Privacy Policy

Introduction

ExpenseEasy AI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we handle your information when you use our mobile application. Our app is designed with privacy-first principles, storing your financial data locally on your device.

Information We Do NOT Collect

We do not collect or store:

• Receipt images or photos
• Voice audio recordings
• Transaction data or financial information
• Account information or personal details
• App preferences and settings
• Any personally identifiable information

All your financial data remains stored locally on your device and is never transmitted to our servers.

Information We Collect

Anonymous Analytics

We collect anonymized usage analytics through Firebase Analytics to help us improve the app. This includes:

• App usage patterns (anonymized)
• Device information (model, operating system)
• Crash reports and performance data
• Feature usage statistics (anonymized)

This data is completely anonymous and cannot be linked back to you or your financial information.

AI Processing

Receipt Scanning

When you scan receipts or documents, the image data is sent to OpenAI's API for text extraction and categorization. This processing happens in real-time and:

• Images are not used by OpenAI to train or improve their models
• OpenAI may retain image data for up to 30 days for abuse monitoring, after which it is deleted
• Only the extracted text data is returned to your device
• No personal information is included in API requests
• All communication is encrypted and secure

Voice Input

When you use voice input to record a transaction, your audio is sent to OpenAI's Whisper API for speech-to-text transcription. The transcribed text is then processed by OpenAI's API to extract the transaction amount, merchant, and category. This processing happens in real-time and:

• Audio recordings are not stored by us and are not used by OpenAI to train or improve their models
• OpenAI may retain audio data for up to 30 days for abuse monitoring, after which it is deleted
• Only the extracted transaction data is returned to your device
• Voice input works in nearly any language
• No personal information is included in API requests
• All communication is encrypted and secure

Please refer to OpenAI's privacy policy for more information about their data handling practices.

How We Use Information

The anonymous analytics data we collect is used solely to:

• Improve app functionality and user experience
• Identify and fix bugs or performance issues
• Understand which features are most useful
• Make informed decisions about app development

Data Storage and Security

Local Storage: All your financial data, including receipts, transactions, and insights, is stored locally on your device. We have no access to this information.

Security: The app uses industry-standard encryption for all API communications with OpenAI. Your device's built-in security features protect your locally stored data.

Third-Party Services

We use the following third-party services:

• OpenAI API: For receipt text extraction, categorization, and voice transaction processing
• OpenAI Whisper API: For speech-to-text transcription of voice input
• Firebase Analytics: For anonymous usage analytics

These services have their own privacy policies that govern their data handling practices.

Your Control

Since all your financial data is stored locally on your device:

• You have complete control over your data
• Deleting the app removes all your data
• No data recovery is possible once the app is deleted
• We cannot access or retrieve your data

Your Rights Under GDPR (EU/EEA Residents)

If you are located in the European Union or European Economic Area, you have certain rights under the General Data Protection Regulation (GDPR). Because ExpenseEasy stores your financial data locally on your device, you already have direct control over your personal data. Below is how each right applies:

• Right of Access (Article 15): Your data is stored locally on your device. You can access all of it directly within the app at any time.
• Right to Rectification (Article 16): You can edit or correct any transaction, category, or financial record directly within the app.
• Right to Erasure (Article 17): You can delete individual records within the app or remove all data by uninstalling the app. We do not retain copies of your data.
• Right to Restrict Processing (Article 18): Since data is processed locally, you control all processing. You may stop using specific features (such as receipt scanning or voice input) at any time.
• Right to Data Portability (Article 20): Your data is stored on your device and you may export it as permitted by the app's export functionality.
• Right to Object (Article 21): You may opt out of anonymous analytics collection through your device settings. No other processing requires objection as all financial data remains on your device.

For any GDPR-related inquiries, please contact us at support@expenseeasy.app.

Your Rights Under CCPA/CPRA (California Residents)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). Because ExpenseEasy is designed with a privacy-first architecture, most of these rights are automatically fulfilled:

• Right to Know: You have the right to know what personal information is collected, used, shared, or sold. We collect only anonymous analytics data through Firebase Analytics. We do not collect personal financial information — it is stored locally on your device.
• Right to Delete: You can delete all your data at any time by removing records within the app or by uninstalling the app entirely.
• Right to Opt-Out: You may opt out of anonymous analytics collection through your device settings.
• Right to Correct: You can correct any inaccurate personal information directly within the app.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. You will receive equal service and pricing regardless of your privacy choices.

Do Not Sell or Share My Personal Information

ExpenseEasy does not sell, share, or trade your personal information to any third parties for monetary or other valuable consideration. We have never sold personal information and have no plans to do so. Because your financial data is stored locally on your device, we do not have access to it in the first place.

Children's Privacy

ExpenseEasy is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13 in compliance with the Children's Online Privacy Protection Act (COPPA). If you are a parent or guardian and believe that your child has provided us with personal information, please contact us at support@expenseeasy.app and we will take steps to address the issue.

Cookie Policy

Our website uses cookies to enhance your browsing experience and to collect anonymous analytics data. Specifically:

• Firebase Analytics Cookies: We use Firebase Analytics on our website, which sets cookies to collect anonymized usage data such as page views, session duration, and referral sources. This data helps us improve our website and app.
• Essential Cookies: Some cookies are strictly necessary for the website to function properly, such as remembering your cookie consent preferences.

You can manage your cookie preferences at any time through the cookie consent banner displayed on our website. You may also control cookies through your browser settings. Please note that disabling certain cookies may affect your experience on our website.

International Data Transfers

Your financial data is stored locally on your device and is not transferred internationally. However, when you use features that involve AI processing (receipt scanning and voice input), the following applies:

• Receipt images and voice audio sent to OpenAI's API may be processed on servers located in the United States or other countries where OpenAI operates.
• Anonymous analytics data collected by Firebase Analytics may be processed on Google's servers in various locations worldwide.

These transfers are protected by industry-standard security measures including encryption in transit (TLS) and at rest. OpenAI and Google maintain appropriate safeguards for international data transfers, including compliance with applicable data protection frameworks.

Data Retention

We retain data according to the following schedule:

• Local App Data: All your financial data, transactions, and receipts are stored on your device and retained until you delete individual records or uninstall the app. We have no access to or copies of this data.
• OpenAI Processing Data: Receipt images and voice audio sent to OpenAI for processing may be retained by OpenAI for a maximum of 30 days for abuse monitoring purposes, after which it is permanently deleted. This data is not used to train or improve OpenAI's models.
• Analytics Data: Anonymous analytics data collected through Firebase Analytics is aggregated and anonymized. It cannot be linked to any individual user or their financial information.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Email: support@expenseeasy.app