ATM Flow — Privacy Policy & Terms of Use

Effective date: April 13, 2026  |  Last updated: April 13, 2026

This document contains both the Privacy Policy and the Terms of Use for ATM Flow. Please read both sections carefully before using the App.

Part I — Privacy Policy

1. Introduction

This Privacy Policy explains how ATM Flow ("the App"), developed and published by Approve The Move ("we", "us", or "our"), handles information when you ("you" or "the user") download, install, or use the App on any supported device.

We are committed to protecting your privacy. This policy applies to all versions of ATM Flow distributed through the Apple App Store and any future platforms.

By downloading, installing, or using ATM Flow, you acknowledge that you have read, understood, and agree to the practices described in this policy. If you do not agree, please do not use the App and remove it from your device.

2. Information We Collect

We do not collect, transmit, or process any personal data. ATM Flow is designed from the ground up as a privacy-first application. Specifically:

  • No account creation — You are never required or asked to sign up, log in, create an account, or provide an email address, phone number, or any other personal identifier.
  • No analytics or tracking — We do not use any analytics frameworks, crash reporting services, telemetry tools, device fingerprinting, or usage tracking of any kind.
  • No advertising — The App contains no advertisements, no advertising SDKs, no ad identifiers (IDFA), and no advertising networks.
  • No server-side communication — The App does not connect to any external server, cloud service, or remote endpoint operated by us or any third party. The only network activity is Apple CloudKit sync to your own private iCloud container (see Section 4).
  • No in-app purchases — No financial, billing, or payment information is collected or processed.
  • No location data — The App does not request, access, or store your geographic location.
  • No contacts — The App does not access your contacts, microphone, or any device sensor beyond haptic feedback and the camera/photo library (used solely for attaching photos to transactions; see Section 5).

3. On-Device Storage

ATM Flow stores data locally on your device using two Apple-provided storage systems. All data is stored within the App's private sandbox, is not accessible to other apps, and is never transmitted to any server we operate.

3.1 UserDefaults

A small amount of non-personal preference data is stored using Apple's UserDefaults system:

  • Theme preference (System, Light, or Dark)
  • Accent color selection
  • Haptic feedback preference
  • App lock setting (whether biometric authentication is enabled)

This data is declared in our Privacy Manifest (PrivacyInfo.xcprivacy) under API category NSPrivacyAccessedAPICategoryUserDefaults with reason code CA92.1 (access to store and retrieve user preferences), as required by Apple.

3.2 SwiftData

Your financial data is stored on your device using Apple's SwiftData framework, a local database that operates entirely within the App's sandbox. Data stored in SwiftData includes:

  • Accounts (bank accounts, wallets, credit cards, etc.)
  • Transactions (income, expenses, transfers)
  • Budgets
  • Financial goals
  • Categories and tags
  • Recurring transactions
  • Transaction templates
  • Photos attached to transactions (stored as local files; see Section 5)

All of this data exists exclusively on your device and, if you have iCloud enabled, in your personal iCloud container (see Section 4). We have no ability to read, access, or retrieve any of this data.

How to delete: You can delete any individual record (account, transaction, budget, goal, category, tag, recurring transaction, or template) at any time within the App. You can erase all locally stored data by deleting ATM Flow from your device. No residual data is retained after uninstallation. iCloud data can be managed through your device's iCloud storage settings.

4. iCloud Sync (CloudKit)

ATM Flow uses Apple's CloudKit framework to sync your SwiftData database across your own devices via iCloud.

4.1 How It Works

  • Your data goes to your iCloud, not our servers. CloudKit stores your data in a private database container associated with your personal Apple ID. Only you can access this data through devices signed into your Apple ID.
  • The developer (Approve The Move) cannot read, access, query, or retrieve any data in your private CloudKit container. Apple's architecture enforces this separation — private containers are cryptographically inaccessible to the app developer.
  • iCloud sync is managed entirely by Apple's infrastructure and protected by your Apple ID credentials and Apple's encryption.

4.2 Data Transmitted via CloudKit

When iCloud sync is enabled on your device, the following data is synced between your own devices:

  • All SwiftData records (accounts, transactions, budgets, goals, categories, tags, recurring transactions, templates)
  • Photos attached to transactions

No other data (contacts, location, browsing history, device information, etc.) is ever transmitted.

4.3 Encryption

All data synced through CloudKit is encrypted in transit using TLS and at rest on Apple's servers. For more information on Apple's data protection practices, see Apple's iCloud security overview.

4.4 Disabling iCloud Sync

You can disable iCloud sync for ATM Flow at any time through your device's Settings > Apple ID > iCloud. When sync is disabled, your data remains stored locally on your device only. Existing iCloud data can be deleted through your iCloud storage settings.

5. Photos & Camera

ATM Flow allows you to attach photos to transactions (e.g., photos of receipts). This feature is entirely optional.

  • Photo storage — Attached photos are stored locally on your device within the App's sandbox and, if iCloud sync is enabled, in your private CloudKit container.
  • No upload to external servers — Photos are never uploaded to any server we operate or any third-party service.
  • Camera and photo library access — The App will request your permission before accessing your camera or photo library. You can revoke this permission at any time through your device's Settings > ATM Flow.

6. Biometric Authentication (Face ID / Touch ID)

ATM Flow supports Face ID and Touch ID for optional app lock functionality, using Apple's LocalAuthentication framework.

  • No biometric data is accessed by the App. All biometric processing is handled entirely by iOS within the device's Secure Enclave — a dedicated hardware security processor.
  • The App only receives a yes/no authentication result from iOS. It never receives, processes, stores, or transmits fingerprint data, facial geometry, or any other biometric information.
  • Biometric data never leaves the Secure Enclave, never reaches the App's process, and is never transmitted to any server.

7. CSV Import

ATM Flow allows you to import financial data from CSV files stored on your device.

  • Local processing only — CSV files are read and processed entirely on your device. No file data is uploaded to any external server.
  • The imported data is stored in your local SwiftData database (and synced to your private iCloud container if iCloud sync is enabled).
  • The original CSV file remains unchanged on your device; the App only reads from it.

8. Third-Party Services & SDKs

ATM Flow does not integrate, embed, or communicate with any third-party services, SDKs, APIs, or frameworks that collect, process, or transmit user data. The App uses exclusively Apple-provided first-party system frameworks:

Framework Purpose Data Collection
SwiftUI User interface rendering None
SwiftData On-device structured data storage None (local only)
CloudKit iCloud sync to user's private container None (user's own iCloud)
Charts Financial data visualization None
WidgetKit Home screen and Lock Screen widgets None
LocalAuthentication Face ID / Touch ID for app lock None (biometric data stays in Secure Enclave)

We do not use Firebase, Google Analytics, Facebook SDK, AdMob, Crashlytics, Sentry, Amplitude, Mixpanel, or any other third-party data collection tool.

9. Apple's Data Practices

While ATM Flow itself does not collect data, please be aware that Apple may independently collect certain information related to your use of the App Store, such as download statistics and crash logs. This data collection is governed by Apple's Privacy Policy, not ours, and is outside our control.

We have declared in App Store Connect that ATM Flow collects no data linked to or tracking the user, as reflected on the App's App Store product page under "App Privacy."

10. Children's Privacy

ATM Flow is rated 4+ by Apple and is designed to be suitable for users of all ages. The App does not contain violence, gambling (real or simulated), horror, mature themes, profanity, or any other objectionable material.

Because we do not collect any personal information from any user of any age, we are compliant with the following regulations regarding children's privacy:

  • COPPA (Children's Online Privacy Protection Act, United States) — We do not knowingly collect personal information from children under the age of 13. Since the App collects no personal information from anyone, no COPPA violation can occur.
  • GDPR-K / Age of Digital Consent (European Economic Area) — We do not process personal data of minors under 16 (or the lower age set by individual EEA member states). Since no personal data is processed, no parental consent is required.
  • Apple's Guidelines for Apps Used by Children — The App contains no data collection, no third-party analytics, no advertising, and no external links within the App experience.

Parents, guardians, and educators can allow children to use ATM Flow with full confidence that no personal information is collected, stored, or shared.

11. Your Rights Under Applicable Laws

We respect and support the privacy rights granted to individuals under applicable data protection legislation worldwide.

11.1 European Economic Area (GDPR)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) and equivalent local laws grant you the following rights regarding personal data:

  • Right of access (Article 15) — Request a copy of personal data held about you.
  • Right to rectification (Article 16) — Request correction of inaccurate personal data.
  • Right to erasure (Article 17) — Request deletion of your personal data.
  • Right to restrict processing (Article 18) — Request that we limit how we use your data.
  • Right to data portability (Article 20) — Receive your data in a structured, machine-readable format.
  • Right to object (Article 21) — Object to processing based on legitimate interests.
  • Right to withdraw consent (Article 7) — Withdraw previously given consent at any time.

Since we do not collect, store, or process any personal data, there is no data for us to provide, correct, restrict, delete, port, or cease processing. Your local preferences can be erased by deleting the App. Your iCloud data can be managed through your device's iCloud settings. If you believe we hold data about you in error, please contact us and we will investigate promptly.

Legal basis for processing: We do not process personal data. The on-device preference storage operates under legitimate interest (providing a functional user experience) and does not constitute data processing under GDPR as the data never leaves the device or reaches us. CloudKit data is stored in your own private iCloud account and is not accessible to us.

Data controller: Approve The Move (contact details in Section 17).

11.2 California (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) grants you specific rights regarding personal information:

  • Right to know — You may request disclosure of the categories and specific pieces of personal information collected.
  • Right to delete — You may request deletion of personal information collected.
  • Right to correct — You may request correction of inaccurate personal information.
  • Right to opt out of sale or sharing — You may direct us not to sell or share your personal information.
  • Right to non-discrimination — You will not be discriminated against for exercising your privacy rights.

We do not collect, sell, or share personal information. We have not sold or shared personal information of any consumer in the preceding 12 months, nor do we intend to do so.

California's "Do Not Track" signals and Global Privacy Control (GPC) are respected by default, as the App does not track users in any capacity.

11.3 Qatar & Middle East

If you are located in Qatar or other Gulf Cooperation Council (GCC) states, we comply with applicable data protection laws, including Qatar's Law No. 13 of 2016 on Personal Data Privacy. As we do not collect personal data, no registration with the Compliance and Data Protection Department is required.

11.4 Other Jurisdictions

Regardless of your location, the same principle applies: we do not collect personal data, so there is no data to exercise rights over. If your local laws grant you additional privacy rights, please contact us and we will cooperate fully.

12. Data Security

Although we do not collect or store personal data on any server, we employ the following security measures to protect your experience within the App:

  • Encrypted iCloud sync — All data synced through CloudKit is encrypted in transit (TLS) and at rest on Apple's servers, protected by Apple's enterprise-grade security infrastructure.
  • Sandboxed storage — On-device data (both UserDefaults and SwiftData) is stored within the App's iOS sandbox, which is isolated from other apps and protected by the operating system.
  • Secure biometric authentication — Face ID and Touch ID data is processed exclusively within the Secure Enclave hardware processor and never exposed to the App or any external system.
  • No network exposure — The App makes no internet connections to any server we operate, eliminating the risk of remote data breaches, man-in-the-middle attacks, or unauthorized server access. CloudKit sync is handled entirely by Apple's infrastructure.
  • No persistent sensitive data — No passwords, tokens, credentials, or third-party financial data are ever stored or processed.

13. Data Retention

We do not operate servers, databases, or cloud storage of any kind. We do not retain any user data. All data associated with ATM Flow exists exclusively on your personal device and, if iCloud sync is enabled, in your private iCloud container:

Data Type Storage Location Retention Period
User preferences Device (UserDefaults) Until App is deleted
Financial data (accounts, transactions, budgets, goals, categories, tags, recurring transactions, templates) Device (SwiftData) + iCloud (CloudKit) Until deleted by user or App is removed
Transaction photos Device (local files) + iCloud (CloudKit) Until deleted by user or App is removed

When you delete the App, all local data is permanently removed from your device by the operating system. iCloud data can be managed and deleted through your device's Settings > Apple ID > iCloud > Manage Storage.

14. International Considerations

ATM Flow is available worldwide through the Apple App Store. The App does not transmit any data to external servers operated by us. CloudKit sync transfers data between your own devices through Apple's iCloud infrastructure. Apple may process iCloud data in data centers located in various countries; this is governed by Apple's Privacy Policy and your iCloud terms of service, not by us. We have no control over or access to your iCloud data.

Part II — Terms of Use

15. Acceptance of Terms

By downloading, installing, accessing, or using ATM Flow, you agree to be bound by these Terms of Use. If you do not agree to these terms, do not use the App and remove it from your device.

These terms constitute a legally binding agreement between you and Approve The Move ("we", "us", "our") governing your use of the App.

16. License Grant

Subject to your compliance with these terms, we grant you a limited, non-exclusive, non-transferable, non-sublicensable, revocable license to download, install, and use ATM Flow on any Apple device that you own or control, solely for your personal, non-commercial financial tracking purposes.

This license is also governed by the Apple Licensed Application End User License Agreement (EULA), which is incorporated into these terms by reference.

17. Restrictions

You agree not to:

  • Copy, modify, distribute, sell, lease, sublicense, or create derivative works based on the App.
  • Reverse-engineer, decompile, disassemble, or attempt to extract the source code of the App.
  • Remove, alter, or obscure any copyright, trademark, or proprietary notices.
  • Use the App for any unlawful purpose or in violation of any applicable laws or regulations.
  • Exploit the App or any part of it for commercial purposes without our prior written consent.
  • Attempt to interfere with or disrupt the integrity of the App or its data storage systems.

18. Financial Data Disclaimer

ATM Flow is a personal finance tracking tool designed to help you organize and visualize your financial information. It is not a financial advisor, tax preparation tool, accounting system, or investment platform.

You acknowledge and agree that:

  • Not financial advice — The App does not provide financial, investment, tax, legal, or accounting advice of any kind. Any financial data, calculations, charts, summaries, budgets, or projections displayed within the App are for your personal informational and organizational purposes only.
  • No reliance for financial decisions — You should not rely solely on the data or calculations presented by the App when making tax filings, legal decisions, investment decisions, or any other financial decisions with legal or monetary consequences. Always consult a qualified financial advisor, accountant, or tax professional for such matters.
  • Accuracy not guaranteed — While we strive to ensure that the App's calculations (including but not limited to totals, balances, budget tracking, goal progress, and chart visualizations) are accurate, we do not warrant or guarantee the accuracy, completeness, or reliability of any financial calculations or data displayed by the App. Rounding, data entry errors, sync delays, or software defects may cause discrepancies.
  • User responsibility — You are solely responsible for the accuracy of the financial data you enter into the App. The App processes and displays data based on your input; incorrect input will produce incorrect results.
  • No substitute for professional records — The App is not a substitute for official bank statements, tax records, or professional accounting systems. You should maintain independent records for all important financial matters.

19. Intellectual Property

All rights, title, and interest in and to ATM Flow — including but not limited to the software code, visual design, user interface elements, graphics, animations, icons, charts, and documentation — are and shall remain the exclusive property of Approve The Move.

The name "ATM Flow", the Approve The Move name and logo, and all associated branding are trademarks of Approve The Move. Nothing in these terms grants you any right to use our trademarks without prior written permission.

20. Disclaimer of Warranties

THE APP IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, EITHER EXPRESS OR IMPLIED.

To the fullest extent permitted by applicable law, we disclaim all warranties, including but not limited to:

  • Implied warranties of merchantability, fitness for a particular purpose, and non-infringement.
  • Warranties that the App will be uninterrupted, error-free, secure, or free of viruses or other harmful components.
  • Warranties regarding the accuracy, reliability, or completeness of any content, calculations, or financial data displayed within the App.
  • Warranties that iCloud sync will operate without interruption, delay, or data loss.

You acknowledge that the App is a personal finance tracking tool and that your use of the App is at your sole risk. Financial data displayed by the App is based on user input and should be independently verified for any consequential use.

21. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL APPROVE THE MOVE OR ANY OF ITS AFFILIATES, OFFICERS, DIRECTORS, EMPLOYEES, AGENTS, OR LICENSORS BE LIABLE FOR ANY:

  • Indirect, incidental, special, consequential, or punitive damages;
  • Loss of profits, revenue, data, goodwill, or other intangible losses;
  • Damages arising from your use of or inability to use the App;
  • Damages arising from any unauthorized access to or alteration of your device;
  • Damages arising from inaccurate financial calculations, data loss, or sync failures;
  • Damages arising from financial decisions made based on data displayed by the App;
  • Any other damages arising out of or in connection with these terms or the App;

regardless of the theory of liability (contract, tort, negligence, strict liability, or otherwise), even if we have been advised of the possibility of such damages.

In jurisdictions that do not allow the exclusion or limitation of liability for certain damages, our liability shall be limited to the maximum extent permitted by law. In no event shall our total aggregate liability exceed the amount you paid for the App (which is zero, as the App is free).

22. Indemnification

You agree to indemnify, defend, and hold harmless Approve The Move, and their respective officers, directors, employees, contractors, agents, licensors, and suppliers from and against any and all claims, liabilities, damages, losses, costs, and expenses (including reasonable attorneys' fees) arising out of or related to:

  • Your use of or access to the App;
  • Your violation of these Terms of Use;
  • Your violation of any applicable law or the rights of any third party;
  • Any financial decisions you make based on data displayed by the App.

23. Governing Law & Dispute Resolution

These terms shall be governed by and construed in accordance with the laws of the State of Qatar, without regard to its conflict of law provisions.

Any dispute, controversy, or claim arising out of or relating to these terms or the App shall be resolved as follows:

  1. Informal resolution — You agree to first attempt to resolve any dispute informally by contacting us at support@approvethemove.com. We will attempt to resolve the dispute within 30 days.
  2. Binding arbitration — If informal resolution fails, any remaining dispute shall be resolved through binding arbitration administered in Doha, Qatar, in accordance with the rules of the Qatar International Court and Dispute Resolution Centre (QICDRC), unless otherwise required by your local laws.

Nothing in this section shall prevent either party from seeking injunctive or equitable relief from a court of competent jurisdiction to prevent the actual or threatened infringement of intellectual property rights.

For EU/EEA residents: Nothing in these terms limits your right to bring proceedings before the courts of your country of residence, as required by Regulation (EU) No 1215/2012.

For US residents: You and we each waive the right to a jury trial and the right to participate in a class action lawsuit or class-wide arbitration.

24. Termination

These terms are effective until terminated. Your rights under these terms will terminate automatically and without notice if you fail to comply with any provision.

Upon termination, you must cease all use of the App and delete all copies from your devices. Sections 19 through 23 shall survive any termination of these terms.

We reserve the right to modify, suspend, or discontinue the App (or any part thereof) at any time without notice or liability.

25. Severability

If any provision of these terms is found to be unlawful, void, or unenforceable by a court of competent jurisdiction, that provision shall be deemed severable and shall not affect the validity and enforceability of the remaining provisions, which shall continue in full force and effect.

26. Entire Agreement

These terms, together with the Privacy Policy above and Apple's Licensed Application EULA, constitute the entire agreement between you and Approve The Move regarding your use of ATM Flow. These terms supersede any prior agreements, communications, or understandings, whether written or oral, relating to the App.

General

27. Changes to This Document

We may update this Privacy Policy and Terms of Use from time to time to reflect changes in the App, our practices, or applicable laws. When we make changes:

  • We will update the "Last updated" date at the top of this page.
  • For material changes, we will notify you through the App before the changes take effect.
  • The updated document will be posted at this URL: approvethemove.com/flow/privacy

Your continued use of the App after changes are posted constitutes acceptance of the updated terms. If you disagree with any changes, your sole remedy is to stop using the App and delete it from your device.

28. Contact Us

If you have any questions, concerns, complaints, or requests regarding this Privacy Policy, these Terms of Use, or our practices, please contact us:

We commit to responding to all privacy-related inquiries within 30 days of receipt. For GDPR-related requests, we will respond within the legally required timeframe of one calendar month.

Document version 2.0  |  Effective April 13, 2026  |  Applies to ATM Flow v1.0 and all subsequent versions unless superseded.