Privacy Policy

1. Information We Collect

We collect only the information needed to provide and improve the SimplyExpense app experience.

Personal Data

When you sign in with Google, we receive your display name and email address. No other identity information is required.

Financial Data

Transactions, budgets, accounts, credit cards, loans, subscriptions, investments, goals, and recurring rules are stored locally on your device. We do not host or replicate this data on our servers. Summaries are only transmitted when you explicitly use AI features or Google Drive backup.

Device and Usage Data

Firebase records anonymous crash, performance, and authentication events tied to a randomly generated Firebase Installation ID. This data is used for reliability and abuse prevention, not for advertising.

2. Third-Party Services

The app communicates with the following services only when you take an action that requires them:

Google LLC

• Google Sign-In & OAuth: Optional account connection for Pro unlocking and Drive backup. Google returns your name and email.
• Google Drive (drive.appdata scope): Backup and restore of your app state into an app-scoped folder. We cannot read your general Drive files.
• Firebase (Authentication, Cloud Functions, Firestore, App Check): Identity management for Managed AI, serverless proxy for AI requests, and admin configuration storage.
• Google Generative Language API (Gemini): Used when Gemini is selected as the AI provider.
• Policy: Google Privacy Policy

AI Providers

When you use AI chat or Pro insights, selected financial context is sent to an AI provider to process your request. The specific provider depends on what is configured:

• OpenAI — when OpenAI is selected. Privacy
• Anthropic (Claude) — when Claude is selected. Privacy
• OpenRouter — when OpenRouter is selected. Privacy
• Google Gemini — when Gemini is selected. See Google policy above.

• Managed Tier: Requests are routed through Firebase Cloud Functions and require a Google-connected signed-in session. The provider key is held in Firebase Secret Manager, never in the client.
• Custom API Keys: If you bring your own key, it is stored locally on the device in secure storage and sent directly to the provider; it never touches our servers.
• Transport: All requests travel over HTTPS.

RevenueCat (when billing is enabled)

When in-app subscriptions are turned on, purchase events and entitlement state are managed through RevenueCat and the platform billing provider (Google Play Billing or Apple StoreKit). RevenueCat receives an anonymized app-user ID linked to your Firebase UID. No finance data is shared. RevenueCat Privacy.

3. Data Retention

On-device data is retained until you delete it. Firebase auth records and server logs are retained up to 90 days. Google Drive backup files remain until you remove them from your Google account.

4. Data Deletion

You can delete your account and associated app data at any time.

• In-App: Open User Profile and tap Delete Account & Data.
• Manual Request: Contact simplyexpense@gmail.com.

5. Children's Privacy

SimplyExpense is not directed at children under 13. We do not knowingly collect personal data from children.

6. Contact

• Email: simplyexpense@gmail.com
• WhatsApp: +91 93480 65659