Last Updated: July 19, 2026
This Privacy Policy applies to the Android application Ledger published on Google Play by MetroPhoenixIND.
This Privacy Policy describes how MetroPhoenixIND ("we," "us," or "our") collects, uses, discloses, and safeguards information in connection with your use of the Ledger mobile application (the "App"). By downloading, installing, or using Ledger, you agree to the practices described in this Privacy Policy. If you do not agree with these practices, please do not use the App.
Ledger is a personal finance and expense tracking application developed and published by MetroPhoenixIND for the Android platform. Ledger's core functionality is to help users track income and expenses by:
MetroPhoenixIND is committed to protecting the privacy of Ledger's users. This Privacy Policy explains what information the App collects, how that information is used and stored, who it may be shared with, and the choices and rights available to you.
Ledger collects the following categories of information in order to provide its core features:
When you sign in to Ledger using Google Sign-In, we collect, via Firebase Authentication:
This information is used solely to authenticate you, create and maintain your Ledger account, and ensure that your financial data is accessible only to you.
Ledger collects and stores financial transaction data that you create or that is derived from SMS parsing, including:
This data is entered manually by you or extracted automatically from SMS messages as described in Section 3 below.
If you grant SMS permissions, Ledger reads incoming and existing SMS messages solely to identify messages sent by banks, card issuers, wallets, and other financial institutions, and to extract transaction details (amount, merchant, date, and transaction type) from those messages. See Section 3 ("SMS and Call Log Permissions") for a full explanation of this process.
To maintain and improve the App, we may collect:
This information is technical in nature and is used to identify, diagnose, and fix bugs, and to understand aggregate app performance and stability. It is not used to identify you personally beyond what is necessary for crash attribution and debugging.
Any information you voluntarily provide, such as feedback, support requests, or communications sent to us via email, is also collected and retained as necessary to respond to you.
Ledger requests the following Android runtime permissions:
READ_SMSRECEIVE_SMSLedger does not request or use any Call Log permissions.
The core, distinguishing feature of Ledger is the automatic detection of financial transactions from SMS
messages sent by banks, card networks, payment processors, and digital wallets. Most financial
institutions notify customers of transactions via SMS. The READ_SMS and
RECEIVE_SMS permissions allow Ledger to:
Ledger's on-device parsing logic evaluates SMS messages to identify those that originate from, or resemble notifications from, banks, credit card issuers, payment applications, and other financial institutions. Only messages that are identified as financial transaction notifications are processed and used to create transaction records. Messages that do not match transaction patterns (such as personal messages, OTP/verification codes used for login purposes, promotional messages, or messages unrelated to financial activity) are not extracted, stored, transmitted, or used by the App.
Non-financial SMS content is not uploaded to our servers and is not retained by Ledger beyond the local, on-device evaluation necessary to determine whether a message is transaction-related.
We do not sell, rent, or trade SMS content or SMS-derived data to any third party for any purpose, including advertising or marketing.
Granting SMS permissions is entirely optional. If you decline or later revoke the READ_SMS
and RECEIVE_SMS permissions:
You may revoke SMS permissions at any time through your device's Settings > Apps > Ledger > Permissions menu.
Ledger integrates the Anthropic Claude AI model to provide optional, user-initiated features, including:
AI features are never triggered automatically or in the background. AI processing occurs only when you explicitly choose to use an AI-powered feature within the App (for example, by tapping a button to request a spending summary or categorization suggestion).
When you invoke an AI feature, Ledger securely transmits only the information necessary to fulfill your specific request to Anthropic's Claude API. This may include:
Data is transmitted over an encrypted connection. We do not send your full account credentials, raw SMS message content, or unrelated personal data to Anthropic.
Data sent to Anthropic's Claude API is used solely to generate the response to your specific request. We do not use your data, and Anthropic does not use data submitted via its API, to train Anthropic's underlying AI models, except as otherwise described in Anthropic's own API terms and privacy policy, which govern Anthropic's handling of API data. We encourage you to review Anthropic's privacy policy for further detail on its data handling practices as a processor of API requests.
Because AI features are optional, you may simply choose not to use them. Declining to use AI features does not affect the App's core manual and SMS-based transaction tracking functionality.
We use the information described above to:
Ledger relies on the following third-party service providers to operate. Each provider processes data only as necessary to perform its function on our behalf and is bound by its own privacy and security commitments.
Used to authenticate users via Google Sign-In and to securely manage user identity and session information. Firebase Authentication processes your name, email address, profile photo, and Firebase User ID.
Used as the App's primary database to securely store your transaction data, budgets, categories, and account-related information. Firestore's access-control rules ensure that each user can only access their own data; MetroPhoenixIND does not permit one user's data to be accessed by another user through the App.
Used to collect crash reports and diagnostic logs to help us identify and fix software defects. Crash reports may include device information, app state at the time of the crash, and stack traces.
Used, where enabled, to collect aggregate, non-identifying usage statistics (such as feature engagement and app performance) to help us understand how the App is used and to improve it.
Used to provide optional AI-powered features such as transaction categorization, spending summaries, and financial insights, as described in Section 4 above.
We do not control the independent privacy practices of these third-party service providers beyond the data-processing relationship described above. We encourage you to review the privacy policies of Google/Firebase and Anthropic for additional information.
MetroPhoenixIND does not sell, rent, or trade your personal data or financial information to any third party.
We do not share your personal data or financial information with third parties for advertising or marketing purposes.
We disclose information only in the following limited circumstances:
We take reasonable, industry-standard measures designed to protect your information from unauthorized access, alteration, disclosure, or destruction, including:
While we strive to use commercially reasonable means to protect your information, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security. You use the App at your own risk with respect to any inherent security limitations of internet-based and mobile data transmission.
We retain your account and transaction information for as long as your Ledger account remains active, or as needed to provide you with the App's services. If you delete your account or request deletion of your data, we will delete or anonymize your personal information from our active systems within a reasonable period, except where retention is required to comply with legal obligations, resolve disputes, or enforce our agreements.
You have the following rights and choices regarding your information:
READ_SMS and
RECEIVE_SMS permissions at any time via your device's Settings menu. This will disable
automatic SMS-based transaction detection but will not affect manually entered data.Ledger is not intended for, or directed at, children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected personal information from a child under 13, we will take steps to promptly delete such information. If you believe we may have collected information from a child under 13, please contact us using the information in Section 13.
We may update this Privacy Policy from time to time to reflect changes in our practices, the App's functionality, or applicable legal requirements. When we make material changes, we will:
We encourage you to review this Privacy Policy periodically. Your continued use of Ledger after any changes to this Privacy Policy constitutes your acceptance of the updated terms.
If you have any questions, concerns, or requests regarding this Privacy Policy or MetroPhoenixIND's data practices in connection with Ledger, please contact us at:
Developer: MetroPhoenixIND
Website: https://ledger.matrimpathak.com
Email: support@ledger.matrimpathak.com
This Privacy Policy applies specifically to the Android application Ledger, published on Google Play by MetroPhoenixIND, and governs the collection, use, and disclosure of information through that application.