Vault was built with a simple privacy principle: your trading data belongs to you and stays on your device.
Vault does not collect, transmit, or share any personal data. The app operates entirely offline. There are no servers, no APIs, no cloud storage, and no analytics services.
Specifically, Vault does not collect your name, email address, location, device identifiers, IP address, usage analytics, crash reports, or any other personal or behavioral data.
The app contains no third-party SDKs, advertising frameworks, or analytics tools of any kind.
All trade data you enter into Vault — including ticker symbols, prices, quantities, dates, notes, and tags — is stored locally on your device using Apple's SwiftData framework. This data is never transmitted off your device.
Trade records (ticker, direction, entry/exit prices, quantity, date, notes, tags), your tag selections, and the date each trade was created. This data persists between app sessions and is included in your standard iOS device backup.
You can delete individual trades from within the app by opening a trade's detail view and tapping "Delete Trade." To delete all data, uninstall the app from your device. When the app is removed, all locally stored trade data is permanently deleted by iOS.
Vault requests access to your camera and photo library solely for the screenshot scanning feature. These permissions are optional — the app functions fully without them if you prefer to enter trades manually.
| Permission | Purpose |
|---|---|
| Camera | Take a photo of a brokerage order confirmation to scan with OCR. The photo is processed in memory and is not saved to your photo library or transmitted anywhere. |
| Photo Library | Select an existing screenshot from your library to scan. Vault uses the system photo picker, which provides access only to the specific image you select — not your entire library. |
Images used for scanning are processed entirely on-device using Apple's Vision framework. They are held in memory only during the scan operation and are not stored, cached, or uploaded.
The screenshot scanning feature uses Apple's on-device Vision framework (VNRecognizeTextRequest) to extract text from images. This processing runs entirely on your device's neural engine and CPU. No images or extracted text are sent to any server, API, or cloud service — including Apple's servers.
The extracted text is parsed locally to identify trade details (ticker, direction, price, quantity), presented to you for review, and discarded from memory once you save or dismiss the scan.
When you export your trades, Vault generates a CSV file stored temporarily on your device. This file is shared through the standard iOS share sheet, which you control. Vault does not automatically send this file anywhere — you choose the destination (AirDrop, email, Files, etc.).
The temporary CSV file is created in your device's temporary directory and is cleaned up by iOS automatically.
Vault uses no third-party services. There are no analytics SDKs (no Firebase, no Mixpanel, no Amplitude), no crash reporting tools (no Crashlytics, no Sentry), no advertising networks, and no social login frameworks.
The only frameworks used are Apple's first-party frameworks: SwiftUI, SwiftData, Vision, PhotosUI, and UIKit. These are built into iOS and operate under Apple's own privacy policies.
Vault is not directed at children under the age of 13. The app is a trading journal intended for use by adults who actively trade stocks and ETFs. Since Vault does not collect any data from any user, it does not knowingly collect data from children.
If we make changes to this Privacy Policy, the updated version will be posted on this page with a revised effective date. Since Vault does not collect email addresses or any contact information, we cannot notify you directly — we encourage you to review this page periodically.
Our core commitment will not change: Vault is and will remain an offline-first app that does not collect, transmit, or monetize your data.