Privacy

Your receipts are yours. Full stop.

Slipsee is built with privacy as a day-one requirement, not a settings page. Here is the whole deal, in plain English.

The short version

Four promises we design around.

Encrypted at rest

Receipt images are stored privately and encrypted. Delete any receipt — image and data — whenever you like.

No bank connections

Slipsee never touches your accounts. It only knows what you choose to scan.

No location tracking

Merchant locations come from the receipt itself — your device’s GPS is never used.

Sign in with Apple

One tap, no passwords, and an optional Face ID lock on the whole app.

What Slipsee collects

Only what makes the app work: the receipt images you scan, the structured data extracted from them (merchant, items, prices, dates), and the account identifier from Sign in with Apple. That’s the list — no contacts, no location, no browsing data, no advertising identifiers.

Where it lives

Your receipts sync to your private cloud space so they survive a lost phone. Images and data are encrypted at rest, isolated per account, and used for exactly one purpose: showing you your own spending.

What we never do

We don’t sell your data, share it with advertisers, or use your receipts to train models for anyone else. There are no ads in Slipsee, and there never will be a version of this app where your grocery list is the product.

Deleting your data

Every receipt is deletable in one tap — the image and every extracted row go with it. Deleting your account removes everything. No archives kept “for your convenience,” no thirty-day limbo.

This page is a plain-English summary of how Slipsee is designed. A formal privacy policy will accompany the App Store release.