Legal

Privacy Policy

Effective July 5, 2026 · Applies to the Yoho iOS app

The short version:

Who we are

Yoho is a Canadian credit-card rewards assistant for iOS, developed and operated by [LEGAL NAME], [City], Ontario, Canada, who also acts as its privacy officer (the person in charge of the protection of personal information for Quebec residents). For anything in this policy — questions, access, correction, or deletion requests — contact hello@getyoho.ca.

What the app stores, and where

On your device only

DataDetails
Places history & favoritesYour last 20 merchant answers, plus any places you star as a favorite — merchant name, the merchant's map coordinates (never your own GPS fix), the time, and the best card shown. Kept on your device, never uploaded. Any entry can be removed in Explore (swipe a row, or press and hold a tile); a favorite's swipe offers both unstar and full removal.
Name on cardIf you put a name on a card face in Card Studio, it stays on that device — it is deliberately excluded from Yoho's sync and is never part of Yoho's iCloud data. (Like all app data, on-device items may be included in your device's own iCloud backup, which we cannot access.)
CachesA local copy of your wallet and of the public card-rules database, so the app and widgets work offline.

In your private iCloud database (we cannot read this)

If you are signed in to iCloud, your wallet syncs across your devices through the private CloudKit database attached to your Apple ID: your first name if you chose to enter one (used only for the in-app greeting), the cards you hold and their settings, your redemption goal, your monthly spend estimates, welcome-bonus trackers, point-value overrides, gas-price setting, card designs, and appearance preference.

This data is stored under your Apple ID on Apple's infrastructure — we have no server that can access it and no way to see it. Apple's handling of it is covered by Apple's privacy policy, and it is end-to-end encrypted if you enable Advanced Data Protection for your iCloud account. If you are not signed in to iCloud, the app simply runs locally and nothing syncs.

Merchant reports — the one thing we can see, and it's public

When you tap a report chip ("did this card earn 5× here?"), the app submits a small record to a shared public database. It contains: the merchant (or, for unlisted places, the place's name and its map coordinates rounded to roughly a 1 km area), which card, the earn rate you observed (picked from fixed options — there is no free-text field), a category, and a timestamp.

Be aware, before you tap:

Submitting reports is always an explicit action, requires being signed in to iCloud, and is entirely optional — the app is fully functional if you never submit one. Reports are stored in Apple's CloudKit service, on Apple servers that may be located outside your province and outside Canada, where they are subject to the laws of those jurisdictions.

Location

What we don't do

No third-party analytics, advertising, or tracking SDKs of any kind. No ads. No selling, renting, or sharing of personal information with data brokers or anyone else. No bank or card account linking — Yoho never sees your card numbers, statements, or transactions. We do not track you across other companies' apps or websites. Apple may share aggregated, anonymized usage statistics with us (Apple App Analytics) only if you have opted in to sharing analytics with developers in iOS Settings.

Siri and widgets

The "which card" Siri shortcut ranks entirely on your device from cached data and sends nothing to us. Your spoken interaction with Siri itself is processed by Apple under Apple's terms. Widgets rank from the on-device cache shared between the app and its extension; when they refresh, they take the same one-shot location reading and Apple Maps nearby lookup described under Location — and, like the app, send nothing to us.

Retention and deletion

Security

Data synced through iCloud and submitted merchant reports are encrypted in transit and at rest by Apple's CloudKit infrastructure. The shared card-rules database can only be modified with our signed server credentials, and user reports cannot change anyone's recommendations without human review first.

Your rights

Yoho is Canadian and handles personal information in accordance with PIPEDA and, for Quebec residents, the Act respecting the protection of personal information in the private sector (Law 25). You may request access to, correction of, or deletion of personal information we hold (in practice, that is only your public reports — everything else is in your possession or your private iCloud), and you may complain to the Office of the Privacy Commissioner of Canada or your provincial regulator. Contact our privacy officer at hello@getyoho.ca.

Children

Yoho is a credit-card tool and is not directed at children. We do not knowingly collect personal information from anyone under the age of majority in their province.

Changes

If we change this policy — for example, if optional affiliate links or subscriptions are added in the future — we will update this page and the effective date, and material changes will be called out in the app.