Privacy Policy

Last updated: June 10, 2026

1. Introduction

Welcome to Splithra ("we", "our", or "us"). We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website (collectively, the "Service"). Please read it carefully.

2. Information We Collect

2.1 Information You Provide

  • Name and display name
  • Email address (for account creation and communication)
  • Profile photo (optional)
  • Expense data: amounts, descriptions, categories, dates
  • Group names and member lists
  • Settlement records

2.2 Information Collected Automatically

  • Device identifiers and operating system version
  • App usage analytics (screens visited, features used) via Firebase Analytics
  • Crash reports and performance data via Firebase Crashlytics
  • Firebase Cloud Messaging (FCM) token for push notifications

2.3 Camera / Photos

The receipt scanning feature requires camera access. Images are processed locally on your device using Google ML Kit and are never uploaded to our servers.

3. How We Use Your Information

  • To provide and maintain the Service
  • To sync your data across devices in real time via Firebase Firestore
  • To send push notifications about group activity (expenses, settlements, friend requests)
  • To display personalised or contextual ads via Google AdMob (free tier)
  • To analyse usage patterns and improve the app
  • To respond to your support requests

4. Third-Party Services

We use the following third-party services, each with their own privacy policies:

Firebase (Google)
Authentication, Firestore database, Cloud Storage, push messaging, and analytics.
Privacy Policy →
Google AdMob
Advertising on the free tier of the app.
Privacy Policy →
Google Sign-In
Optional authentication method.
Privacy Policy →
Apple Sign-In
Optional authentication method on iOS.
Privacy Policy →
Google ML Kit
On-device text recognition for receipt scanning.
Privacy Policy →
exchangerate.host
Live currency exchange rates (no personal data sent).
Privacy Policy →

5. Data Retention

Your account data is retained as long as your account is active. You can delete your account and all associated data at any time from the Profile tab → Delete Account. Upon deletion, all personal data is permanently removed from our Firestore database within 30 days.

6. Data Security

All data in transit is encrypted using TLS/HTTPS. Data at rest is stored in Google Cloud (Firebase) with industry-standard encryption. Firebase security rules restrict access so each user can only read and write their own data and data for groups they belong to.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Delete your account and data
  • Opt out of personalised advertising (via device settings)
  • Data portability — export via the CSV Export feature

To exercise any of these rights, email us at info@splithra.com.

8. Children's Privacy

Splithra is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe your child has provided us with personal information, please contact us and we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by updating the "Last updated" date above. Continued use of the Service after changes constitutes acceptance of the revised policy.

10. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at info@splithra.com.