Effective May 14, 2026

Privacy Policy

ReceiptCap helps teams capture, review, and archive receipts and expense records. This Privacy Policy explains what information we collect, how we use it, and the choices available to workspace owners, administrators, and users.

Information We Collect

We collect account information such as your name, email address, authentication identifiers, workspace membership, role, and billing status. We collect receipt information that users upload, capture, or email to ReceiptCap, including receipt files, extracted fields, review edits, categories, payer and reimbursement information, audit events, and archive links.

We also collect technical information needed to operate the service, including request metadata, upload metadata, error logs, security event logs, idempotency keys, and device or browser information provided by standard web requests.

We collect product analytics and reliability information to understand which features are used, where workflows fail, and how to improve ReceiptCap. Analytics events use internal hashed identifiers and limited properties such as feature name, status, source, plan tier, archive provider, and timing. We do not send receipt contents, receipt images, filenames, merchant names, totals, emails, OAuth tokens, or raw request bodies to analytics tools.

Connected Services

ReceiptCap uses Firebase Authentication for sign-in. If a workspace administrator connects Google Drive or Dropbox, we store OAuth tokens so ReceiptCap can archive approved receipts to the selected destination. Google Drive and Sheets are used to store files and ledger rows when selected. Dropbox is used to store receipt files and yearly CSV ledgers when selected by a Pro or operator-granted unlimited workspace.

ReceiptCap uses Stripe for subscription billing and payment processing. We do not store full payment card numbers. Stripe may provide us with customer, subscription, invoice, and payment status information.

ReceiptCap may use Google Analytics for public-site and conversion analytics, PostHog for in-app product analytics and feature flags, and Sentry for error monitoring and performance diagnostics. These tools receive limited technical and usage information under the safeguards described in this Policy.

How We Use Information

We use information to provide the receipt workflow, analyze receipt files, present review fields, support team access controls, archive approved receipts, generate reports and exports, process billing, prevent abuse, diagnose issues, secure the service, and respond to support or administrative requests.

AI Processing

Receipt files may be processed by AI extraction services to identify fields such as merchant, date, currency, total, tax, line items, category, notes, and transaction identifiers. Users should review extracted fields before approval.

Sharing And Disclosure

We share information with service providers that help us operate ReceiptCap, including cloud hosting, storage, authentication, email ingestion, AI extraction, payment processing, logging, and connected archive providers selected by workspace administrators. We may disclose information if required by law, to protect ReceiptCap and its users, or in connection with a business transfer.

Data Retention

We keep account, receipt, audit, billing, and configuration data for as long as needed to provide the service, comply with legal obligations, resolve disputes, enforce agreements, and maintain business records. Workspace administrators may request deletion of a workspace. Deleting a ReceiptCap workspace deletes ReceiptCap-controlled records and internal storage, but does not delete files or rows that were already archived to a connected Google Drive, Google Sheet, or Dropbox account.

Raw product analytics events are kept only as long as useful for product and reliability analysis, and may be aggregated into longer-term statistics. Error and performance data is retained according to the settings of our monitoring providers.

Security

We use technical and organizational safeguards designed to protect information, including authenticated access, tenant-scoped records, private staging storage, signed internal requests, secret storage, and limited OAuth scopes where possible. No internet service can guarantee absolute security.

Your Choices

You can choose not to upload receipts, disconnect archive providers, request workspace deletion, or ask an administrator to remove your workspace access. You may also contact us to request access, correction, export, or deletion of personal information, subject to legal and operational limits.

Where a consent banner is shown, you can decline optional marketing analytics. Essential operational logs, security logs, product analytics needed to improve and protect the service, and error monitoring may still be collected as described above.

International Use

ReceiptCap may process information in the United States and other locations where our service providers operate. By using ReceiptCap, you understand that information may be transferred and processed outside your country or region.

Changes

We may update this Privacy Policy as ReceiptCap changes. The effective date above indicates the latest version. Material changes will be posted on this page or communicated through the service when appropriate.

Contact

ReceiptCap is operated by Bar Harel. For privacy questions or requests, contact support@receiptcap.com.