Privacy Policy

Effective: 2026-05-14 · Last updated: 2026-05-14

This policy describes how Phantom (operated by Yinan Zhai, an independent developer) collects, uses, stores, and shares information when you use the Phantom iOS app.

1. What we collect

1.1 On your device only

Phantom is built so that nothing leaves your iPhone for the core features. The following data is stored in your device’s local SwiftData store and never uploaded to a server we control:

• Screenshots you import (used only momentarily for OCR, never persisted as images)
• Extracted text: merchant name, amount, date of each charge
• Subscriptions you add, ratings, notes, cancellation status
• Dispute letters you generate

1.2 Apple-mediated information

• App Store IAP purchase records (handled by Apple — we receive only a verified flag that you’re on Pro)
• Anonymous crash diagnostics if you opt-in at the iOS level

1.3 What we never collect

• Your bank login or password
• Your card number or CVV
• Your account balance or net worth
• Browsing history, location, contacts, or photos library (beyond images you explicitly import)
• Advertising identifiers — we never call Apple’s ATTrackingManager

2. How we use information

We use the data above only to:

1. Detect recurring charges in screenshots you import
2. Compute Zombie Scores for your subscriptions
3. Notify you (via on-device local notifications) about trial endings, price hikes, and forgotten charges
4. Generate dispute letter templates you can send
5. Provide retention negotiation scripts

We do not sell your data. We do not share it with advertisers, lenders, data brokers, or marketing partners. We do not push loans or financial products. These are core promises.

3. Third parties

The only third parties involved are:

• Apple — processes your App Store purchase if you upgrade to Pro. See Apple’s privacy policy.
• GitHub — hosts this website and a small JSON file with current published subscription prices (no user data passes through). See GitHub’s privacy statement.

4. Security

• All on-device data lives in iOS’s sandboxed app container, protected by your device passcode and Secure Enclave.
• Any future network requests use TLS 1.3.
• We do not run a backend server that stores your data.

5. Retention & deletion

Because data lives only on your device:

• Uninstalling Phantom deletes everything.
• Inside the app: Settings → Account → Delete account wipes all SwiftData rows, all Keychain items, and cancels every scheduled notification.

6. Your rights

Since we don’t collect server-side data, GDPR/CCPA access/portability/correction requests are best satisfied by you directly: open Phantom on your device. To exercise any rights or to ask questions, email yn.zhai0205@gmail.com. We respond within 30 days.

7. Children

Phantom is not directed at children under 13 (or 16 in the EU). We do not knowingly collect data from anyone in that age group.

8. Changes

If we make a material change to this policy we will update the “Last updated” date at the top and, where possible, notify you in-app.

9. Contact

Yinan Zhai
Email: yn.zhai0205@gmail.com