Privacy Policy
Nomi is built so your financial life stays with you. Here is exactly what that means — in plain language.
1Who we are
Nomi is provided by Goscore AS ("we", "us"), the data controller for the processing described here. For questions, access requests, or complaints about how we handle personal data, contact hei@goscore.me.
2Our core principle: on-device by default
Nomi is built so your financial life stays with you. The figures you enter — income, household, municipality, loans, simulation scenarios — and your chat messages are stored locally on your device and used to do the math and, when you use the on-device model, to generate AI answers on the device itself.
Your financial profile never leaves the device — the only server-side data is an anonymous delivery token you can revoke. We have no server-side copy of your finances, and we cannot see them.
3What we process, and why
| Data | Where it lives | Purpose | Legal basis (GDPR Art. 6) |
|---|---|---|---|
| Financial profile, loans, simulations, chat | On your device only | Run the app's calculations and on-device AI | Performance of our agreement with you (6(1)(b)); processed locally, not by us |
| Push token + platform, app version, language, consent flag, timestamps | Our EU server (Cloudflare, EU jurisdiction) | Deliver notifications you asked for | Your consent (6(1)(a)) for engagement messages; legitimate interest (6(1)(f)) for operational ones such as "model download finished" |
| Microphone audio (dictation) | On device / your platform's speech recognizer | Turn speech into text when you dictate | Consent via the OS microphone permission (6(1)(a)) |
| Remote-AI request (only if you enable it) | Sent to the provider you configure | Generate an answer using a third-party model | Your consent / your request (6(1)(a)–(b)) |
We do not collect analytics identifiers, advertising IDs, or device fingerprints, and we do not build user profiles for marketing.
4Notifications and the push token
If you opt in to notifications (during onboarding or in Settings), your device registers a push token with our service. A push token is a pseudonymous delivery handle issued by Apple/Google for your app install — it lets a message reach your device, and on its own it does not reveal your identity or any of your finances.
What we store with it: the token, your platform (iOS/Android), app version, language, whether you consented to engagement messages, and timestamps. That's all.
Where: in a database pinned to the EU jurisdiction (Cloudflare D1). We do not store it alongside any financial data — because we don't have your financial data.
What we send:
- Operational messages, e.g. that your on-device AI model finished downloading (or failed). These rely on our legitimate interest in the service working.
- Engagement messages, e.g. an occasional note to check the app after an update, or a getting-started tip. These are sent only with your consent and only while notifications are on.
How to stop and erase it: turn notifications off in Settings (or revoke the OS permission). Turning them off tells our service to delete your token. You can also email hei@goscore.me to have it erased.
5Who else is involved (processors)
To deliver a notification, the message necessarily passes through:
- Cloudflare — stores the token and runs the delivery service, in the EU.
- Expo — relays the message to Apple/Google. Expo does not permanently store the token.
- Apple Push Notification service (APNs) and Google Firebase Cloud Messaging (FCM) — the operating-system transport that actually delivers the message to your device. This step is unavoidable for any push notification on iOS/Android.
Each acts as a processor or independent transport under appropriate data-processing terms. Some of these providers are based outside the EU/EEA; where that involves an international transfer, it is covered by the European Commission's Standard Contractual Clauses or an adequacy decision.
6Optional remote AI (only if you turn it on)
By default Nomi runs the AI on your device. If you switch on "Remote API" and enter a provider and key, then for each question your message and a snapshot of your finances (profile, loans, scenario, results, and recent chat) are sent over an encrypted connection to the endpoint you chose. We do not receive or store that data. The app shows you exactly what is included before it is sent. The third-party provider's own privacy policy governs what they do with it.
7Retention
- On-device data: stays until you delete it or uninstall the app.
- Push token: kept while notifications are enabled. Deleted when you turn them off, when the device becomes permanently unreachable (we prune dead tokens automatically), or on request.
8Your rights
Under the GDPR you have the right to access, rectification, erasure, restriction, objection, and data portability, and the right to withdraw consent at any time without affecting prior processing.
In practice, most of your data is on your device and fully under your control. For the push token, withdraw consent by turning notifications off, or contact hei@goscore.me to exercise any right. We respond within the GDPR's one-month window.
You also have the right to lodge a complaint with your supervisory authority. In Norway this is Datatilsynet (the Norwegian Data Protection Authority, datatilsynet.no).
9Children
Nomi is intended for adults managing their finances and is not directed at children under 16. We do not knowingly process children's data.
10Security
Data in transit is encrypted (HTTPS/TLS). The notification service stores only the minimal token data described above, in the EU, behind authentication. The financial data that matters most simply isn't on our servers to be breached.
11Changes to this policy
We may update this policy as the app evolves. Material changes will be surfaced in the app. The "Last updated" date at the top always reflects the current version.
12Contact
Questions, requests, or concerns about data processing: