Back to Home

Privacy Policy

Last updated: January 09, 2026

1. Introduction

Expense Tracker ("we", "our", "the Service") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our service.

2. Information We Collect

Account Information

  • Email address: Used for account login and communication
  • Password: Securely hashed and stored
  • Preferences: Your category mappings and theme settings

Transaction Data

  • Transactions: Amount, date, merchant, category, and notes you enter or import
  • Account associations: Which bank or e-wallet each transaction belongs to
  • Export history: Records of when transactions were exported

Imported Data

  • CSV files: Transaction data you upload is processed and stored

3. How We Use Your Information

Your information is used to:

  • Authenticate your identity and provide access to your account
  • Store and manage your transaction data
  • Generate statistics and insights about your spending
  • Export transactions in CSV format for use with other apps
  • Send important notifications about your account or the Service

4. Third-Party Services

We integrate with the following third-party services:

Google (Gmail API)

  • We use Google OAuth 2.0 to authenticate and access your Gmail
  • Only emails matching your configured patterns are accessed
  • Your Gmail credentials are never stored; we only store encrypted OAuth tokens
  • You can revoke access at any time through your Google Account settings

See Google's Privacy Policy

Anthropic (Claude AI)

  • Email content may be sent to Anthropic's Claude API for transaction parsing
  • Only the email body text is sent, not your account credentials
  • Anthropic processes data according to their privacy policy and does not use API data for training

See Anthropic's Privacy Policy

Wallet by Budget Bakers

  • Transactions are exported in CSV format that you can import into Wallet
  • We do not directly integrate with or send data to BudgetBakers
  • You are responsible for importing the CSV file into your preferred application

See Budget Bakers' Privacy Policy

5. Data Storage and Security

  • Encryption: Sensitive data is encrypted at rest
  • Password hashing: Passwords are hashed using bcrypt via Devise
  • HTTPS: All data in transit is encrypted using TLS
  • Access control: Your data is only accessible to you through your authenticated account

6. Data Retention

  • Account data is retained while your account is active
  • Transactions are stored until you delete them or your account
  • Upon account deletion, all your data is permanently removed

7. Your Rights

You have the right to:

  • Access: View all data associated with your account
  • Correction: Update or correct your account information
  • Deletion: Delete your account and all associated data
  • Export: Download a copy of your transaction data as CSV

8. Cookies and Local Storage

  • Session cookies: Used to maintain your login session
  • Theme preference: Stored locally to remember your light/dark mode choice
  • We do not use third-party tracking cookies or analytics

9. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification. Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or how your data is handled, please contact us through the application.