Privacy Policy
Last updated May 21, 2026
What you need to know
- Your finances stay on your device. Transactions, accounts, and categories are stored locally — not on our servers.
- On-device AI. Categorization, merchant cleanup, and chat answers all run on your Mac. Your data is not used to train any model.
- You hold the encryption keys. iCloud sync uses keys from your iCloud Keychain — not ours, not Apple's.
- No bank credentials. We never ask for your bank login. There's no Plaid token to leak.
- Purchase validation only. Your App Store purchase receipt is checked through RevenueCat to confirm your trial or one-time purchase. None of your financial data is involved.
- Anonymous analytics only. Aggregate, non-identifying usage signals to help us improve the app. No personal identifiers.
Information We Collect
Lume Portfolio is designed with privacy at its core. All your transactions, accounts, categories, and chat history are stored locally on your Mac and (optionally) in your own iCloud database. We do not receive, store, or have access to this data.
Anonymous Usage Data. We may collect anonymous, aggregated usage data to help us understand how the app is used and to improve the product. This data does not include any personal identifiers, transaction content, or financial information from your ledger.
How We Use Your Information
Because your financial data never reaches us, we don't "use" it. The app uses your data locally to:
- Display your transactions, categories, and accounts
- Categorize new transactions using on-device AI
- Answer chat-driven questions about your spending using a local LLM
- Sync between your own devices via your encrypted iCloud database (if enabled)
Purchases and Trial Validation
Lume Portfolio is offered with a 1-week free trial followed by a one-time Launch Price purchase of $9.99. We use RevenueCat as our purchase infrastructure to confirm that your trial is active and that your one-time purchase is valid.
To do this, the following purchase-related data is processed:
- An anonymous app user ID generated by RevenueCat to track your entitlement (trial or purchased). This ID is not tied to your name, email, or any of your financial data.
- Your App Store transaction receipt, issued by Apple when you start a trial or make a purchase. The receipt is sent to RevenueCat (and to Apple's verification servers) solely to confirm the purchase is real and current.
- Standard purchase metadata Apple provides for the transaction — such as product identifier, purchase date, and country — used to grant or revoke access.
What we never send to RevenueCat or any payment-related service: any of your transactions, account balances, categories, merchant data, chat messages, or anything else from your ledger. The validation flow only ever sees the App Store purchase receipt. Your financial records are never stored on our servers or any third-party server.
If you receive a refund through Apple, the receipt's cancellation status flows through to RevenueCat and your entitlement is revoked. Access to the app's paid features ends when the entitlement ends.
On-Device AI
Lume Portfolio runs inference locally using Apple Intelligence and open-weight MLX models (Gemma, Llama). No prompts, transactions, or chat messages are sent to a third-party AI provider. Your data is never used to train any model.
Data Security
We implement appropriate security measures to protect your account information from unauthorized access, alteration, disclosure, or destruction. iCloud sync is end-to-end encrypted using keys that live in your iCloud Keychain. However, no method of transmission over the Internet or any digital storage system is 100% secure, and we cannot guarantee absolute security.
App Permissions and Storage
Lume Portfolio may request the following macOS permissions to provide core functionality:
- iCloud / CloudKit. To sync your data across your own Apple devices.
- File access. To read PDF statements you choose to import. Files stay on your Mac.
- Notifications. To alert you when long-running imports or AI tasks finish.
These permissions are only used for their intended purpose. We do not use these permissions to collect or transmit any personal data from your device.
Third-Party Services
The only third parties involved in operating Lume Portfolio are:
- Apple. Provides the App Store, in-app purchase, and iCloud / CloudKit infrastructure. Apple processes the actual payment for the one-time purchase and issues the transaction receipt. iCloud sync, if enabled, stores your encrypted data in your own iCloud container. See Apple's Privacy Policy.
- RevenueCat. Validates your App Store purchase receipt and tracks your trial and entitlement status. Receives the anonymous app user ID, the transaction receipt, and Apple's standard purchase metadata. Does not receive any of your financial data. See RevenueCat's Privacy Policy.
Lume Portfolio may also contain links to other third-party websites. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party sites we link to.
Children's Privacy
Lume Portfolio is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date above.
Contact
If you have any questions about this Privacy Policy, please contact us at support@pexelerate.com.
© 2026 Lume Portfolio. Built by Pexelerate.