This policy describes how TrakkerAI (the "app") collects, uses, stores and shares information when you use it. TrakkerAI is a personal tool for recording and analyzing expenses through automatic receipt recognition. We commit to processing only the information strictly necessary for the app to work and to being transparent about how we use it.
1. Who is responsible
The data controller is ONIDEV TI LTDA. For any privacy-related question you can reach us at onielgzlez21@gmail.com.
2. What data we collect
2.1 Account data (required to use the app)
- Email address used to create your account and sign in. Authentication is handled by our provider Supabase.
- Hashed password. We never see your password in plain text.
2.2 Data you enter or scan
- Receipt images captured with the camera or picked from your gallery. Images are sent to our server temporarily for processing and are not persisted.
- Extracted receipt data (merchant name, date, total, suggested category), which is saved against your account so you can browse it later.
- Manual edits you make to that data before or after saving.
- Optional profile data (display name, profile picture) that you can set or change from the Profile screen. Profile pictures you upload are stored in Supabase Storage under a per-user folder.
2.3 Technical data
- Crash diagnostics collected by Sentry: stack trace, app version, device model, Android version, and anonymous breadcrumbs leading up to the crash. These do not include your email, expenses, merchant names, amounts, or receipt images. Personally identifiable data is explicitly disabled, and HTTP request bodies are redacted before leaving the device.
We do not collect: location, contacts, SMS, browsing history, microphone audio, or advertising identifiers.
3. How we use the data
- Authentication: to verify that it is you who is signing in.
- Receipt recognition: the image is sent to Google's Gemini model through a server-side function hosted on Supabase. The model extracts structured text (merchant, date, amount, suggested category) and returns it to the app.
- Expense history storage: so you can browse, filter and export your spending.
- Per-merchant classifier learning: we learn the category you manually assigned to a given merchant so we can suggest it next time. This learning happens only against your own data, inside your account. It is never shared with other users.
4. Who we share data with
| Recipient | Purpose | Data shared |
|---|---|---|
| Supabase, Inc. | Authentication, database, storage, and proxy function to Gemini | Email, password hash, expenses, profile picture, receipt image during processing |
| Google LLC (Gemini API) | Data extraction from the receipt image | Receipt image + extraction prompt. Google may briefly retain the request to operate the service; see Gemini API terms |
| Functional Software, Inc. (Sentry) | Crash diagnostics (stack traces + device metadata) | Crash stack trace, OS and device version, memory state. Never: email, expenses, images, tokens |
We do not sell or rent personal data. We do not use your data for advertising.
5. International transfer
Supabase and Google servers are located outside your country. By using the app you accept that your data is transferred to those jurisdictions, which maintain equivalent or adequate protection levels (standard contractual clauses / adequacy frameworks by the European Commission and the U.S. Department of Commerce).
6. How long we keep the data
- Receipt images: not persisted on our servers after processing. They are retained only for as long as needed to generate the AI response.
- Extracted receipt data (merchant, date, amount, category): kept for as long as your account is active. TrakkerAI treats the expense history as an immutable record (like a bank statement): the app does not include functionality to edit or delete individual saved expenses.
- Account: retained until you request deletion (see section 8).
- Diagnostic logs: 30 days.
7. Security
- TLS in transit (HTTPS).
- Data at rest encrypted in Supabase's infrastructure.
- Per-user access enforced via Row-Level Security: you can only see your own records.
- Optional biometric authentication when opening the app.
- The Gemini API key never travels in the mobile app; it lives only on our server as a secret.
8. Your rights
- Access: check what we have about you.
- Rectification: correct inaccurate data (directly inside the app during the scan/edit flow before saving; for later corrections, contact us).
- Deletion: remove your account and all its associated history. You can trigger this yourself from Profile → Delete my account inside the app.
- Portability: export your expense history (available directly in the app via the "Export CSV" button in the History screen).
- Objection to processing.
To exercise any of these rights, email onielgzlez21@gmail.com. We respond within 30 days.
9. Minors
TrakkerAI is not directed to children under 13. We do not knowingly collect data from minors. If you are a guardian and believe a minor has provided us with data, please contact us so we can delete it.
10. Device permissions
- Camera: to take a picture of the receipt. Requested only when you tap the scan button for the first time. You can revoke it from the system settings; the manual-entry flow remains available.
- Internet: to sync with your account and process receipts.
- Biometrics (optional): for fingerprint/PIN unlock.
We do not request storage, contacts, location, or other sensors.
11. Changes to this policy
We may update this policy. When we do, we will publish the new version with an updated date at this URL, and if the change materially affects your rights, we will notify you by email.
12. Contact
For any privacy query or to exercise your rights:
ONIDEV TI LTDA
Email: onielgzlez21@gmail.com