Privacy Policy
- Yoho has no accounts — no email, no password, no sign-up.
- Your wallet lives on your device and in your own private iCloud database. We cannot read it.
- The only information the app can send us is a merchant report you choose to submit — and those are public by design.
- No analytics SDKs, no ads, no trackers, no data brokers. We never sell or share personal information.
- Your GPS location is never stored and never sent to us.
Who we are
Yoho is a Canadian credit-card rewards assistant for iOS, developed and operated by [LEGAL NAME], [City], Ontario, Canada, who also acts as its privacy officer (the person in charge of the protection of personal information for Quebec residents). For anything in this policy — questions, access, correction, or deletion requests — contact hello@getyoho.ca.
What the app stores, and where
On your device only
| Data | Details |
|---|---|
| Places history & favorites | Your last 20 merchant answers, plus any places you star as a favorite — merchant name, the merchant's map coordinates (never your own GPS fix), the time, and the best card shown. Kept on your device, never uploaded. Any entry can be removed in Explore (swipe a row, or press and hold a tile); a favorite's swipe offers both unstar and full removal. |
| Name on card | If you put a name on a card face in Card Studio, it stays on that device — it is deliberately excluded from Yoho's sync and is never part of Yoho's iCloud data. (Like all app data, on-device items may be included in your device's own iCloud backup, which we cannot access.) |
| Caches | A local copy of your wallet and of the public card-rules database, so the app and widgets work offline. |
In your private iCloud database (we cannot read this)
If you are signed in to iCloud, your wallet syncs across your devices through the private CloudKit database attached to your Apple ID: your first name if you chose to enter one (used only for the in-app greeting), the cards you hold and their settings, your redemption goal, your monthly spend estimates, welcome-bonus trackers, point-value overrides, gas-price setting, card designs, and appearance preference.
This data is stored under your Apple ID on Apple's infrastructure — we have no server that can access it and no way to see it. Apple's handling of it is covered by Apple's privacy policy, and it is end-to-end encrypted if you enable Advanced Data Protection for your iCloud account. If you are not signed in to iCloud, the app simply runs locally and nothing syncs.
Merchant reports — the one thing we can see, and it's public
When you tap a report chip ("did this card earn 5× here?"), the app submits a small record to a shared public database. It contains: the merchant (or, for unlisted places, the place's name and its map coordinates rounded to roughly a 1 km area), which card, the earn rate you observed (picked from fixed options — there is no free-text field), a category, and a timestamp.
Be aware, before you tap:
- Reports are public immediately. The shared database is world-readable; human review decides whether a report changes recommendations, not whether it is visible.
- Reports are pseudonymous, not anonymous. Each record carries an Apple-generated identifier scoped to this app. It contains no name or email and we cannot identify you from it, but it does link your reports to each other, and a report about a small venue reveals that someone was near it around that time. Your exact location is never part of a report.
- Reports cannot be edited or deleted in the app and are retained indefinitely so the community data stays auditable. If you want a report you submitted removed, email hello@getyoho.ca and we will remove it manually.
Submitting reports is always an explicit action, requires being signed in to iCloud, and is entirely optional — the app is fully functional if you never submit one. Reports are stored in Apple's CloudKit service, on Apple servers that may be located outside your province and outside Canada, where they are subject to the laws of those jurisdictions.
Location
- Yoho asks for "while using the app" permission only. It never requests always-on access and does no geofencing or route tracking.
- It takes a brief one-shot reading when you open the app or return to it, to find merchants near you. If you use the widgets, they take the same one-time reading when they refresh (roughly every half hour) — there is no continuous or background tracking.
- Your coordinates are never stored and never sent to us. Nearby lookups send a search query and surrounding map region to Apple Maps, the same as using the Maps app; that traffic is governed by Apple's privacy policy.
- Everything works if you decline: the app falls back to category mode.
What we don't do
No third-party analytics, advertising, or tracking SDKs of any kind. No ads. No selling, renting, or sharing of personal information with data brokers or anyone else. No bank or card account linking — Yoho never sees your card numbers, statements, or transactions. We do not track you across other companies' apps or websites. Apple may share aggregated, anonymized usage statistics with us (Apple App Analytics) only if you have opted in to sharing analytics with developers in iOS Settings.
Siri and widgets
The "which card" Siri shortcut ranks entirely on your device from cached data and sends nothing to us. Your spoken interaction with Siri itself is processed by Apple under Apple's terms. Widgets rank from the on-device cache shared between the app and its extension; when they refresh, they take the same one-shot location reading and Apple Maps nearby lookup described under Location — and, like the app, send nothing to us.
Retention and deletion
- On-device data: delete individual Places entries in the app, or delete the app to remove everything local.
- Everything at once: Settings → iCloud & sync → "Erase all my data" deletes your wallet from the device and from your private iCloud database, and clears your Places history, favorites, and name-on-card, in one step. Other devices signed into your iCloud clear their synced wallet the next time they open Yoho; data kept only on those devices (their own Places history, favorites, and name-on-card) stays until you erase from that device too, or delete the app there.
- Private iCloud wallet: changes and removals in the app sync to your private database. You can also remove Yoho's iCloud data manually from iOS Settings → your Apple ID → iCloud → Manage Account Storage — but delete the app first, or it will sync your wallet back up the next time you open it.
- Public reports: retained indefinitely; removed manually on request as described above.
Security
Data synced through iCloud and submitted merchant reports are encrypted in transit and at rest by Apple's CloudKit infrastructure. The shared card-rules database can only be modified with our signed server credentials, and user reports cannot change anyone's recommendations without human review first.
Your rights
Yoho is Canadian and handles personal information in accordance with PIPEDA and, for Quebec residents, the Act respecting the protection of personal information in the private sector (Law 25). You may request access to, correction of, or deletion of personal information we hold (in practice, that is only your public reports — everything else is in your possession or your private iCloud), and you may complain to the Office of the Privacy Commissioner of Canada or your provincial regulator. Contact our privacy officer at hello@getyoho.ca.
Children
Yoho is a credit-card tool and is not directed at children. We do not knowingly collect personal information from anyone under the age of majority in their province.
Changes
If we change this policy — for example, if optional affiliate links or subscriptions are added in the future — we will update this page and the effective date, and material changes will be called out in the app.