Privacy Policy

ReceiptLens ("we," "us," or "our") operates the ReceiptLens mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App. Please read this policy carefully. By using ReceiptLens, you agree to the practices described here.

We are committed to protecting your privacy. If you have questions or concerns about this policy, please contact us at support@receiptlens.store.

📋

1. Information We Collect

Account Information

Email address — used to create and manage your account
Password — stored as a one-way cryptographic hash (we never see your plain-text password)

Receipt & Spending Data

Receipt images you photograph or upload
AI-extracted data: merchant name, transaction amount, currency, date, and category
Categories and tags you assign to receipts
Expense totals and monthly spending summaries

Device & Usage Information

Device type and operating system version (for crash reporting)
App feature usage patterns (anonymised, used to improve the product)
Camera and photo library access — only when you actively choose to scan a receipt

We do not collect your location, contacts, microphone, or any data beyond what is necessary for the App to function.

⚙️

2. How We Use Your Information

We use your data solely to provide and improve the ReceiptLens service. Specifically:

Authenticate you and maintain your account session
Process receipt images through our AI to extract spending data
Store and organise your receipts so you can access them across devices
Generate monthly expense reports and PDF exports
Calculate spending totals by category and time period
Send important service announcements (not marketing emails)
Diagnose bugs and improve App stability

We do not use your receipt data to train AI models or for any purpose other than providing you the service you signed up for.

🔐

3. Storage & Security

Your data is stored securely using industry-standard infrastructure:

Database: Supabase (PostgreSQL), hosted on AWS with row-level security — your data is isolated from other users at the database level
Receipt images: Stored in encrypted Supabase Storage with access controlled by your user ID
Transmission: All data is transmitted over HTTPS/TLS 1.2+ encryption
AI processing: Receipt images are sent to Anthropic's API server-side for analysis and are not stored by Anthropic beyond the immediate API call
Local storage: Your session token and preferences are stored securely on-device using React Native AsyncStorage

While no method of transmission or storage is 100% secure, we implement commercially reasonable safeguards to protect your information. In the event of a data breach that affects your personal information, we will notify you within 72 hours.

🚫

4. Data Sharing & Third Parties

We do not sell, rent, or trade your personal data. Ever. Your receipts and spending patterns are your business, not ours to monetise.

We share data only with the following service providers who help us operate the App, and only to the extent necessary:

Supabase — database, authentication, and file storage
Anthropic — AI-powered receipt data extraction (image processing only, not stored)
RevenueCat — subscription management (processes subscription status, not your receipt data)

All third-party providers are bound by data processing agreements and are prohibited from using your data for any purpose other than providing their services to us. We may disclose data if required by law, but will notify you whenever legally permissible.

We will never share your receipt data, spending history, or personal information with advertisers, data brokers, or marketing companies.

⚖️

5. Your Rights & Data Control

You have full control over your data. At any time, you may:

Access your data: All your receipts and account information are accessible within the App
Export your data: Use the PDF export feature to download your expense reports
Delete individual receipts: Swipe left on any receipt in the App to delete it
Request full account deletion: Email us at support@receiptlens.store to permanently delete your account and all associated data. We will complete deletion within 30 days and confirm by email.
Withdraw consent: You can revoke camera or photo library permissions at any time via your device's Settings app
Data portability: Request a machine-readable copy of all your data by emailing support@receiptlens.store

If you are a resident of the European Economic Area (EEA), California, or other jurisdictions with specific privacy rights, you have additional rights including the right to lodge a complaint with your local data protection authority.

When you delete your account, all personal data, receipt images, and spending history are permanently and irreversibly deleted from our servers within 30 days.

👶

6. Children's Privacy

ReceiptLens is not directed to children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at support@receiptlens.store and we will promptly delete it.

📝

7. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Effective" date at the top of this page. For material changes, we will notify you via email or a prominent in-app notice at least 14 days before the change takes effect. Your continued use of the App after the effective date constitutes acceptance of the updated policy.