Privacy Policy

1. Information We Collect

We collect information you provide directly to us when you create an account, update your profile, or use our services.

• Identity Data: Name, username, and avatar image.
• Contact Data: Email address.
• Financial Data: Transaction history, wallet balances, subscription details, and budget information. We do NOT store bank credentials or credit card numbers directly. Payments are processed by Polar.sh.
• Content Data: Receipts, invoices, and other files you upload, which are stored securely in Cloudflare R2.
• Technical Data: Internet Protocol (IP) address, browser type and version, time zone setting, operating system, and platform.

2. How We Use Your Information

We use the information we collect to operate, maintain, and improve our services, including:

• Processing your transactions and updating wallet balances in real-time.
• Providing AI-powered receipt scanning features via Google Gemini.
• Managing your registered account and providing customer support.
• Sending you technical notices, updates, security alerts, and support messages.
• Processing your subscription payments via Polar.sh.
• Detecting, preventing, and addressing technical issues or fraudulent activity.

3. Service Providers (Third Parties)

We may employ third-party companies and individuals to facilitate our Service ("Service Providers"), to provide the Service on our behalf, or to assist us in analyzing how our Service is used. These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track the activity on our Service and hold certain information.

• Session Cookies: We use Session Cookies to operate our Service and keep you logged in.
• Preference Cookies: We use Preference Cookies to remember your preferences and various settings (like theme or currency).
• Security Cookies: We use Security Cookies for security purposes.

5. Data Retention

We will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

If you delete your account, your data (including all transactions and uploaded files) is permanently deleted from our active databases, though some information may remain in our backups for a limited period before being overwritten.

6. Your Data Rights

Depending on your location, you may have the following rights regarding your personal data:

• The right to access: You have the right to request copies of your personal data.
• The right to rectification: You have the right to request that we correct any information you believe is inaccurate.
• The right to erasure: You have the right to request that we erase your personal data ("Right to be forgotten").
• The right to restrict processing: You have the right to request that we restrict the processing of your personal data.
• The right to data portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you.

7. Children's Privacy

Our Service does not address anyone under the age of 13 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.