Last Updated: April 25, 2026
HavenKeep is a personal warranty and receipt tracker. The data we collect exists to make the app work for you — find the right warranty, send the right reminder, attach the right receipt. We don't sell it, we don't share it for advertising, and we delete it when you ask.
The sections below cover what we collect, who we share it with (a small list of vendors who need it to deliver the service), how it's protected, and how to exercise your rights — including deleting your account.
When you sign up, we collect your email address, a name (display name only — no real-name requirement), and either a password (hashed with bcrypt; we never see the plaintext) or an OAuth identifier from Google Sign-In or Apple Sign-In. The OAuth path returns only an opaque user ID and your verified email; we do not receive your Google or Apple password.
Everything you log inside HavenKeep: product names, purchase dates, warranty expiry, vendor names, receipts and warranty cards you upload, photos of items, maintenance schedules, and any notes you write. Receipts and photos are stored encrypted on our object-storage server.
The optional email scanner connects to your Gmail or Outlook account using OAuth with a read-only scope. We only read messages that match purchase-confirmation patterns; we do not send mail, modify your inbox, change folders, or read messages outside that pattern. The OAuth access token is stored encrypted; the refresh token is rotated automatically. You can revoke this access at any time from your Google or Microsoft account settings, and we delete our copy when you remove the integration in HavenKeep or delete your account.
If you subscribe to HavenKeep Premium, payment is processed by Apple (App Store), Google (Play Billing), or Stripe (web). We never see your card number. We receive a transaction ID, the product purchased, and the renewal status from these providers, which we store to know whether your subscription is active.
Operating system version, app version, device model, language, and timezone — used to deliver the right build and help diagnose bugs.
When the app crashes, Firebase Crashlytics collects a stack trace and minimal device context (OS, app version, free memory at crash time). Crashlytics does not collect the contents of your warranties, receipts, or photos. Crash reports are retained for 90 days and then deleted.
To deliver warranty-expiry reminders and other notifications you've opted into, we register your device with Firebase Cloud Messaging (Android) or Apple Push Notification service (iOS). The token is rotated by the OS; we delete our copy when you sign out or delete your account.
We keep per-user counters of feature usage (items added, email scans completed, claims filed) so we can measure engagement and reconcile billing. These counters live in a single row per user; per-user data is deleted on account deletion.
We use a small number of vendors to operate HavenKeep. They process data on our behalf under data processing agreements; they are not allowed to use it for their own purposes.
We do not sell, rent, or share your data with advertisers or data brokers. We do not have any advertising SDKs in the app.
Your data is retained as long as your account is active. When you delete your account (how to delete), we soft-delete immediately, allow a 30-day grace period to cancel, then cryptographically erase the record from active systems. The data ages out of backups within 30 days.
We retain the minimum information legally required for fraud prevention and accounting (e.g. an audit-log entry that an account existed and was deleted, without the personal data it contained).
Regardless of where you live, HavenKeep gives every user the same rights:
California residents have the same rights under CCPA and we do not discriminate against users who exercise them. EU/UK residents can lodge a complaint with their local data protection authority. To exercise any right, email privacy@havenkeep.app.
HavenKeep is not directed at children under 13 and we do not knowingly collect data from them. If you are a parent or guardian and believe your child has created an account, email privacy@havenkeep.app and we'll delete it.
HavenKeep's servers and the sub-processors listed above operate in multiple jurisdictions. Where personal data is transferred out of your country, we rely on appropriate safeguards — for EU/UK residents, that's Standard Contractual Clauses with each sub-processor. We do not transfer data to any party not listed in section 3.
When we change this policy in a way that affects you, we'll email you 14 days before the change takes effect. The current version always lives at this URL with a “Last Updated” date at the top.