Privacy Policy

Last updated: January 14, 2025

1. Introduction

Welcome to Expense Split Pro ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our application and services.

2. Information We Collect

2.1 Personal Information

  • Account information: name, email address, password (encrypted)
  • Profile information: profile picture, display name
  • Payment information: processed securely through third-party payment processors (we do not store full credit card details)

2.2 Expense Data

  • Expense details: amounts, descriptions, dates, categories
  • Group information: group names, member lists, roles
  • Receipt data: uploaded receipt images (if provided)
  • Transaction history: payment records and settlements

2.3 Technical Information

  • Device information: device type, operating system, browser type
  • Usage data: features used, pages visited, time spent
  • IP address and location data (approximate)
  • Cookies and similar tracking technologies

3. How We Use Your Information

  • To provide, maintain, and improve our services
  • To process transactions and manage subscriptions
  • To send you updates, security alerts, and support messages
  • To respond to your inquiries and provide customer support
  • To detect, prevent, and address technical issues and fraud
  • To analyze usage patterns and improve user experience
  • To comply with legal obligations and enforce our terms

4. Data Storage and Security

We implement industry-standard security measures to protect your data:

  • Encryption: All data is encrypted in transit (TLS/SSL) and at rest
  • Authentication: Secure authentication via Supabase with industry-standard protocols
  • Access Controls: Strict role-based access controls and permissions
  • Regular Audits: Security audits and vulnerability assessments
  • Data Retention: Your data is stored permanently but becomes read-only based on your plan limits

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

  • With group members: Expense data is shared with members of groups you join
  • Service providers: Third-party services that help us operate (e.g., hosting, analytics, payment processing)
  • Legal requirements: When required by law, court order, or government request
  • Business transfers: In connection with a merger, acquisition, or sale of assets
  • With your consent: When you explicitly authorize us to share information

6. Your Privacy Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your account and data
  • Export: Request a machine-readable copy of your data
  • Opt-out: Opt out of marketing communications
  • Object: Object to certain processing of your data

To exercise these rights, contact us at support@esp.synapticml.com

7. GDPR Compliance (EU Users)

If you are in the European Economic Area (EEA), we process your data under the following legal bases:

  • Contract: Processing necessary to provide our services
  • Consent: You have given explicit consent
  • Legitimate interests: For fraud prevention and service improvement
  • Legal obligation: To comply with applicable laws

8. Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain your session and keep you logged in
  • Remember your preferences and settings
  • Analyze site usage and improve performance
  • Provide personalized content and features

You can control cookies through your browser settings.

9. Children's Privacy

Our services are not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. Significant changes will be communicated via email.

12. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us:

Email: support@esp.synapticml.com

Data Protection Officer: support@esp.synapticml.com