Privacy

Last updated: 2026-05-31

Splitit is an open-source bill-splitting app. The hosted version at www.splitit.in is operated as a free service; the same code can be self-hosted, in which case the operator of your instance is the data controller, not us.

What we collect

• Account: email address, display name, optional avatar, default currency, time zone and locale.
• Expenses: every expense, settlement, group, comment, and category you create — including amounts, dates, descriptions and who's involved.
• Push subscriptions: only if you tap "Enable" on the notification settings page. We store the endpoint your browser provides so we can push to it.
• Operational logs: request method, path, status, duration, a request id. No request bodies, no expense contents.

What we never collect

• Bank / UPI SMS contents. The Android shell parses transaction notifications on your phone and only sends the extracted amount + merchant to the web app if you tap the prefill notification. The raw SMS body never leaves your device.
• Phone contacts, location, microphone, camera.
• Card numbers, bank credentials, or any payment instrument.
• Advertising identifiers or cross-site tracking signals.

Who we share with

We do not sell your data. We do use a small number of infrastructure sub-processors to run the hosted service:

• Vercel — hosting for the API and web app.
• Neon — managed Postgres for application data.
• Upstash — Redis for rate-limit + idempotency state.
• Vercel Blob — avatar uploads.
• Gmail SMTP (with Resend as fallback) — transactional emails (invites, reminders, weekly summary, unsubscribe links).
• Sentry — error reporting, only if the operator has set a Sentry DSN. Disabled by default in self-hosted deployments.

Cookies and storage

We use localStorage to keep your JWT access + refresh tokens so you stay signed in. We do not set tracking cookies and do not use third-party analytics. The service worker caches the app shell so the PWA opens offline; that cache holds rendered HTML and JS only.

Retention and deletion

We retain your data for as long as your account is active. From Account → Profile you can delete your account; the deletion removes your user record, expenses you created, group memberships, push subscriptions and any pending invites. Operational logs are retained for up to 30 days.

Email opt-out

Every Splitit email contains a one-click unsubscribe link signed with a server-side token. You can also toggle email categories on Account → Notifications at any time.

Contact

Open an issue at github.com/krishnendu/splitit/issues for any privacy question or request to access / delete your data.