AiXpenseBack to Home

Privacy Policy

Last updated: February 19, 2026

1. Introduction

This Privacy Policy explains how AiXpense, operated by Pratik Jadhav ("we", "us", "our"), collects, uses, stores, and protects your personal data when you use our AI-powered expense tracking application. This policy complies with the Information Technology Act, 2000, the IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023 (DPDP Act).

2. Data We Collect

We collect the following categories of data:

2.1 Account Information

  • Full name
  • Email address
  • Profile picture (if provided via Google/GitHub login)
  • Authentication provider details (Google, GitHub)

2.2 Financial Data (User-Provided)

  • Expense and income descriptions and amounts
  • Categories and tags assigned to transactions
  • Budget configurations
  • Chat conversations with the AI assistant

2.3 Technical Data (Automatically Collected)

  • IP address
  • Browser type and version
  • Device information
  • Usage patterns and session data

2.4 Payment Data

We do not directly store your credit/debit card numbers or UPI details. All payment processing is handled by Razorpay, our third-party payment processor. We only store transaction references, plan details, and subscription status.

3. Purpose of Data Collection

  • To provide and maintain the expense tracking Service
  • To process your natural language inputs through AI for categorization
  • To generate financial insights and analytics
  • To process payments and manage subscriptions
  • To send transactional emails (password resets, receipts)
  • To improve the Service and fix issues
  • To comply with legal obligations

4. Third-Party Data Sharing

We share your data with the following third-party service providers, strictly for the purpose of delivering the Service:

OpenAI

Your chat messages and transaction descriptions are sent to OpenAI's API for AI-powered parsing and categorization. OpenAI processes this data per their data usage policies. We do not send your email, name, or payment details to OpenAI.

Razorpay

Payment processing is handled by Razorpay. Your name, email, and payment details are shared with Razorpay for transaction processing. Razorpay is PCI-DSS compliant and regulated by the RBI.

Resend

Your email address is shared with Resend for sending transactional emails such as password reset links and payment receipts.

We do not sell, rent, or trade your personal data to any third party for marketing or advertising purposes.

5. Data Storage & Security

Your data is stored in encrypted MongoDB databases hosted on secure cloud infrastructure. We implement industry-standard security measures including:

  • Encrypted data transmission (HTTPS/TLS)
  • Hashed passwords (never stored in plaintext)
  • Secure authentication tokens
  • Regular security reviews

6. Data Retention

We retain your personal data for as long as your account remains active. When you delete your account, all your personal data — including expenses, budgets, AI conversations, and subscription records — is permanently and immediately deleted from our systems. This action is irreversible. Anonymized or aggregated statistical data that cannot be linked back to you may be retained for analytics purposes. We may also retain data where required by applicable law (e.g., for fraud prevention or legal claims).

7. Your Rights (Under DPDP Act, 2023)

As a data principal, you have the right to:

  • Access - Request a summary of your personal data and processing activities
  • Correction - Request correction of inaccurate or incomplete data
  • Erasure - Request deletion of your personal data (subject to legal retention requirements)
  • Withdraw Consent - Withdraw your consent for data processing at any time (this may affect Service availability)
  • Grievance Redressal - File a complaint with our Grievance Officer
  • Nominate - Nominate another individual to exercise your rights in case of death or incapacity

8. Cookies & Tracking

We use essential cookies for authentication and session management. We do not use third-party tracking cookies or advertising trackers. No data is shared with ad networks.

9. Children's Data

AiXpense is not intended for individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notification at least 7 days before they take effect. Continued use of the Service after changes constitutes acceptance.

11. Grievance Officer

In accordance with the IT Act, 2000 and DPDP Act, 2023, the details of the Grievance Officer are:

Name: Pratik Jadhav

Email: pratikjadhav1438@gmail.com

Grievances will be acknowledged within 48 hours and resolved within 30 days of receipt.