Privacy Policy

Effective Date: February 15, 2025

1. Introduction

Welcome to Expie ("we," "us," or "our"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you use our applications and services, including our iOS application, Android application, and web application (collectively referred to as our "Services"). By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Information We Collect

2.1 Personal Information

When you use our Services, we may collect the following types of personal information:

Authentication Data

  • Email address
  • Password (stored securely in hashed form)
  • Authentication tokens (to maintain user sessions)

Expense Data

  • Expense amount
  • Date of expense
  • Expense category (e.g., food, travel, bills)
  • Remarks (any notes you add)
  • Receipt images (if you choose to upload; stored securely)

Subscription Information (if applicable)

  • Subscription status (e.g., Free, Premium Monthly, Premium Yearly)
  • Purchase history (e.g., subscription start/end dates)
  • Billing information (handled securely via Apple StoreKit for iOS, Google Play Billing for Android, and secure payment processors for web; no credit card details stored on our end)

Device and Browser Information

  • Device type (e.g., iPhone model, Android phone model, or computer)
  • Operating system version (e.g., iOS version, Android version, or desktop OS)
  • Browser type and version (for web app users)
  • Screen size and resolution (to optimize display)

2.2 Non-Personal Information

We may also collect certain non-personal information that does not directly identify you, including:

  • Basic usage data (e.g., features accessed, app crashes)
  • Error logs for troubleshooting
  • Performance metrics (to improve service quality)
  • Cookies and similar technologies (for web users, to maintain session and preferences)

3. How We Use Your Information

Essential Functions

  • Authenticate users and manage user sessions
  • Track and manage your expenses
  • Organize expenses into categories
  • Manage subscription services and access to premium features (if applicable)
  • Synchronize your data across devices (when using multiple platforms)

Service Maintenance

  • Diagnose and fix technical issues
  • Maintain the security of our services
  • Optimize performance across different platforms and devices

Legal Compliance

  • Comply with applicable laws, regulations, and legal requests
  • Enforce our terms of service
  • Protect our legal rights and prevent misuse

4. Data Storage and Security

We use Supabase, a secure cloud database provider, to store your data. We implement industry-standard security measures to protect your information:

  • All data is encrypted during transmission (using HTTPS/SSL)
  • Passwords are securely hashed
  • Access to your data is strictly controlled
  • Regular security updates and monitoring
  • Web sessions are secured with appropriate authentication mechanisms

5. Data Retention and Deletion

We retain your data only for as long as necessary to provide our services:

  • Your expenses and categories are stored while you use our services
  • You can delete your expense data and categories at any time through your app or account settings
  • When you delete your data, it is immediately and permanently removed from our systems
  • Backup copies of deleted data are also removed as part of the deletion process
  • Web browser cookies and local storage can be cleared through your browser settings

6. Children's Privacy

Our Services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are under 13, please do not use our Services or provide any personal information.

If we discover that we have collected personal information from a child under 13, we will delete that information immediately. If you believe we might have any information from or about a child under 13, please contact us.

7. Your Privacy Rights

You have the right to:

  • Access your personal information
  • Correct inaccurate data
  • Delete your expense data and categories
  • Export your data
  • Opt-out of future data collection

These options are available in your app settings or web account settings. For any additional privacy-related questions, please contact us at denise@catalyst.my.

8. Third-Party Services

Our Services use the following third-party services:

  • Supabase for secure data storage
  • Apple StoreKit for iOS payment processing
  • Google Play Billing for Android payment processing
  • Secure payment processors for web transactions
  • Analytics services to improve application performance

These services have their own privacy policies and handle data according to their respective terms. We do not share your data with any other third-party services unless explicitly mentioned.

9. Platform-Specific Information

9.1 Web Application

When using our web application:

  • We use cookies and local storage to maintain your session and preferences
  • You can clear cookies and local storage through your browser settings
  • We recommend using up-to-date browsers with strong security features

9.2 iOS Application

When using our iOS application:

  • We may request permissions for features like camera access (for receipt photos)
  • Payments are processed securely through Apple StoreKit
  • You can manage app permissions through your device settings

9.3 Android Application

When using our Android application:

  • We may request permissions for features like camera access (for receipt photos)
  • Payments are processed securely through Google Play Billing
  • You can manage app permissions through your device settings

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Effective Date" at the top of this Privacy Policy
  • Sending an app notification or email for significant changes

Your continued use of our Services after any changes indicates your acceptance of the updated Privacy Policy.

11. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact us at:

CATALYST Design Sdn Bhd
Email: denise@catalyst.my
Location: Kuala Lumpur, Malaysia