Tally – Simple money tracker

Privacy Policy

Last updated: May 13, 2026 (revised to disclose PostHog product analytics)

This Privacy Policy explains how Tally ("Tally", "we", "us", or "our") collects, uses, and protects information when you use the Tally mobile application for iOS (the "App") and the website at hellotally.app (the "Site"). By installing the App or using the Site, you agree to the practices described below. If you do not agree, please do not use Tally.

Tally is designed around a single principle: your financial data belongs to you and should stay on the device you carry. We have built the App so that the vast majority of what you enter never leaves your iPhone. The sections below describe in detail what we do collect, why, and how long we keep it.

1. Information you provide on your device

Every transaction, budget, recurring entry, category, accent preference, currency choice, savings goal, and notification preference you create in Tally is stored locally on your iPhone using Apple's standard on-device storage APIs (App Group containers and AsyncStorage). This information is not transmitted to any Tally-controlled server. We do not have user accounts, we do not sync this data to the cloud, and we cannot read it. If you uninstall the App, this information is permanently deleted from the device.

2. Sign in with Apple

During onboarding the App offers Sign in with Apple as a convenience to personalize your first name on the welcome screen. The credential returned by Apple is handled entirely on the device. We do not transmit, store, or share the associated email address, user identifier, or any other piece of the credential outside your iPhone.

3. Subscriptions

Tally is offered through an in-app subscription managed by Apple. When you purchase or restore a subscription, the transaction is processed by Apple in accordance with the App Store Terms and Conditions. We use a third-party subscription management provider, RevenueCat, to verify that an active entitlement exists for your installation of the App. RevenueCat receives an anonymous, device-scoped identifier so that the entitlement check can succeed. We never receive your name, email, billing address, or payment instrument. For more information about how Apple and RevenueCat handle billing data, please refer to their respective privacy policies.

4. The AI coach

Tally includes an optional in-app assistant ("the AI coach") powered by a large language model. When you send the coach a message, the App transmits your message together with a relevant snapshot of your transactions, categories, and budgets to our chat endpoint so that the model can produce an answer. The request is processed and immediately discarded; we do not retain the contents of the conversation, we do not use it to train models, and we do not attach a persistent identifier to it. If you do not use the AI coach, no transaction data ever leaves the device.

5. Feature requests

From the Settings screen you can send a free-text feature request to the team. When you tap "Send request" the text you wrote is transmitted to our feedback endpoint and emailed to the Tally team via a transactional email service (Resend). We do not attach a user identifier to the message. The only personal information we receive is whatever you choose to include in the body of the request.

6. Product analytics

To understand how the App is used and prioritize improvements, Tally sends a narrow set of structured event names to PostHog (operated by PostHog Inc. on EU infrastructure), our product analytics provider. Events include screen views, the type of transactions logged (without amounts, categories, or labels), the period selected for a budget, the type of subscription purchased, and which notification toggles you enabled. Free-text content is never sent: we do not transmit your transaction labels, your category names, your AI coach messages, or your feature request text to PostHog. PostHog assigns an anonymous, device-scoped identifier so that we can reason about retention without ever knowing who you are.

7. Notifications

If you grant notification permission, Tally schedules local notifications on the device for the buckets you opt into (budget alerts, recurring confirmations, weekly snapshot, savings progress). These notifications are scheduled and delivered entirely on-device by iOS; no notification content is uploaded to a Tally server or any third party. You can disable any bucket from Settings → Notifications at any time.

8. The website (hellotally.app)

The Site is a static marketing page hosted on Vercel. We do not set tracking cookies and we do not embed advertising tracker scripts. Standard server access logs that Vercel maintains for security and reliability (such as IP address and user agent) are retained by Vercel under their standard retention policy. We do not have access to identify individual visitors from those logs.

9. Information we do not collect

To make our boundaries explicit: Tally does not use advertising identifiers, behavioral or cross-app tracking, fingerprint telemetry, or background uploads of your transactions. We do not sell, rent, or share your data with third parties for marketing purposes. We have no advertising business model. The product analytics described in Section 6 are limited to anonymous, structured event names.

10. Data retention and deletion

Because the App stores your information on your device, you control its retention. Deleting the App deletes all of your transactions, budgets, recurrings, categories, and preferences. The narrow, off-device flows described above (subscription verification, AI coach requests, feature requests, server logs) are retained by their respective providers under their own retention policies; we do not ourselves keep copies.

11. Children's privacy

Tally is not directed to children under the age of 13 (or the equivalent minimum age in your jurisdiction), and we do not knowingly collect personal information from children. If you believe a child has provided us with information, please contact us and we will take appropriate steps.

12. Your rights

Depending on where you live, you may have rights under data protection laws such as the EU General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA), including the right to access, correct, or delete personal information that a service holds about you. Because Tally itself does not hold a server-side copy of your data, most of these rights are exercised directly on your device by editing or removing the relevant entries, or by uninstalling the App. For requests that involve the limited off-device flows (subscription, AI coach, feedback), please contact us at the address below and we will respond within thirty days.

13. International users

Tally is operated from the European Union. If you use the App or Site from outside the EU, you understand that the limited off-device flows described in this Policy may involve transfer of data to providers operating in the United States or other jurisdictions. Those providers are bound by their own published privacy commitments.

14. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in the App, the law, or our practices. When we do, we will revise the "Last updated" date at the top of this page and, for material changes, surface a notice in the App the next time you open it. We encourage you to review this page periodically.

15. Contact us

If you have any questions or concerns about this Privacy Policy or our handling of your information, please email support@hellotally.app and we will get back to you.