This Privacy Policy describes how Split AI ("we", "us", or "our"), collects, uses, and protects your personal information when you use our expense tracking application.

1. Information We Collect

Personal Information

• Email Address: Used for account creation, login via OTP (One-Time Password), and account-related communications.
• Display Name: Optional name you set for your profile within the app.

Expense Data

• Expense Details: Amounts, categories, dates, merchant names, notes, and descriptions you enter.
• Bill Images: Photos and scans of bills/receipts you upload for AI-powered processing.
• Group Data: Information about shared expense groups and members.
• Settlement Records: Payment records and settlement history between group members.

Device Information

• Device Identifier: A unique device ID for session management and security.
• Device Type & OS: For compatibility and troubleshooting.

2. How We Use Your Information

• To provide and maintain our expense tracking service
• To send OTP verification codes for secure login via email
• To process and extract information from bill images using AI technology (OpenAI)
• To provide AI-powered expense categorization and spending insights
• To enable expense sharing and group management features
• To send push notifications for payment reminders and settlements
• To improve our service and develop new features
• To ensure security and prevent fraud

3. AI and Data Processing

We use OpenAI's API to power the following features:

• Bill Scanning (AI Scan): Receipt images are sent to OpenAI's Vision API to extract merchant names, amounts, line items, and categories.
• Natural Language Parsing (AI Quick Entry): Text inputs are processed by OpenAI to parse expense details from natural language.
• Spending Insights: Aggregated expense data is analyzed by OpenAI to generate personalized spending tips.
• Smart Categorization: Expense descriptions are processed to automatically assign categories.

We cache AI results to reduce redundant processing and improve response times. Bill images are processed and stored securely.

4. Data Storage and Security

• Your data is stored securely on cloud servers with encrypted database connections
• All data transmission is encrypted using industry-standard SSL/TLS protocols
• Bill images are stored securely in encrypted object storage
• OTP codes expire after 10 minutes and are deleted after verification
• We implement rate limiting and attempt tracking to prevent unauthorized access
• Your data is retained until you delete your account or request deletion

5. Third-Party Services

We use the following third-party services to operate our app:

• Resend: For sending OTP verification emails from admin@splitaiapp.com
• OpenAI: For AI-powered bill scanning, expense parsing, categorization, and spending insights
• Expo/React Native: Mobile app framework and push notification delivery
• Cloud Hosting: For secure data storage and app hosting

These services may process your data according to their own privacy policies. We do not sell your personal information to third parties.

6. Your Rights (DPDP Act 2023 Compliance)

You have the following rights regarding your personal data:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your account and all associated data
• Export: Request an export of your expense data
• Withdrawal of Consent: Withdraw consent for data processing (may limit service functionality)

To exercise these rights, contact us at admin@splitaiapp.com

7. Data Sharing

• We only share data within groups you explicitly create for expense sharing
• We do not sell your data to advertisers or third parties
• We may share anonymized, aggregated data for analytics and service improvement
• We may disclose data if required by law or to protect our rights and users' safety

8. Data Retention

• We retain your data as long as your account is active
• When you delete your account, all personal data is permanently deleted within 30 days
• OTP codes are automatically deleted after use or expiration
• Anonymized analytics data may be retained for service improvement

9. Children's Privacy

Our service is not intended for users under 18 years of age. We do not knowingly collect data from minors.

10. Data Breach Notification

In the event of a data breach affecting your personal information, we will notify you via email or in-app notification within 72 hours of discovery.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification. Continued use of the service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us:

• Email: admin@splitaiapp.com
• Business Name: Split AI
• Address: Gurgaon, Haryana, India

By using Split AI, you agree to this Privacy Policy and our Terms of Service.