Privacy
Your receipts are yours. Full stop.
Slipsee is built with privacy as a day-one requirement, not a settings page. Here is the whole deal, in plain English.
The short version
Four promises we design around.
Encrypted at rest
Receipt images are stored privately and encrypted. Delete any receipt — image and data — whenever you like.
No bank connections
Slipsee never touches your accounts. It only knows what you choose to scan.
No location tracking
Merchant locations come from the receipt itself — your device’s GPS is never used.
Sign in with Apple
One tap, no passwords, and an optional Face ID lock on the whole app.
What Slipsee collects
Only what makes the app work: the receipt images you scan, the structured data extracted from them (merchant, items, prices, dates), and the account identifier from Sign in with Apple. That’s the list — no contacts, no location, no browsing data, no advertising identifiers.
Where it lives
Your receipts sync to your private cloud space so they survive a lost phone. Images and data are encrypted at rest, isolated per account, and used for exactly one purpose: showing you your own spending.
What we never do
We don’t sell your data, share it with advertisers, or use your receipts to train models for anyone else. There are no ads in Slipsee, and there never will be a version of this app where your grocery list is the product.
Deleting your data
Every receipt is deletable in one tap — the image and every extracted row go with it. Deleting your account removes everything. No archives kept “for your convenience,” no thirty-day limbo.
This page is a plain-English summary of how Slipsee is designed. A formal privacy policy will accompany the App Store release.