Privacy Policy

Last updated: July 2026 · Draft pending counsel review before public launch

What we collect — and what we don't

Spendkin never asks for, stores, or transmits your bank credentials. There is no bank linking. We collect: your email address (to sign you in), the transactions you record or capture, and the text of alerts/receipts you choose to send us through a capture channel you explicitly enabled.

We do not collect your contacts, location, browsing history, or photos. Receipt images are processed on your device; only the extracted text reaches our servers.

Capture channels are opt-in, individually

How parsing works

Captured text is sent to our servers and converted into a structured transaction by an AI model (Anthropic Claude, under a no-training, zero-retention API configuration). The raw text is kept for a maximum of 30 days (so you can re-process mistakes), then permanently deleted. The structured transaction remains until you delete it.

Your rights

Processors

Hosting provider, Cloudflare (inbound email), Anthropic (parsing), Google (push delivery), Apple/Google (sign-in, billing), RevenueCat (subscription state). We sell data to no one and run no ads.