Privacy Policy

Account information. When you create or access an account, we may collect your email address and authentication information. Expensei supports email/password login and sign-in through Apple, Google, and Facebook.

Financial and budgeting information you enter. Expensei is a budgeting and expense-tracking app. Depending on how you use the app, you may enter expenses, merchants, amounts, dates, notes, payment methods, categories, recurring bills, income sources, budget settings, profiles, savings goals, and related planning information.

App preferences and local data. Expensei stores some information on your device to support offline use, faster startup, and app preferences. This can include language, currency, theme settings, onboarding progress, cached budget data, and queued offline expense entries.

Usage and technical information. Expensei may collect limited product analytics and technical information, such as app launches, selected screen views, sign-in/sign-out events, platform, app version/build context, and similar usage information. This helps us understand and improve the app.

If your device’s region is set to a country in the European Economic Area, the United Kingdom, or Switzerland, product analytics are off by default when you first install Expensei. You can turn them on in Settings → Help improve Expensei if you want to help us improve the app. Outside those regions, product analytics are on by default and you can turn them off at any time from the same setting.

Website analytics. Expensei.app is intended to use basic Vercel Analytics. We do not currently intend to use advertising cookies or ad-tech tracking on Expensei.app.

Support communications. If you contact us for help, we may receive your email address, message contents, app version, platform, and any details you choose to include.

Expensei does not currently offer live receipt OCR. We do not describe receipt scanning or OCR as a live production feature in this policy.

We use information to provide, maintain, secure, and improve Expensei, including to:

• create and manage accounts;
• sync and store budgeting data;
• support offline-first app behavior;
• provide expense, recurring bill, budgeting, and savings-goal features;
• manage premium access, trials, or subscriptions where offered;
• provide customer support;
• understand app usage and improve product reliability;
• prevent abuse, troubleshoot problems, and comply with legal obligations.

Expensei is a budgeting and organization tool. It does not provide financial, investment, tax, or legal advice.

We do not read individual users’ expense entries, notes, or budgets for marketing, product research, or any purpose other than providing the service to that user. We do not sell your data. We do not share your data with advertisers, data brokers, or other third parties for their own purposes. We do not use your financial data to train AI models.

Engineers may access account data only when necessary to investigate a specific support request you’ve sent us, to investigate suspected abuse, or to fix a confirmed bug — and only the minimum needed for that purpose. Aggregated, fully de-identified product analytics (for example, “how many users opened the Insights tab this week”) may be used to improve the app. Our analytics provider PostHog never receives expense amounts, category names, merchant or description text, emails, or any other personally identifying field — only an anonymous device identifier and the names of which screens you opened. You can turn product analytics off at any time in Settings → Help improve Expensei.

Expensei uses both remote backend storage and local device storage.

Remote account and app data are stored using Supabase. Some app data is also stored locally on your device using mobile storage technologies so the app can load quickly and work better offline. Authentication session data is stored locally using encrypted storage patterns.

No storage or transmission method is completely secure. We use reasonable technical measures, but we cannot guarantee absolute security.

We use the following service providers to run Expensei. Each one only receives what it needs to perform its role.

• Supabase (operated by Supabase Inc., infrastructure in Tokyo, Japan) — hosts your account, authentication session, and your saved expenses, budgets, recurring entries, and savings goals.
• PostHog (operated by PostHog Inc.) — receives anonymous product usage events (screen views, sign-in / sign-out, anonymous device identifier) only if you have product analytics enabled. PostHog never receives your expense amounts, category names, merchant text, descriptions, or email.
• RevenueCat (operated by RevenueCat Inc., US) — manages premium subscriptions and tells the app whether your account has access to paid features. RevenueCat receives a subscription identifier and entitlement info; it does not receive your expense or budgeting data.
• Apple and Google — process Sign in with Apple, Google Sign-In, and App Store / Google Play subscriptions according to their own terms.
• Meta / Facebook — processes Facebook Login if you choose to sign in with Facebook. Facebook uses the Limited Login flow on iOS, which does not grant Expensei access to your Facebook profile beyond a sign-in identifier.
• Vercel (US) — hosts Expensei.app and basic website analytics.

These providers process information only as needed to support the services they provide to us.

Expensei’s primary database is hosted in Japan (Tokyo region). If you use Expensei from the European Economic Area, the United Kingdom, or Switzerland, your data is transferred to Japan. Japan is recognised by the European Commission as providing an adequate level of data protection (Commission Implementing Decision (EU) 2019/419, renewed in 2023), so this transfer is permitted under the EU GDPR without additional safeguards. Some of our service providers (PostHog, RevenueCat, Vercel) are located in the United States and process limited data on our behalf under their own standard data protection terms.

Expensei may offer premium features, trials, or subscriptions. Some premium features may be unavailable, free, limited, or in testing during beta or prelaunch periods.

Where subscriptions are offered through Apple App Store or Google Play, billing, cancellation, renewal, and refunds are generally handled by the relevant store under that store’s rules. Expensei may receive limited entitlement information, such as platform, product identifier, transaction identifier, purchase date, and expiry date, so we can manage premium access.

Expensei does not receive your full payment card number from Apple App Store or Google Play.

Expensei includes an in-app account deletion flow. When you delete your Expensei account through the in-app flow or by email, your active account data is removed immediately. Some information remains for a short period and is then deleted automatically:

• Database backups: up to 30 days
• Server and security logs: up to 90 days
• Records we are legally required to keep (for example, transactional records tied to App Store or Google Play purchases): retained for the period required by Japanese tax and accounting law, then deleted

Deleting your Expensei account does not cancel a subscription you bought through the App Store or Google Play. Manage subscriptions in your store account settings.

Expensei offers an in-app data export from Settings → Export Data. The export contains your transactions, recurring bills and income, savings goals and the savings ledger, and your monthly budget plan, as CSV files inside a single ZIP. If you need data we don’t include in that export, or if you can’t access the in-app flow, contact us at privacy@expensei.app.

You can update some information directly in the app. You may also contact us to request access, correction, or deletion of your information.

If you are in the European Economic Area, the United Kingdom, or Switzerland, you have the following rights under the GDPR and equivalent local laws:

• Right of access to your personal data
• Right to correction of inaccurate data
• Right to erasure (“right to be forgotten”)
• Right to restriction of processing
• Right to data portability (you can use the in-app Settings → Export Data flow to receive your data as CSV)
• Right to object to processing based on legitimate interests
• Right to withdraw consent for processing that relies on consent (such as product analytics)
• Right to lodge a complaint with your local data protection supervisory authority

To exercise any of these rights, contact privacy@expensei.app. We will respond within one month, as required by the GDPR.

Privacy requests: privacy@expensei.app

Support requests: support@expensei.app

Expensei is not intended for children under 16. We do not knowingly collect personal information from children under 16. If you are between 13 and 16 and live in a country whose national law sets the GDPR digital consent age above 13, your use of Expensei requires the consent of a parent or guardian. If you believe a child under 16 has provided information to Expensei, contact us at privacy@expensei.app and we will delete the account.

We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date and may provide additional notice in the app or on Expensei.app.