Privacy Policy

We collect the following categories of data based on the features you choose to use:

• Account data: Google account identifier, email address, profile name, and profile photo URL.
• Financial entries: transaction amount, category, note, type, and date.
• Subscription entries: service name, amount, billing cycle, renewal date, reminder preferences, icon, and color selections.
• Optional Gmail integration data: connected Gmail address, encrypted OAuth tokens, and receipt-related email data such as merchant, amount, currency, date, subject, snippet, and message identifier.
• Voice and text inputs: expense text you type and audio or transcript data you submit when using optional voice capture.
• Payment and entitlement records: plan details, order IDs, payment references, status, and timestamps.
• App diagnostics and security data: request metadata, sync status, rate-limit counters, and operational logs needed to secure and operate the service.
• Device-level local data: secure auth token storage and app preferences stored on your device.

• Authenticate users through Google Sign-In and maintain account sessions.
• Provide core features including expense tracking, dashboards, subscription tracking, and premium access controls.
• Process optional voice capture and user-entered expense parsing.
• Connect Gmail, only when enabled by you, to identify likely receipt emails and present receipt candidates for your review.
• Process premium purchases, entitlement restoration, and billing support.
• Send optional subscription reminder notifications to your device.
• Protect platform security, detect abuse, investigate issues, and improve reliability.

• Contract: to provide the services you request.
• Consent: for optional Gmail access, microphone use, and notifications.
• Legitimate interests: security, fraud prevention, and service reliability.
• Legal obligations: accounting, tax, regulatory, and compliance requirements as applicable.

We use trusted third-party services to operate MoneyAI, including:

• Google Sign-In and Google APIs for account sign-in and optional Gmail integration.
• OpenAI APIs for optional voice transcription and user-submitted expense parsing.
• Razorpay for payment order and payment verification workflows.
• Hosting and infrastructure providers used to run our APIs, databases, and website.

Gmail access is optional. MoneyAI requests Gmail access only after you choose to connect Gmail inside the app. The requested access is used to identify receipt-like emails and present structured receipt candidates for your review.

MoneyAI uses OpenAI only for optional voice transcription and user-submitted expense parsing. Gmail message content used for receipt detection is processed through our application logic and Google APIs, and is not sent to OpenAI for receipt extraction.

We do not use Gmail or other Google Workspace API data to develop, improve, or train generalized or non-personalized AI or ML models. The use of raw or derived user data received from Google Workspace APIs will adhere to the Google User Data Policy, including the Limited Use requirements.

We do not sell personal data. We share data only with service providers necessary to operate MoneyAI, process payments, provide optional AI-assisted features, comply with law, enforce our terms, or protect users and platform security.

• Transport security: production API and website communication is protected in transit using HTTPS.
• Token protection: Gmail OAuth tokens are stored encrypted at rest on our servers.
• Session protection: app auth tokens are stored in secure device storage where supported.
• Operational safeguards: authentication checks, access controls, and request rate limiting help reduce abuse and unauthorized access.

We retain account, transaction, subscription, billing, and receipt records for as long as needed to provide services, maintain legal records, resolve disputes, and enforce agreements.

When you disconnect a Gmail account in the app, connected Gmail account records, encrypted Gmail tokens, and associated pending email receipt entries for that account are removed from our active systems, except where limited retention is required for security, fraud prevention, or legal compliance.

• Access and update: you can update many details through the app.
• Gmail control: you may connect or disconnect Gmail at any time.
• Notifications: you can disable reminder notifications from device settings.
• Data deletion requests: use our Account Deletion page linked below.

Account deletion page: /account-deletion

MoneyAI is not directed to children under the age required by local law for independent consent. If you believe a child provided personal data, contact us to request deletion.

Your information may be processed in countries where our service providers operate. We apply reasonable safeguards appropriate to the transfer where required by law.

We may update this Privacy Policy to reflect product, legal, or security changes. The updated effective date will be shown at the top of this page.

Contact us for privacy requests, support, or questions:
Email: hello@mobileaiexpense.com