Effective Date: April 3, 2026
SubExpense ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use the SubExpense mobile application (the "App").
1. Information We Collect
We may collect the following types of information:
- Account Information: When you sign in using Google Sign-In, we receive your name, email address, and profile picture from your Google account.
- Subscription & Expense Data: Information you enter about your subscriptions and expenses, including service names, costs, billing cycles, renewal dates, and payment card details.
- Receipt Data: Photos and images of receipts you attach to expenses for reimbursement or record-keeping purposes.
- Bank Account & Transaction Data (optional): If you choose to link a bank account using Plaid, we receive transaction metadata — merchant name, amount, date, currency, and category — for the accounts you authorize. We also receive non-credential account metadata such as the institution name, account name, account type, and the last four digits of the account number. We never receive your bank login credentials. You can disconnect any linked bank at any time, which immediately revokes our access and deletes the stored data.
- Organization Data: If you create or join a company profile, we collect the company name, company logo, member roles, invite codes, budget settings, card assignments, and reimbursement records associated with the organization.
- Usage Data: Anonymous analytics about how you interact with the App, such as features used and session duration.
- Device Information: Device type, operating system version, and unique device identifiers for analytics purposes.
2. How We Use Your Data
We use the information we collect to:
- Provide, maintain, and improve the App's functionality
- Sync your subscription and expense data across devices via your account
- Send you notifications about upcoming subscription renewals
- Generate spending insights and personalized recommendations
- Store and display receipt images attached to your expenses
- Facilitate organization features including team management, reimbursement workflows, budget tracking, and card assignment
- Analyze usage trends to improve user experience
3. Third-Party Services
SubExpense integrates with the following third-party services:
- Supabase: We use Supabase as our backend service for authentication, data storage, and receipt image storage. Your subscription data, organization data, and receipt images are stored securely on Supabase servers. Please review Supabase's Privacy Policy.
- Google Sign-In: We use Google Sign-In for authentication. This service provides us with your basic profile information. Please review Google's Privacy Policy.
- Plaid: If you choose to connect a bank account, we use Plaid Inc. to securely retrieve your transaction data. We never see, store, or transmit your bank credentials — Plaid authenticates directly with your financial institution and only shares transaction metadata (merchant, amount, date, category) with us. We use this data solely to detect recurring subscriptions and display your spending in the App. Plaid is SOC 2 Type 2 and ISO 27001 certified. You may disconnect any linked bank at any time in the App, which immediately revokes Plaid's access. Please review Plaid's End User Privacy Policy.
- Anthropic (Claude AI): When you use AI features such as auto-categorization or spending insights, we send a summary of your transaction data (merchant names, amounts, categories) to Anthropic's Claude API for classification. Per Anthropic's API Terms, this data is not used to train their models and is retained only briefly for abuse monitoring. Please review Anthropic's Privacy Policy.
4. Data Storage and Security
Your data is stored securely using Supabase's cloud infrastructure. Receipt images are stored in secure cloud storage buckets with access controls. We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of electronic storage is 100% secure, and we cannot guarantee absolute security.
5. Organization & Team Data
When you create or join a company profile, certain data is shared within your organization based on member roles:
- Owners and admins can view all company expenses, receipts, and reimbursement requests
- Admins can set per-employee budgets and assign company cards to members
- Members can submit expenses and reimbursement requests visible to admins
- Viewers have read-only access to company expense summaries
Your personal expenses remain private and are never shared with your organization.
6. Data Sharing
We do not sell your personal information to third parties. SubExpense does not display advertisements. We may share your information only in the following circumstances:
- With third-party service providers (as described above) to operate the App
- Within your organization, according to role-based permissions you have accepted
- When required by law or to respond to legal processes
- To protect the rights, property, or safety of SubExpense, our users, or the public
7. Data Retention
We retain your data for as long as your account is active or as needed to provide you with the App's services. Receipt images are retained as long as the associated expense exists. If you delete your account, we will delete your personal data, including all receipt images, within 30 days, except where we are required to retain it by law.
8. Children's Privacy
SubExpense is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal data from a child under 13, we will take steps to delete that information promptly.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy within the App and updating the "Effective Date" at the top. Your continued use of the App after any changes constitutes your acceptance of the updated Privacy Policy.
10. Contact Us
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at: