Privacy Policy
Last updated: May 21, 2026
SplitPaw is an app for tracking and splitting shared expenses. This policy explains what personal data we process, why, for how long, and what rights you have over it. It applies to the iOS app, the web (splitpaw.app), and any service offered under the SplitPaw brand.
1. Data controller
The data controller is Igris Technologies SpA ("Igris Technologies", "we"), a corporation incorporated in Chile that operates the SplitPaw service. For any privacy question, write to privacy@splitpaw.app.
2. What we collect
We only collect the minimum data needed to run the app:
- Identity: email, display name, profile photo (optional), language and country preference.
- What you upload: expenses (amount, currency, description, merchant, category, date), receipt photos, settlements, group chat messages (with their reactions and mentions), groups you belong to and other members visible to you within the group.
- Moderation data: if you report a message or block a user, we store that report or block to review it and enforce the community guidelines.
- Location: only if you explicitly attach it to a specific expense. It is stored with that expense; no background tracking.
- Technical data: push notification token, device identifier needed for delivery, app version, system language, truncated IP for abuse prevention.
- Aggregated usage: number of expenses created, receipt scans (to enforce free-plan limits and improve the service).
- In-App Purchases: Apple transaction identifier if you subscribed to Premium. We never see or store card data — Apple handles it.
- Voice (optional): if you use the dictate-an-expense feature, we access the microphone to record audio temporarily and convert it to text. We do not store the audio; the transcribed text is processed to create the expense (see §3 and §5).
We do NOT collect: contacts, photos from your library outside of receipts, health, biometric or special-category data (GDPR Art. 9). The microphone is only used, with your permission, when you dictate an expense. The only messages we process are the group-chat messages you write; we do not read messages from other apps.
3. How we use the data
- Run the app: show your expenses, compute balances, sync across devices.
- Notifications: tell you when someone assigns you an expense, records a payment with you, or accepts your invite. You can disable each type from Settings → Notifications.
- Group chat: send and display messages between group members, with push notifications.
- Safety and moderation: review reports, hide messages from users you block, and enforce the community guidelines (removing content or suspending accounts that break them).
- Receipt scanning: when you photograph a receipt, SplitPaw Smart and the scanner process the image to extract total, items, and merchant. The image is not used to improve third-party services (see §5).
- Voice expense dictation: when you dictate an expense, your voice is converted to text (Apple speech recognition, on-device when the language allows). The transcribed text is sent to SplitPaw Smart to extract amount, group, description and split. The audio is not stored: it is discarded after transcription. The text is treated like an expense description.
- Support and operational communication: answering your questions, announcing material changes to these terms or the service.
- Legal compliance: responding to valid requests from competent authorities.
- Service improvement: aggregated, anonymized metrics that do not identify individuals.
We do NOT sell your data. We do NOT share it with advertisers. We do NOT track you outside of SplitPaw. We do NOT use personally identifiable data to improve external systems.
4. Legal basis
- Contract performance (GDPR Art. 6.1.b): most processing is necessary to provide the service you request by using the app.
- Consent (Art. 6.1.a): push notifications, per-expense geolocation and receipt scanning — you opt in voluntarily.
- Legitimate interest (Art. 6.1.f): security, anti-abuse, aggregated metrics. You may object.
- Legal compliance (Art. 6.1.c): tax records when we invoice, and responses to authorities.
5. External processors (sub-processors)
We work with providers that process data on our behalf under data-protection contractual terms. As of this policy, they are:
- Secure infrastructure provider (USA/EU): database, authentication, and private storage for receipts and profile images.
- Apple Inc. (USA): Sign in with Apple, APNs push notifications, Premium subscription handling, app distribution.
- Google LLC (USA): Sign in with Google (if you choose it), reverse geocoding when you attach location to an expense.
- SplitPaw Smart providers (USA/EU): receipt reading, scanner validation, and analysis of the text you dictate by voice to extract the expense. We only send the transcribed text, never the audio.
- Email delivery provider (USA/EU): transactional emails (CSV/PDF exports you request, account recovery).
Any international transfer happens under GDPR safeguards (EU Standard Contractual Clauses or equivalent schemes). We only send each provider the minimum data required for the specific operation (e.g. the receipt photo, not your full history).
This list can change. If we add a provider that introduces a new type of processing, we'll notify you in the app before it takes effect.
6. Retention
- While your account is active: we keep your data so you can keep using the app.
- On account deletion: your personal data is removed from production systems within at most 30 days.
- Operational backups: up to 90 days. Backup data is only used for disaster recovery and is purged cyclically.
- Receipts (images): deleted together with the expense they are attached to.
- Chat messages: removed when the group or your account is deleted. A message you delete shows as "Message deleted"; we keep its original content internally for a limited time to handle moderation reports.
- Reports and blocks: kept for as long as needed for platform safety and rule enforcement.
- Apple transaction records: kept up to 7 years for accounting obligations, in pseudonymized form.
- Technical logs: at most 30 days, without email or name, only internal IDs.
7. Your rights
You can exercise your GDPR rights at any time:
- Access: view your data. Available in-app via CSV export (Settings → Export).
- Rectification: fix inaccurate data. You edit your profile from the app.
- Erasure / right to be forgotten: delete your account from Settings → Terms and Privacy → Delete account. The action is permanent.
- Restriction: write to privacy@splitpaw.app to freeze your data without deletion while a dispute is resolved.
- Portability: the CSV export is standard and works to move to another app.
- Objection: against processing based on legitimate interest (aggregated metrics, anti-abuse). Write to privacy@splitpaw.app.
- Withdraw consent: disable notifications or location from Settings at any time. Past processing remains lawful.
- Complaint: with the supervisory authority in your country (in the EU: your national data protection authority; in Brazil: ANPD; in Chile: Agencia de Protección de Datos Personales).
If you are the sole owner of an active group, before deleting your account you must close it or transfer ownership — so other members are not left without access to their shared history.
8. Minors
SplitPaw is intended for people 13 or older (or the minimum age of digital consent in your country, which in some places is 14 or 16). We do not knowingly collect data from younger users. If you believe a younger child gave us data, write to privacy@splitpaw.app and we'll delete it.
9. Security
- TLS 1.2+ for all client↔server communication.
- Encryption at rest for the database and private storage.
- Membership-based access controls: each user can only access data from groups they are an active member of.
- Short-lived authentication tokens with secure refresh.
- Internal access strictly limited to necessary personnel, least-privilege principle.
- Anomaly monitoring and rate limiting on sensitive operations.
No system is unbreakable. In the event of a security incident affecting your personal data, we'll notify you without undue delay and report the breach to the supervisory authority without undue delay. In Chile, Law 21.719 requires reporting to the Personal Data Protection Agency and notifying affected individuals when sensitive data, minors' data, or economic/financial data are involved (it does not set a 72-hour deadline; that deadline applies under the GDPR in the EU).
11. Changes to this policy
We may update this policy. The current version always lives at splitpaw.app/privacy with the last-updated date at the top. If changes are material, we'll notify you in the app before they take effect.
12. Contact
- Inquiries and contact: privacy@splitpaw.app