of these rights, email help@positivibe.app with the subject line 'Privacy Request'. We will respond within the timeframe required by applicable law.

12. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be announced with a notice inside the app at least 14 days before they take effect. Continued use of SubGuard after the effective date constitutes your acceptance of the updated policy. The 'Last updated' date at the top of this page always reflects the most recent revision.

13. Contact

If you have questions or concerns about this Privacy Policy or your data, please contact us at: help@positivibe.app. We aim to respond to all inquiries within 5 business days.