Privacy Policy

Spendly stores the data you choose to enter, including: profile, wallets, categories, transactions, receipts and attachments, recurring payments, budgets and goals, reports, notification preferences, and onboarding selections.

Authentication uses Apple Sign-In and Convex Auth. We receive a privacy-relay email and a stable user identifier from Apple, not your password. Subscription status is processed through RevenueCat using receipts from the Apple App Store; we do not receive your payment card details.

We also process limited diagnostic information — crash logs, anonymous app version, and device model — to keep the App stable. We do not collect your contacts, browsing history, or advertising identifiers, and we do not run third-party ad tracking.

Your data powers core features: budgeting, dashboards, charts and insights, receipt OCR, recurring reminders, exports, optional AI features, and account sync across your devices. We do not sell your data.

Spendly uses OpenAI as a third-party AI service provider for optional AI features. The first time you interact with a direct AI feature in the App, Spendly shows an AI data disclosure before the AI request proceeds.

Depending on the feature, Spendly may send your AI question, recent expense summaries, category totals, amounts, dates, currencies, merchant names, receipt text, or receipt images to OpenAI for processing. Spendly does not send your Apple ID, contacts, precise location, or device identifiers to OpenAI for these AI features.

Requests are made server-side; the OpenAI API key never leaves our backend. You can review the AI disclosure and disable AI features from More > AI & Privacy in the App.

Some data is cached on your device for offline use, including a small sync queue (entries you log while offline) and your most recent transactions. Sensitive identifiers and tokens are stored in the iOS Keychain. If you uninstall the App, the on-device cache is removed by iOS.

We share data only with the service providers that operate Spendly:

• Apple — Sign-In with Apple, App Store purchases, push notifications.
• Convex — primary database, real-time sync, and file storage for receipts.
• RevenueCat — subscription entitlement management.
• OpenAI — server-side language model inference for optional AI features.

Each provider is bound by its own terms and privacy policies and processes data on our behalf. We may also disclose data if required by law, or to protect the rights, safety, or property of Spendly or its users.

We retain your account data for as long as your account is active. When you delete your account, your Spendly server data and auth records are removed within 30 days, except where we are required to retain limited records for legal, tax, or fraud-prevention purposes. Backups are rotated on a rolling schedule.

You can:

• Edit or delete any transaction, receipt, or wallet at any time;
• Turn off notifications from iOS Settings > Notifications > Spendly;
• Revoke Sign in with Apple from iOS Settings > Apple ID > Sign in with Apple;
• Delete your account from Account settings inside the App; and
• Export your data at any time as PDF, CSV, or Excel.

Spendly is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us so we can remove it.

Spendly is operated from servers that may be located outside your country. By using the App, you understand that your data may be transferred to and processed in jurisdictions with different data-protection laws than your own.

We use TLS in transit, encryption at rest on managed databases, and the iOS Keychain for sensitive on-device tokens. No system is perfectly secure, but we work to limit risk and respond promptly to any incident.

We may update this Privacy Policy from time to time. Material changes will be announced in-App or by email. The “Last updated” date at the top of this page reflects the most recent revision.

For privacy questions, data access, or deletion requests, email support@spendly.app. See also our Terms of Service.