Privacy Policy

Last updated: 14/03/2026

1. Introduction

This Privacy Policy explains how we collect, use, and protect your personal data when you use our platform. We are committed to safeguarding your privacy and ensuring compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Who We Are

We provide an AI-powered bill analysis platform that helps users understand complex bills, receipts, and fines. Our mission is to deliver clear explanations, cost breakdowns, and actionable advice to consumers and small businesses.

3. Information We Collect

  • Account Information: Name, email address, and login details (via Google OAuth).
  • Uploaded Documents: Bills, receipts, or fines you upload for analysis. Sensitive details may be redacted before processing.
  • Usage Data: Token usage, subscription details, and interactions with our platform.
  • Payment Information: Processed securely via Stripe; we do not store card details.

4. How We Use Your Data

  • To provide AI-driven analysis of your bills and receipts.
  • To manage your subscription and process payments.
  • To monitor usage (e.g. remaining tokens) and improve service quality.
  • To comply with legal obligations and prevent fraudulent use of our services.

5. Data Storage & Security

Uploaded documents are stored securely on AWS S3. Analysis is performed using GPT-4 Vision, and sensitive information may be redacted before processing. We apply encryption, access controls, and monitoring to protect your data.

6. Legal Basis

We process your personal data based on: (a) performance of a contract (providing the service you subscribe to), (b) compliance with legal obligations, and (c) your consent where applicable.

7. Data Retention

We keep your data only as long as necessary to deliver the service or as required by law. You may request deletion of your data at any time by contacting us.

8. Your Rights

Under UK GDPR, you have the right to access, correct, or delete your personal data, restrict or object to processing, and request data portability. You may also withdraw consent at any time.

9. Third-Party Services

  • Stripe: for secure payment processing.
  • OpenAI (GPT-4 Vision): for document analysis.
  • Google OAuth: for authentication.

10. Contact Us

If you have any questions or wish to exercise your privacy rights, please contact us at:
privacy@yourdomain.com