Privacy Policy

Last updated:

Back to Home

Your privacy is important to us. This Privacy Policy explains how ExpenseZen ("we", "us", or "our") collects, uses, and protects your information when you use our mobile application ("App") and website.

1. Information We Collect

We collect the following types of information:

  • Account Information: When you create an account, we collect your email address, name, and profile picture (if provided)
  • Receipt Data: Images and text extracted from receipts you scan
  • Usage Data: Information about how you use the App, including scan frequency and feature usage
  • Device Information: Device type, operating system, and app version
  • Payment Information: Subscription and payment details (processed securely by third-party payment providers)
  • Email Communications: If you use our email receipt processing feature, we collect emails forwarded to your ExpenseZen address

2. How We Use Your Information

We use your information to:

  • Provide and improve the App's functionality
  • Process your subscription payments
  • Analyze usage patterns to enhance user experience
  • Provide customer support
  • Send important updates and notifications
  • Ensure the security and integrity of our services
  • Process and extract data from emailed receipts

3. Information Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties, except in the following circumstances:

  • With your explicit consent
  • To comply with legal obligations
  • To protect our rights and safety
  • With service providers who assist in operating the App (under strict confidentiality agreements)
  • In connection with a business transfer or merger

4. Data Security

We implement appropriate security measures to protect your information:

  • Encryption of data in transit and at rest
  • Secure authentication and authorization
  • Regular security assessments and updates
  • Access controls and monitoring
  • Compliance with industry security standards
  • Secure cloud storage through Google Cloud Platform and Firebase

5. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

  • Account information: Until you delete your account
  • Receipt data: Until you delete the receipt or your account
  • Usage data: For analytics and service improvement
  • Payment information: As required by law and payment processors

Important: We do not have automatic data retention policies. You must manually delete your data if you wish to remove it. You can delete individual receipts, categories, or your entire account through the app settings. All data deletion is permanent and cannot be undone.

6. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: You can access all your personal information through the Export Data feature in the Privacy & Security screen within the app. This allows you to download a complete copy of your data in multiple formats (CSV, JSON, TXT).
  • Correction: Update or correct inaccurate information directly in the app by editing receipts, categories, or your profile
  • Deletion: Delete individual receipts, categories, or your entire account through the app settings
  • Portability: Export your data in a portable format using the Export Data feature in the Privacy & Security screen
  • Opt-out: Unsubscribe from marketing communications through app settings
  • Account deletion: Delete your account and all associated data permanently through the Account settings

7. Third-Party Services

Our App may integrate with third-party services:

  • Payment processors (Google Play Billing, Stripe)
  • Cloud storage providers (Google Cloud Platform, Firebase)
  • Analytics services (Google Analytics, Firebase Analytics)
  • Authentication services (Google, Facebook, Apple)
  • AI and machine learning services for receipt processing
These services have their own privacy policies, and we encourage you to review them.

8. Children's Privacy

Our App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure that such transfers comply with applicable data protection laws and implement appropriate safeguards to protect your information.

Data Transfer Safeguards:

  • All data transfers use encrypted connections (TLS/SSL) to ensure secure transmission
  • Data is stored in secure cloud infrastructure (Google Cloud Platform/Firebase) with industry-standard security measures
  • We comply with GDPR requirements for international data transfers, including Standard Contractual Clauses (SCCs) where applicable
  • All third-party service providers are contractually bound to maintain appropriate data protection standards
  • Regular security assessments and audits are conducted to ensure ongoing compliance
  • Access controls and monitoring systems are in place to protect your data from unauthorized access

If you are located in the European Economic Area (EEA), your data may be transferred to and processed in the United States and other countries. These transfers are protected by appropriate safeguards as required by GDPR, including Standard Contractual Clauses approved by the European Commission.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy in the App and on our website, and updating the "Last updated" date. Your continued use of the App after such changes constitutes acceptance of the updated Privacy Policy.

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected
  • Right to know whether personal information is sold or disclosed
  • Right to say no to the sale of personal information
  • Right to access your personal information
  • Right to equal service and price
  • Right to request deletion of personal information

12. GDPR Compliance (European Users)

If you are in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to be informed about data processing
  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision making

13. Cookies and Tracking Technologies

Website: Our website may use cookies and similar tracking technologies to improve your experience:

  • Essential Cookies: Required for basic website functionality
  • Analytics Cookies: Help us understand how users interact with our website
  • Preference Cookies: Remember your settings and preferences
You can control cookies through your browser settings.

Mobile App: Our mobile app does not use cookies. Instead, we use:
  • Firebase Analytics: Tracks app usage patterns, feature usage, and performance metrics to help us improve the app experience
  • Device Identifiers: Used for authentication, cloud sync, and to provide personalized features
  • Local Storage: Stores your preferences and app settings on your device
Analytics data is collected anonymously and aggregated. You can opt-out of analytics tracking through the Privacy & Security settings in the app.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: support@mail.expensezenapp.com

We will respond to your inquiry within 30 days.