Privacy Policy

此内容尚不支持你的语言。

ReceiptGenie Privacy Policy

Last updated: April 15, 2025

The privacy of your data — and it is your data, not ours! — is a big deal to us. In this policy, we lay out: what data we collect and why; how your data is handled; and your rights with respect to your data. We promise we never sell your data: never have, never will.

This policy applies to all products built and maintained by ReceiptGenie.

What we collect and why

Identity & access

When you sign up for ReceiptGenie, we use Apple’s Sign in feature, and we only collect user information as provided by Apple, including an option to mask your email. We use this information solely to authenticate you as an app user to connect to our receipt scanning API server.

Receipt data

The user’s receipt data is securely stored on our cloud server for backup purposes. Even though we use a cloud receipt processor API from Microsoft Azure (their privacy policy), we do not associate the receipt with the user, and we do not sell the receipt to any 3rd party that collects purchase data for marketing purposes.

Usage data

We collect app analytics data to understand user behavior to improve the app, and we don’t associate that data with the actual user information. This helps us understand how people use the app so we can make it better.

Cookies and Do Not Track

We don’t use cookies in our mobile app, and we don’t track you across the internet.

Voluntary correspondence

When you write to us with a question or to ask for help, we keep that correspondence, including your email address, so that we have a history of past communications to reference if you reach out in the future.

We also store information you may volunteer, for example, written responses to surveys. If you agree to a customer interview, we may ask for your permission to record the conversation for future reference or use. We only do so with your express consent.

To provide products or services you’ve requested. We use some third-party subprocessors to help run our applications and provide the Services to you.

To help you troubleshoot or squash a software bug, with your permission. If at any point we need to access your receipt data to help you with a support case, we will ask for your consent before proceeding.

To investigate, prevent, or take action regarding restricted uses. Accessing a customer’s account when investigating potential abuse is a measure of last resort. We want to protect the privacy and safety of our customers and the people they serve.

When required under applicable law.

ReceiptGenie is operated by Botisan AI Pte. Ltd., a Singapore company, and all data infrastructure are located in Singapore.

If Singapore law enforcement authorities have the necessary warrant, criminal subpoena, or court order requiring we share data, we have to comply. Otherwise, we flat-out reject requests from local and federal law enforcement when they seek data. And unless we’re legally prevented from it, we’ll always inform you when such requests are made. In the event a government authority outside Singapore approaches us with a request, our default stance is to refuse unless the Singapore government compels us to comply through procedures outlined in a mutual legal assistance treaty or agreement.
Similarly, if ReceiptGenie receives a request to preserve data, we refuse unless compelled by Singapore law. In these situations, we notify affected customers as soon as possible unless we are legally prohibited from doing so.
If we get an informal request from any person, organization, or entity, we do not assist.
If we are audited by a tax authority, we may be required to share billing-related information. If that happens, we only share the minimum needed, such as billing addresses and tax exemption information.

Finally, if ReceiptGenie is acquired by or merged with another company — we don’t plan on that, but if it happens — we’ll notify you well before any info about you is transferred and becomes subject to a different privacy policy.

Your rights with respect to your information

At ReceiptGenie, we apply the same data rights to all customers, regardless of their location. These rights include:

Right to Know. You have the right to know what personal information is collected, used, shared or sold. We outline both the categories and specific bits of data we collect, as well as how they are used, in this privacy policy.
Right of Access. This includes your right to access the personal information we gather about you, and your right to obtain information about the sharing, storage, security and processing of that information.
Right to Correction. You have the right to request correction of your personal information.
Right to Erasure / “To be Forgotten”. This is your right to request, subject to certain limitations under applicable law, that your personal information be erased from our possession and, by extension, from all of our service providers. Fulfillment of some data deletion requests may prevent you from using ReceiptGenie services because our applications may then no longer work. In such cases, a data deletion request may result in closing your account.
Right to Complain. You have the right to make a complaint regarding our handling of your personal information with the appropriate supervisory authority.
Right to Restrict Processing. This is your right to request restriction of how and why your personal information is used or processed, including opting out of sale of personal information. (Again: we never have and never will sell your personal data.)
Right to Object. You have the right, in certain situations, to object to how or why your personal information is processed.
Right to Portability. You have the right to receive the personal information we have about you and the right to transmit it to another party.
Right to not be subject to Automated Decision-Making. You have the right to object to and prevent any decision that could have a legal or similarly significant effect on you from being made solely based on automated processes. This right is limited if the decision is necessary for performance of any contract between you and us, is allowed by applicable law, or is based on your explicit consent.
Right to Non-Discrimination. We do not and will not charge you a different amount to use our products, offer you different discounts, or give you a lower level of customer service because you have exercised your data privacy rights. However, the exercise of certain rights may, by virtue of your exercising those rights, prevent you from using our Services.

Many of these rights can be exercised by signing in and updating your account information.

If you have questions about exercising these rights or need assistance, please contact us at [email protected].

How we secure your data

All data is encrypted via SSL/TLS when transmitted from our servers to your browser. The database backups are also encrypted. In addition, we go to great lengths to secure your data at rest.

What happens when you delete content in your product accounts

If you choose to cancel your account, your content will be immediately inaccessible and deleted from our active servers within 60 days. We also have some backups of our application databases, which are kept for up to another 90 days. In total, when you delete your content, it may take up to 150 days to be fully removed from our systems.

Location of site and data

Our products and other web properties are operated in Singapore. If you are located in the European Union, UK, or elsewhere outside of Singapore, please be aware that any information you provide to us will be transferred to and stored in Singapore. By using our websites or Services and/or providing us with your personal information, you consent to this transfer.

Changes & questions

Have any questions, comments, or concerns about this privacy policy, your data, or your rights with respect to your information? Please get in touch by emailing us at [email protected] and we’ll be happy to try to answer them!

Adapted from the Basecamp open-source policies / CC BY 4.0