SilkWallet Privacy Policy

5. Google API Services & User Data Policy

SilkWallet uses Google Sign-In and Google APIs only to provide the app features you choose to use, such as secure sign-in, cloud sync, backups, spreadsheet workspaces, shared family workspaces, attachments, and optional calendar reminders. SilkWallet requests the following OAuth scopes: email, profile, https://www.googleapis.com/auth/drive.file, https://www.googleapis.com/auth/spreadsheets, and https://www.googleapis.com/auth/calendar.events.

Data Accessed

Google account profile: We access your Google name, email address, profile photo, Google authentication tokens, and Firebase authentication identifier so you can sign in, identify your profile, and join or manage shared workspaces.

Google Drive: With the drive.file scope, SilkWallet creates, reads, updates, shares, downloads, and deletes only files and folders that you create with SilkWallet or open with SilkWallet. This can include SilkWallet folders, backup JSON files, receipt or attachment files, profile images, Google Sheets files created for SilkWallet workspaces, file names, file IDs, parent folder IDs, file metadata, app properties, and sharing permissions for invited workspace members. SilkWallet does not request permission to browse all files in your Drive.

Google Sheets: With the spreadsheets scope, SilkWallet creates, reads, updates, and deletes SilkWallet spreadsheet tabs and cell values used for app workspaces. Spreadsheet data can include transactions, income, expenses, transfers, notes, accounts, categories, budgets, goals, loans, payment methods, reports, member names, member email addresses, roles, workspace settings, and sync metadata.

Google Calendar: With the calendar.events scope, SilkWallet creates, updates, and deletes user-visible calendar events for optional due-date and recurring transaction reminders. Calendar event data can include the transaction title, amount, note, due date, recurrence rule, and event ID generated by SilkWallet.

Data Usage

Google account profile data is used to authenticate you, display your profile, protect workspace access, match invited member email addresses, and connect your account to Firebase Authentication when shared sync is enabled. Google Drive data is used to create and manage SilkWallet folders, attachments, backups, and workspace files. Google Sheets data is used as a user-controlled workspace store for finance records, family or personal budget data, reports, and app settings. Google Calendar data is used only when you enable reminders, so SilkWallet can create, update, or remove the reminder events you requested.

SilkWallet does not use Google user data for advertising, cross-app tracking, sale of data, or unrelated analytics. SilkWallet does not use Google user data to develop, improve, or train generalized AI or machine learning models.

Data Sharing

We do not sell Google user data, financial data, Drive files, Sheets data, Calendar data, contacts, or attachments. We do not share Google user data with advertising networks or data brokers.

Google user data may be processed by Google services that the app uses, including Google Sign-In, Google Drive, Google Sheets, Google Calendar, Firebase Authentication, and Firebase Realtime Database. If Cloudflare live sync is enabled, workspace data and sync metadata may also be processed by Cloudflare Workers and Durable Objects. When you create or join a shared workspace, workspace data and invited member email addresses may be visible to other authorized workspace members according to their role. When you invite members, SilkWallet may create or update Google Drive permissions for those member email addresses so the workspace can be shared. If you contact support, we use the information you provide only to respond to your request.

Data Storage & Protection

Local app data is stored in the app sandbox. The local database uses SQLCipher encryption, and encryption keys are kept in platform secure storage. Google authentication tokens are handled through Google Sign-In, Firebase Authentication, and platform security mechanisms. Network communication with Google, Firebase, and Cloudflare uses HTTPS/TLS.

SilkWallet files and spreadsheets are stored in your Google Drive and Google Sheets under your Google account. Optional calendar reminders are stored in your Google Calendar. Shared workspace sync data may be stored in Firebase Realtime Database or Cloudflare Workers/Durable Objects and is protected by authenticated workspace access checks and service-side rules. Silky Apple does not operate a separate server that stores your Google Drive files or Google Sheets contents.

Data Retention & Deletion

Google user data is retained only as long as needed to provide the SilkWallet features you use, unless you delete it sooner. Local profile data remains on your device until you delete the profile, uninstall the app, or clear app data. SilkWallet files, spreadsheets, backups, attachments, and calendar events remain in your Google account until you delete them in SilkWallet or from Google Drive, Google Sheets, or Google Calendar.

You can revoke SilkWallet's Google access at any time from your Google Account security settings. To delete your SilkWallet profile and associated local or personal cloud data, open Profile > Account actions > Delete profile in the app. This attempts to remove local data, personal SilkWallet Drive files, SilkWallet Sheets data, optional SilkWallet Calendar reminders, owned Firebase or Cloudflare workspace data where supported, and connected access tokens. You can also request deletion help through our Account and Data Deletion page or by emailing support@silkyapple.com from the Google account used with SilkWallet.

Limited Use Compliance: Silky Apple's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.