SplitCodex

Privacy Policy

Last updated: 1 July 2026

SplitCodex ("we", "us") helps you split shared expenses with other people and keep track of who owes whom. This policy explains what information we collect, how we use it, and the choices you have. It applies to the SplitCodex website and mobile app.

Information we collect

  • Account information. When you create an account we store your name and either a username (with a securely hashed password) or, if you sign in with Google, your Google account's email address, name, profile picture, and a unique identifier. You may optionally add a profile photo.
  • Group and expense content. The groups you create or join, their members, and the expenses, amounts, dates, currencies, split details, settlements (payments), comments, and any receipts or images you upload.
  • Payment details you choose to add. If you add payment methods to receive settlements (for example PayPal, an IBAN, a cryptocurrency address, or similar), we store them so they can be shown to the group members who owe you.
  • Technical and usage data. Your IP address, approximate country, device and browser type, and session information, which we use to keep your account secure and prevent abuse.
  • Push notification identifiers. If you enable notifications, we store a push subscription or device token so we can deliver them.

How we use your information

  • To provide the service — creating groups, recording expenses, computing balances, and suggesting settlements.
  • To sync your data across your devices in real time.
  • To send notifications you have enabled, including optional balance summaries.
  • To secure your account, prevent fraud and abuse, and troubleshoot problems.

Sharing and third-party services

We do not sell your personal data. Content you add to a group is visible to the other members of that group. We use a small number of service providers to run SplitCodex:

  • Google — for optional "Sign in with Google" authentication.
  • Firebase Cloud Messaging (Google) — to deliver push notifications to your device.
  • OpenAI — only if you use the receipt-scanning feature, the receipt image you submit is sent to OpenAI to extract line items. Don't scan receipts containing information you don't want processed this way.
  • Currency data providers — for exchange-rate conversion (no personal data is shared).
  • GIF providers — if you add a GIF to a comment, requests are made to the GIF provider.
  • Hosting and infrastructure providers — to store data and run the service.

Data retention

We keep your information for as long as your account is active. You can request deletion of your account and data at any time, after which we remove your personal data except where we must retain it to comply with legal obligations.

Your rights

Depending on where you live, you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. To exercise these rights, contact us at the address below.

Security

Data is transmitted over encrypted connections (HTTPS), passwords are stored only as salted hashes, and access to production systems is restricted. No method of transmission or storage is 100% secure, but we work to protect your information.

Children

SplitCodex is not intended for children under 13 (or the minimum age required in your country), and we do not knowingly collect data from them.

Changes to this policy

We may update this policy from time to time. When we do, we will revise the "Last updated" date above and, where appropriate, notify you in the app.

Contact

Questions about this policy or your data? Email us at [email protected].