Active Document

Privacy Policy

Your financial data belongs to you, stays with you, and is controlled by you. We built SageBills with this as our foundation.

Last updated: April 10, 2026 Effective: April 1, 2026
🔒
100% Local Data
All your data stays on your device. No servers, no cloud, no exceptions.
🚫
Zero Tracking
No analytics, no advertising IDs, no telemetry. We cannot see what you do.
🧱
No Third Parties
Built entirely with Apple frameworks. Zero external SDKs or dependencies.
🔐
Encrypted at Rest
Data is protected by Apple's NSFileProtectionComplete when your device is locked.

01 Introduction

Welcome to SageBills. This Privacy Policy explains how SageBills handles your information when you use our utility bill tracking application on iOS and macOS.

This policy complies with the General Data Protection Regulation (GDPR), the ePrivacy Directive, and Apple App Store Guidelines (sections 5.1.1 and 5.1.2).

02 Who We Are

SageBills is developed and maintained by a sole proprietor based in Romania, European Union.

For the purposes of the GDPR, the developer acts as the data controller. However, because all data processing occurs locally on your device, your data never reaches us.

03 Privacy-First Architecture

SageBills is designed with a local-only, zero-server architecture:

  • No servers. We do not operate any backend servers that receive, store, or process your data.
  • No cloud sync. Your data is not uploaded to any cloud service by SageBills.
  • No analytics. We do not collect usage analytics, crash reports, or telemetry of any kind.
  • No tracking. We do not track your behavior, location, or activity.
  • No third-party SDKs. The app is built entirely with Apple frameworks. Zero external dependencies.
In simple terms: All data you enter into SageBills remains on your device unless you explicitly choose to export it.

04 Data We Process

All of the following data is stored exclusively on your device:

Bill Data (User-Entered)
  • Bill amounts and currency
  • Provider/utility company names
  • Bill categories (electricity, gas, water, internet, etc.)
  • Bill dates (issue date, due date)
  • Notes you add to bills
  • Consumption readings (kWh, cubic meters, etc.)
OCR-Scanned Data

When you scan an invoice, Apple's Vision framework extracts text entirely on your device. This may include bill amounts, provider names, account numbers, and service addresses.

The original image is not retained after scanning unless you choose otherwise.

App Preferences and Settings
  • Currency and display preferences
  • Notification preferences
  • Savings goals configuration
  • Onboarding and consent status
Subscription Status

Managed entirely by Apple through StoreKit. SageBills reads your subscription status to unlock features but does not store payment details.

Keychain Data

SageBills stores two non-personal items in the device Keychain:

  • First-launch date: Used to calculate the 90-day free grace period.
  • GDPR consent date: Stored for tamper detection to ensure consent integrity.

No personal data is stored in the Keychain.

05 How We Use Your Data

Because all data stays on your device, "use" means local processing within the app:

PurposeDescription
Bill trackingDisplaying, organizing, and managing your utility bills
Cost predictionGenerating statistical predictions based on your history
Anomaly detectionIdentifying unusual bills that deviate from patterns
Savings trackingCalculating progress toward your savings goals
Invoice scanningExtracting bill data from photos via on-device OCR
RemindersSending local notifications for upcoming due dates
Data exportGenerating CSV files when you request it
Device searchMaking bills findable through Spotlight search

06 Legal Basis for Processing

Under Article 6(1)(a) of the GDPR, our legal basis for processing your data is your explicit consent, which you provide during the app's onboarding process.

You may withdraw your consent at any time through the app's Settings. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.

07 Data Storage and Security

Local Storage

All data is stored using Apple's SwiftData framework with NSFileProtectionComplete encryption:

  • Data is encrypted when your device is locked
  • Data is only accessible when your device is unlocked and authenticated
  • Encryption keys are tied to your device passcode/biometrics

No Remote Storage

SageBills does not transmit data to any remote server. We have no ability to access, read, or recover your data.

Your responsibility: Because data is stored only on your device, you are responsible for maintaining backups through your device's backup mechanisms.

08 Data Retention

Your data is retained on your device for as long as you keep the app installed and choose to retain it. You have full control:

  • Delete individual bills at any time within the app
  • Delete all data using the option in Settings
  • Uninstall the app to remove all associated data

We do not retain any copy of your data because we never receive it.

09 Third-Party Services

Apple App Store and StoreKit

SageBills offers optional subscriptions managed through Apple's App Store. Payment processing is handled entirely by Apple. SageBills does not receive or store your payment information.

Apple's handling of your payment data is governed by Apple's Privacy Policy.

No Other Third Parties

SageBills contains no third-party SDKs, frameworks, libraries, or services. We do not share, sell, or disclose your data to any third party.

10 International Data Transfers

SageBills does not transfer your data internationally. Your data remains on your device at all times.

11 Cookies and Tracking

SageBills does not use cookies, web beacons, pixels, device fingerprinting, advertising identifiers, or any other tracking technology. The app does not contain any advertising.

12 Your Rights Under GDPR

As a resident of the EU or EEA, you have the following rights:

Art. 15
Right of Access
View all your data directly in the app at any time.
Art. 16
Right to Rectification
Edit any bill or data entry within the app.
Art. 17
Right to Erasure
Delete individual bills or all data via Settings.
Art. 20
Right to Portability
Export your data as CSV from within the app.
Art. 7(3)
Withdraw Consent
Withdraw consent at any time in Settings.
Art. 77
Lodge a Complaint
Contact your national data protection authority.

For rights you cannot exercise through the app, contact contact@sagelight-studio.com.

Supervisory Authority

If you are in Romania, the competent supervisory authority is ANSPDCP (www.dataprotection.ro). You may also contact the supervisory authority in your country of residence.

13 Children's Privacy

SageBills is not directed at children under 16. We do not knowingly process data from children. Since all data is stored locally, we have no means to identify or verify user age.

14 Changes to This Policy

We may update this Privacy Policy from time to time. The "Last Updated" date will be revised, and material changes will be communicated through an in-app notice.

15 Contact Us

We aim to respond to all privacy-related inquiries within 30 days, as required by the GDPR.

Active Document

GDPR Disclosure

Information required under Articles 13 and 14 of the General Data Protection Regulation (EU) 2016/679 regarding data processing through SageBills.

Last updated: April 10, 2026 GDPR (EU) 2016/679
🏛
Controller in EU
Sole proprietor based in Romania. Your data never reaches us.
Lawful Basis: Consent
Processing based on Art. 6(1)(a). Withdraw anytime in Settings.
👥
Zero Recipients
No data processors, no third parties, no advertising networks.
🌐
No Transfers
No international data transfers. All processing is on-device.

01 Data Controller

Controller: SageBills (individual developer / sole proprietor)
Location: Romania, European Union
Email: contact@sagelight-studio.com

Per Article 13(1)(a) and Article 14(1)(a), the developer is the data controller. Due to the local-only architecture, the controller does not receive, access, or store any personal data. All processing occurs exclusively on the user's device.

02 Data Protection Officer

Per Article 37, a DPO is not required. The controller is a small-scale operator that does not carry out regular and systematic monitoring on a large scale, nor large-scale processing of special categories of data.

For privacy inquiries: contact@sagelight-studio.com

03 Categories of Personal Data

Per Article 13(1)(d) and 14(1)(d):

CategoryExamplesSpecial (Art. 9)?
Financial dataBill amounts, currency, consumption costsNo
Utility provider dataProvider names, service categoriesNo
Temporal dataBill dates, due dates, billing periodsNo
Consumption datakWh readings, cubic metersNo
Free-text dataNotes you add to bill recordsNo
OCR-extracted dataAccount numbers, addresses from invoicesNo
Technical dataFirst-launch date, consent timestamp (Keychain)No

No special categories of personal data (Article 9) are processed by SageBills.

04 Purposes of Processing

Per Article 13(1)(c) and 14(1)(c):

#PurposeDescription
1Bill managementStoring, displaying, organizing, and searching bill records
2Cost predictionStatistical forecasts based on historical data
3Anomaly detectionIdentifying bills that deviate from patterns
4Savings trackingTracking progress toward savings goals
5Invoice digitizationOCR extraction from scanned invoices
6Due date remindersLocal notifications for upcoming bills
7Data exportCSV exports at the user's request
8Device searchIndexing in CoreSpotlight
9Subscription managementReading status from Apple StoreKit
10Anti-abuseVerifying grace period eligibility

05 Lawful Basis

Per Article 6(1)(a): Consent.

You provide explicit consent during onboarding. Consent is freely given, specific, informed, and unambiguous. You may withdraw consent at any time via Settings, which takes effect immediately.

06 Recipients

Per Article 13(1)(e): There are no recipients of your personal data.

No data processors (Art. 28), no joint controllers (Art. 26), no third-party services, no advertising networks, no analytics providers.

07 International Transfers

Per Article 13(1)(f): No international transfers occur. All data is processed on your local device. No transfer mechanisms under Chapter V are applicable.

08 Retention Periods

DataRetentionBasis
Bill recordsUntil you delete them or uninstallUser control
OCR-extracted textUntil the associated bill is deletedUser control
App preferencesUntil reset or uninstallUser control
First-launch dateUntil uninstallationAnti-abuse
Consent timestampUntil uninstallationLegal compliance
You control retention entirely. Delete individual records, all data, or uninstall the app at any time.

09 Data Subject Rights

Per Article 13(2)(b) and 14(2)(c):

Art. 15
Access
All your data is visible in the app at all times.
Art. 16
Rectification
Edit any record directly within the app.
Art. 17
Erasure
Delete individual or all records. Uninstall removes everything.
Art. 18
Restriction
Contact contact@sagelight-studio.com or withdraw consent.
Art. 20
Portability
Export all bill data as CSV from within the app.
Art. 21
Object
Withdraw consent in Settings to stop all processing.
Art. 7(3)
Withdraw Consent
Single action in Settings. Takes effect immediately.
Art. 77
Lodge Complaint
Contact your supervisory authority. ANSPDCP for Romania.

Most rights can be exercised directly within the app. For other rights, email contact@sagelight-studio.com. We respond within 30 days per Article 12(3).

10 Automated Decision-Making

SageBills uses statistical calculations (averaging, trend analysis) for predictions and anomaly detection. These are informational only and do not constitute profiling (Art. 4(4)) or automated decision-making (Art. 22) as they produce no legal or similarly significant effects.

11 Data Protection Measures

Per Article 32:

  • Encryption at rest: NSFileProtectionComplete (data encrypted when device is locked)
  • Keychain security: Hardware-backed encryption for timestamps
  • On-device processing: All OCR and predictions run locally
  • No third-party code: Zero external SDKs eliminates supply-chain risk
  • Privacy by design (Art. 25(1)) and privacy by default (Art. 25(2))

12 Breach Notification

Per Articles 33 and 34: Given the local-only architecture, traditional data breaches are not applicable. Should a vulnerability be identified:

  • Users will be notified through an app update
  • ANSPDCP will be notified within 72 hours (Art. 33)
  • Affected data subjects will be notified without undue delay (Art. 34)

13 Children's Data

Per Article 8: SageBills is not directed at children under 16 (Romania's national threshold). We cannot verify user age due to the local-only architecture.

14 Supervisory Authority

ANSPDCP (Autoritatea Nationala de Supraveghere a Prelucrarii Datelor cu Caracter Personal)

  • Address: B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, 010336, Bucuresti
  • Phone: +40.318.059.211
  • Website: www.dataprotection.ro

You may also lodge a complaint with the authority in your EU/EEA Member State of residence (Art. 77).

15 Contact

We respond within 30 days (Art. 12(3)), with a possible two-month extension for complex requests.

Active Document

Terms of Service

The agreement between you and SageBills. Clear, fair, and respectful of your rights as a European consumer.

Last updated: April 10, 2026 Effective: April 1, 2026
📱
Your Data, Your Device
All data stays local. You own it completely. We never see it.
🎁
90-Day Free Trial
Full Pro features free for 90 days. No credit card required.
💰
Fair Pricing
Monthly, yearly, or lifetime. Cancel anytime via Apple.
🇪🇺
EU Consumer Rights
Romanian law, with full EU consumer protection preserved.

01 Acceptance of Terms

By downloading, installing, or using SageBills, you agree to these Terms. If you do not agree, do not use the app.

These Terms constitute a legal agreement between you and SageBills, a sole proprietor based in Romania, EU. Your use is also governed by our Privacy Policy and GDPR Disclosure.

02 Description of Service

SageBills is a utility bill tracking application for iOS and macOS. Features include bill recording, invoice scanning (OCR), cost predictions, anomaly detection, savings goals, due date reminders, and CSV data export.

SageBills is a personal finance tracking tool. It does not provide financial advice, nor does it process payments to utility providers.

03 System Requirements

  • iOS: iPhone or iPad running iOS 17.0 or later
  • macOS: Mac running macOS 14.0 (Sonoma) or later
  • An Apple ID for downloading and subscription management

Internet is only required for downloading the app and managing subscriptions. Core functionality works entirely offline.

04 Subscriptions and Pricing

PlanPriceBilling
Monthly€2.99/monthRecurring monthly
Yearly€24.99/yearRecurring yearly
Lifetime€49.99One-time purchase

All subscriptions are processed through Apple's App Store. SageBills does not receive your payment information. Prices may change; you will be notified in advance.

05 Free Grace Period

New users receive a 90-day free grace period with all premium features. The grace period begins on first app launch, cannot be reset by reinstalling, and is tracked via a secure Keychain timestamp.

06 Billing and Cancellation

Subscriptions auto-renew unless canceled at least 24 hours before the end of the current period. Manage or cancel via:

  • iPhone/iPad: Settings > [Your Name] > Subscriptions
  • Mac: App Store > Account > Subscriptions

Refund requests must be submitted to Apple via reportaproblem.apple.com.

07 Local-Only Data Model

Important: SageBills does not provide cloud backup. You are solely responsible for backing up your data using iCloud device backup, Time Machine, or similar mechanisms.

We are not liable for data loss from device loss, app deletion, OS updates, or any other circumstance, as we have no access to your data.

08 Data Ownership

All data you enter remains your property. We do not claim any ownership, license, or rights to your data. You are responsible for the accuracy of data you enter, including reviewing OCR-extracted results.

09 Intellectual Property

The app's design, code, UI, graphics, and icons are owned by SageBills and protected by intellectual property laws. You receive a limited, non-exclusive, non-transferable license for personal use.

You may not copy, modify, distribute, reverse-engineer, or use the app to develop a competing product.

10 Prohibited Uses

  • Violating any applicable law or third-party rights
  • Circumventing the subscription system or grace period
  • Reverse-engineering or tampering with the app's source code
  • Using the app in ways that could damage or impair its functionality

11 Warranties and Liability

The app is provided "as is" without warranties of any kind, express or implied. We do not warrant that the app will be uninterrupted, error-free, or that predictions will be accurate. Our total liability shall not exceed the amount you paid in the preceding twelve months.
EU consumers: This does not affect your statutory rights under the EU Digital Content Directive (2019/770). Liability cannot be excluded for intentional misconduct or gross negligence.

12 Governing Law

These Terms are governed by Romanian law. EU consumers also benefit from mandatory consumer protections of their country of residence, including Directives 2011/83/EU, 2019/770/EU, and national consumer laws.

13 Dispute Resolution

We encourage informal resolution first via contact@sagelight-studio.com. EU consumers may use the Online Dispute Resolution platform. Otherwise, disputes are resolved by competent Romanian courts (EU consumers may also use courts of their residence).

14 Termination

You may stop using SageBills at any time by uninstalling. Remember to cancel any active subscription separately. Upon termination, your data remains on your device. We may discontinue the app, but this would not affect installed copies.

We may update these Terms from time to time. Material changes will have at least 30 days' notice. These Terms, together with the Privacy Policy and GDPR Disclosure, constitute the entire agreement.

15 Contact