Legal Information

Privacy Policy

Name: TipKeepr
Price: 4.99 USD
Rating: 4.8 (1247 reviews)
Author: TipKeepr

We are committed to protecting your privacy and ensuring the security of your personal information.

Last Updated: August 28, 2025

•

Effective: August 28, 2025

Legal Compliance

Global Privacy Compliance

TipKeepr is committed to complying with privacy laws worldwide. We continuously update our practices to meet evolving legal requirements and protect your rights.

🇪🇺

GDPR

European Union

General Data Protection Regulation

Compliant

🇺🇸

CCPA/CPRA

California, USA

California Consumer Privacy Act / Privacy Rights Act

Compliant

🇬🇧

UK GDPR

United Kingdom

UK General Data Protection Regulation

Compliant

🇨🇦

PIPEDA

Canada

Personal Information Protection and Electronic Documents Act

Compliant

🇧🇷

LGPD

Brazil

Lei Geral de Proteção de Dados

Compliant

🏛️

State Privacy Laws

US States

Virginia, Colorado, Connecticut, Utah, and others

Compliant

Your Privacy Rights

Access and download your personal data
Request correction of inaccurate information
Delete your account and associated data
Object to certain processing activities
Port your data to another service
Opt-out of marketing and analytics

Our Commitments

Privacy by design in all features
Regular privacy impact assessments
Transparent data processing practices
Prompt breach notifications if required
Annual compliance audits
Dedicated data protection officer

We Do Not Sell Your Personal Information

TipKeepr does not sell, rent, or share your personal information with third parties for their marketing purposes. Your data is only used to provide and improve our services.

No opt-out needed - we don't sell your data

Data Collection

Information We Collect

We collect different types of information to provide our tip tracking and financial management services. Many fields are optional and can be customized to protect your privacy.

Account Information

Required

Basic details needed to create and manage your account.

Email address (required for signup)
Full name (required for signup)
Password (required for email signup)
Phone number (optional - can be added in profile)
Birthday (optional - can be added in profile)
Profile photo/avatar (optional - can be added in profile)

Employment & Job Information

Work-related data to track your earnings across jobs.

Job position/title (customizable)
Company/employer name (customizable)
Work location (optional)
Hourly rate (optional)
Shift schedules and hours worked
Job profile colors and icons

Financial & Tip Data

Income information for tracking and analytics.

Daily tips (cash and credit)
Sales amounts (total, food, alcohol)
Tip out amounts to other staff
Business expenses
Income notes and descriptions
Photos of tip sheets and receipts

App Usage & Performance

Required

Technical data to improve our services.

Device information and identifiers
App version and platform (iOS/Android)
Feature usage and interactions
Error logs and crash reports
Performance metrics
Push notification tokens

Analytics & Preferences

Data that helps us personalize your experience.

App settings and preferences
Theme selection (light/dark)
Calculator usage patterns
Export format preferences
Notification preferences
Language settings

Signatures & Documents

Electronic signatures and related data.

Digital signatures for tip sheets
Tip sheet images and PDFs
Binder sharing permissions
Employee tip distributions
Signature timestamps and IP addresses

Important Privacy Notes

Optional Fields: Most personal information fields are optional. You can use TipKeepr without providing birthday, phone number, location, or real employer names.
Customizable Data: Job positions, company names, and other employment data can be customized or anonymized as you prefer. We don't verify this information.
No Background Checks: We do not perform employment verification, credit checks, or background investigations on our users.

Legal Basis

Why We Process Your Data

Under privacy laws like GDPR and CCPA, we must have a valid legal reason for processing your personal data. Here are the legal bases we rely on for different processing activities.

Contractual Necessity

GDPR Article 6(1)(b)

Processing necessary to provide our services under our Terms of Service

Processing Activities

Account creation and authentication (email, password, name)
Core app functionality (tip tracking, calculations)
Customer support communications
Billing and subscription management

Legal Obligations

GDPR Article 6(1)(c)

Processing required to comply with legal requirements

Processing Activities

Tax reporting information (where applicable)
Data retention for legal compliance
Response to lawful government requests
Fraud prevention and security

Legitimate Interests

GDPR Article 6(1)(f)

Processing for legitimate business purposes that don't override your rights

Processing Activities

App performance monitoring and improvements
Anonymous analytics and usage statistics
Security monitoring and threat detection
Business operations and service optimization

Consent

GDPR Article 6(1)(a)

Processing based on your explicit consent

Processing Activities

Marketing communications (optional)
Push notifications (you control in settings)
Phone number for SMS invites (when provided)
Profile photo upload (optional)
Biometric authentication (Touch ID/Face ID/fingerprint when enabled)

Vital Interests

GDPR Article 6(1)(d)

Processing in rare emergency situations

Processing Activities

Emergency contact to authorities if required
Protection of vital interests in extreme circumstances

Special Category Data

We do NOT intentionally collect special category (sensitive) personal data such as:

• Racial or ethnic origin
• Political opinions
• Religious or philosophical beliefs
• Trade union membership

• Genetic data
• Health information
• Sexual orientation
• Criminal history

If any such information is inadvertently collected (e.g., in notes or photos), it is not processed for any purpose and you can delete it at any time.

You can withdraw consent for optional processing at any time in your account settings

Data Usage

How We Use Your Data

We use your data responsibly and transparently to provide you with the best possible service. Here's how we put your information to work.

Service Improvement

How we use data to enhance your experience.

Performance optimization
Feature development
User experience enhancement
Service personalization

Analytics & Insights

Understanding patterns to serve you better.

Earnings analysis
Trend identification
Performance tracking
Goal achievement

Service Delivery

Ensuring smooth operation of core features.

Account management
Payment processing
Support services
Communication delivery

Platform Operations

Maintaining and securing our platform.

System maintenance
Security monitoring
Error prevention
Performance monitoring

Your data is always handled with care and respect

Third-Party Services

Service Providers We Work With

We partner with trusted service providers to deliver TipKeepr's features. These providers are contractually obligated to protect your data and only use it for the services they provide to us.

Supabase

Infrastructure & Database

Backend infrastructure, authentication, and data storage

View Privacy Policy

Information Shared

All user account information

Income and tip data

Photos and documents

App preferences and settings

Data processed in: United States

RevenueCat

Payment Processing

Subscription management and payment processing

View Privacy Policy

Information Shared

Email address

Purchase history

Subscription status

Device identifiers

Data processed in: United States

PostHog

Analytics

Product analytics and usage insights

View Privacy Policy

Information Shared

Anonymous user ID

Feature usage data

Session information

Device and platform data

Data processed in: United States

Firebase (Crashlytics)

Crash Reporting

App stability monitoring and crash reporting

View Privacy Policy

Information Shared

Device information

App version

Crash logs and stack traces

User ID (anonymized)

Data processed in: United States

Twilio

Communications

SMS invitations for tip sheet sharing

View Privacy Policy

Information Shared

Phone numbers (when sending invites)

Message content

Timestamp of messages

Data processed in: United States

Data Sharing Principles

We NEVER:

✗Sell your personal data to third parties
✗Share data for advertising purposes
✗Allow unauthorized access to your information

We ALWAYS:

✓Use data processing agreements
✓Limit data sharing to minimum necessary
✓Audit our service providers regularly

Cookie Policy

How We Use Cookies

We use cookies and similar technologies to enhance your experience on our website. You have full control over which cookies we use.

Cookie Consent

When you first visit our website, you'll see a cookie consent banner allowing you to:

• Accept all cookies
• Reject non-essential cookies
• Customize your cookie preferences

View full Cookie Policy

Essential Cookies

Retention: Session or up to 1 year

Required

Required for the website to function properly

Examples:

Authentication tokens
Session identifiers
Security cookies
Cookie consent preferences

Analytics Cookies

Retention: Up to 2 years

Help us understand how visitors use our website

Examples:

PostHog analytics tracking
Page view statistics
Feature usage metrics
Performance monitoring

Marketing Cookies

Retention: Up to 1 year

Track visitors across websites for marketing

Examples:

Conversion tracking
Campaign effectiveness
Retargeting pixels
Social media tracking

Personalization Cookies

Retention: Up to 1 year

Remember your preferences and settings

Examples:

Language preferences
Theme settings
Display preferences
Timezone settings

Mobile App Tracking

Our mobile app (iOS and Android) uses similar tracking technologies:

App Analytics:

• PostHog for usage analytics
• Firebase Crashlytics for stability
• RevenueCat for subscription tracking

You can control:

• Analytics collection in app settings
• Crash reporting preferences
• Marketing communications opt-out

Managing Your Cookie Preferences

Cookie preferences are managed through your browser settings.
Most browsers allow you to block or delete cookies. Note that blocking essential cookies may affect your ability to use certain features of our website.

Full Cookie Policy

Data Retention

How Long We Keep Your Data

We only keep your data for as long as necessary to provide our services and comply with legal requirements. Here are our specific retention periods for different types of information.

Active Account Data

Duration of account

Retained while your account is active

Profile information and preferences
Tip and income data
Job profiles and settings
Photos and documents you upload

After Account Deletion

30 days

Grace period for account recovery

All account data retained for 30 days
Account can be restored by logging in
Permanently deleted after 30 days automatically
Includes complete removal from third-party services (PostHog, Firebase)

Subscription Records

Handled by App Stores

Payment records managed by Apple/Google

Apple App Store and Google Play handle all payment records
We do not retain financial transaction data
Subscription history available through your app store account
Contact Apple/Google for payment record requests

Analytics Data

Immediately deleted

Third-party analytics removed on account deletion

PostHog analytics data deleted via API
Firebase Crashlytics data deletion instructions provided
Account recovery actions
Suspicious activity logs

Analytics Data

24 months

Aggregated and anonymized usage data

Feature usage statistics
App performance metrics
Anonymized user behaviors
No personally identifiable information

Marketing Communications

Until opt-out

Deleted immediately upon unsubscribe

Email preferences
Marketing consent records
Communication history
Unsubscribe requests honored immediately

Account Deletion Timeline

🗑️

Day 0

Deletion Request

You request account deletion in the app

⏰

Days 1-30

Grace Period

Account marked for deletion but recoverable

✅

Day 30

Permanent Deletion

All personal data permanently removed

🔒

After Day 30

Anonymized Records

Only legally required anonymized data retained

Your Control Over Data

You can always:

• Request immediate permanent deletion
• Export all your data before deletion
• Delete specific data items individually
• Recover your account within 30 days

We ensure:

• Clear retention periods for all data types
• Automatic deletion when periods expire
• Secure deletion processes
• Compliance with legal requirements

Data Security

How We Protect Your Data

We employ industry-leading security measures and follow best practices to ensure your data remains safe and protected.

Data Protection

Strong encryption for stored and transmitted data

HTTPS/TLS encryption
Secure database storage
Regular automated backups

Access Control

Multiple authentication options and secure access

Email/password authentication
Biometric authentication (Touch ID/Face ID)
Google Sign-In integration
Automatic session management

Input Security

Comprehensive protection against malicious input

XSS prevention
SQL injection protection
File upload validation
Content sanitization

Infrastructure

Secure cloud infrastructure through trusted providers

Supabase hosting security
DDoS protection
Automated scaling

Data Privacy

Privacy-focused data handling practices

Minimal data collection
User-controlled deletion
30-day grace period

Secure Storage

Hardware-backed security for sensitive data

iOS Keychain integration
Android KeyStore usage
Encrypted local storage

Your security is our top priority

International Transfers

Cross-Border Data Transfers

Your data may be processed in different countries. We ensure all international transfers comply with applicable laws and maintain strong protection regardless of location.

Legal Transfer Mechanisms

Standard Contractual Clauses

EU-approved contracts for international data transfers

Coverage: EU/UK to US transfers

Status: Active

Adequacy Decisions

Countries recognized as providing adequate protection

Coverage: EU to UK, Canada, Japan, etc.

Status: Active where applicable

Technical Safeguards

Encryption and security measures for all transfers

Coverage: All international transfers

Status: Always applied

Where Your Data Is Processed

🇺🇸

United States

Services Located Here:

Supabase (Primary Database)
RevenueCat
PostHog
Firebase

Safeguards Applied:

SCCs, encryption, access controls

🇪🇺

European Union

Services Located Here:

CDN edge locations
Backup systems

Safeguards Applied:

GDPR compliance, local processing

🌍

Global CDN

Services Located Here:

Static assets
Cached content

Safeguards Applied:

Edge encryption, minimal data

Post-Schrems II Compliance

Following the Schrems II decision, we've implemented additional safeguards for EU-US data transfers:

Technical Measures:

• End-to-end encryption for sensitive data
• Pseudonymization where possible
• Access controls and monitoring
• Regular security audits

Organizational Measures:

• Transfer impact assessments
• Enhanced contractual clauses
• Transparency reports
• Government access policies

Your Rights Regarding International Transfers

You have the right to:

Know where your data is processed
Understand the safeguards in place
Request copies of transfer agreements
Object to transfers in certain circumstances

For questions about international transfers, contact our Data Protection Officer at support@tipkeepr.com

SMS Communications

SMS Invites and Data Usage

Information about how we collect and use phone numbers for SMS invitations. This section was last updated on April 9, 2025.

Tipkeepr collects phone numbers provided by users to send SMS invites to coworkers via our mobile app. We use Twilio, a third-party service provider, to facilitate SMS delivery.

By providing a phone number, you confirm that you have the recipient's consent to receive SMS invites from Tipkeepr. Recipients can opt out by replying 'STOP' to any message.

We do not share SMS opt-in or consent data with third parties for purposes unrelated to this service. We share phone numbers with Twilio solely to send SMS invites, and Twilio is contractually obligated to use this data only for providing SMS services on our behalf.

We retain phone numbers only as long as necessary to send the invite and comply with legal obligations, using industry-standard security measures to protect this data.

You can request to access, correct, or delete your data by contacting us at support@tipkeepr.com.

Children's Privacy

Protection of Minors

TipKeepr is designed for service industry professionals. While we welcome users of legal working age, we take the protection of minors' privacy seriously and comply with applicable children's privacy laws.

Children's Privacy Protection

While TipKeepr does not impose specific age restrictions during account creation, we are committed to protecting children's privacy and comply with applicable laws:

COPPA Compliance (USA)

We do not knowingly collect personal information from children under 13
If we discover a child under 13 has provided information, we immediately delete it

General Protections

No marketing specifically directed at children
Immediate response to parental concerns about minor accounts

Optional Birthday Information

Users may optionally provide their birthday in their profile settings for personalization features such as:

Birthday celebration features and notifications
Age-appropriate content and feature recommendations
Analytics and demographic insights (anonymized)

Birthday information is completely optional and TipKeepr functions fully without it.

For Parents and Guardians

If you believe your child under 13 has created an account or we have inadvertently collected information from a child under 13, please contact us immediately.

We will:

Immediately delete the account and all associated data
Confirm the deletion within 48 hours
Review our processes to prevent similar incidents

Contact for Child Privacy Concerns:

support@tipkeepr.com

Subject line: "Child Privacy Concern - Immediate Attention Required"

Account Deletion

How to Delete Your Account

TipKeepr puts you in control of your data. You can easily delete your account and all associated information at any time.

In-App Account Deletion

TipKeepr users can delete their account and all associated data directly in the app by following these steps:

Open the TipKeepr app
Navigate to Profile → Settings
Select Security & Privacy
Tap on Delete Account
Follow the confirmation prompts

When an account is deleted, all personal information, income entries, goals, preferences, and other user-generated content are permanently removed from our systems.

Need Help?

If you've uninstalled the app or need assistance with account deletion, please contact our support team at support@tipkeepr.com

We may retain certain information as required by law or for legitimate business purposes as outlined in our Privacy Policy.

Your Rights

Your Data Rights

You have complete control over your personal data. We ensure transparency and provide you with tools to manage your information.

Right to Access

You can request access to your personal data and obtain information about how we process it.

Right to Data Portability

You can request a copy of your data in a structured, commonly used format.

Right to Rectification

You can request corrections to your personal data if it is inaccurate or incomplete.

Right to Erasure

You can request deletion of your personal data under certain circumstances.

Right to Object

You can object to the processing of your personal data for certain purposes.

Right to Restrict

You can request to temporarily restrict the processing of your data.

Exercise Your Data Rights

To exercise any of the rights above, send us an email with your request and we'll respond within 30 days.

support@tipkeepr.com