Privacy Policy

1. Introduction

BiteLedger (the "App"), operated by Rohit, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your information.

2. Information We Collect

We collect information necessary to provide the App's functionality:

• Account Data: Name, email address, and authentication identifiers (via Firebase/Google Sign-In)
• App Content: Receipts, income entries, mileage records, invoices, notes, and related metadata stored on your device or cloud storage
• Usage Data: Basic analytics (feature usage, crash reports) to improve app performance and reliability
• Payment Information: Subscription details (via Apple In-App Purchase; we do not store payment card details)
• Google Drive Data: You authorize the App to access your Google Drive only to upload and manage files you explicitly choose to store there

3. How We Use Your Information

We use your information to:

• Provide App functionality (capture, organize, store, and export your documents)
• Enable cloud sync and backup via respective APIs
• Facilitate optional integrations (Google Drive or Dropbox uploads when authorized by you)
• Process subscriptions and payments (via Apple App Store)
• Improve App performance, reliability, and user experience
• Send critical service notifications (e.g., security updates, account changes)
• Comply with legal obligations

4. Data Sharing & Third Parties

We may share data with service providers that help us operate the App:

• Firebase: For authentication, database storage, and analytics
• Google Drive: When you authorize file uploads (only files you choose)
• Dropbox: When you authorize file uploads (only files you choose)
• Apple: For In-App Purchase handling

We do NOT sell, rent, or share your personal data with third parties for their marketing purposes. These service providers use your data only to provide services to us and are contractually bound to confidentiality.

5. Future Data Practice Changes

If we introduce material changes to our data collection or usage practices (e.g., new analytics, aggregated insights), we will:

• Notify you via email at least 30 days in advance
• Provide you the right to export or delete your data before the change takes effect
• Require your explicit consent for any new personal data usage

6. Google APIs, Dropbox APIs & Data Usage

BiteLedger uses Google APIs (Google Drive, Google Sign-In, and similar APIs for Dropbox) only for:

• User authentication and account management
• Uploading files (only when you explicitly authorize)

Your data:

• Is not sold, rented, or shared with third parties for marketing
• Is used only for the purposes you authorized
• Can be revoked anytime via your Google Account Settings

7. Data Security

We implement security measures to protect your data:

• Data in transit is encrypted using HTTPS/TLS
• Authentication is handled securely through Firebase and cloud provider's Sign-In
• You are responsible for maintaining the security of your device, password, and account credentials

No security system is 100% secure. We cannot guarantee absolute protection against unauthorized access.

8. Data Retention & Deletion

• While Your Account is Active: We retain your data to provide App functionality
• Local Device Data: Deleted immediately from your device when you delete the App or data locally (non-recoverable by us)
• Cloud Data (Firebase): Deleted within 30 days of your account deletion request
• Backups: We recommend you export and backup critical data before requesting account deletion

9. Your Privacy Rights

Depending on your location, you may have rights to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data (subject to legal retention requirements)
• Opt out of non-essential data collection
• Export your data in a portable format

To exercise these rights, contact us at the email address below.

10. Marketing & Communications

We may send you:

• Critical notifications: Security alerts, service updates, account changes (cannot be opted out)
• Product updates: New features, improvements (can be opted out)
• Marketing communications: Promotions, offers (optional; opt-in at signup, opt-out anytime)

11. Third-Party Services

BiteLedger integrates with third-party services. Your use of these services is subject to their privacy policies:

• Firebase Privacy Policy
• Google Privacy Policy
• Dropbox Privacy Policy
• App Store Privacy Policy

12. Children's Privacy

The App is not intended for children under 13 (or your local age of digital consent). We do not knowingly collect data from children. If we become aware of such collection, we will delete that data promptly.

13. Contact Us

For privacy inquiries, data requests, or concerns:

14. Changes to This Privacy Policy

We may update this Privacy Policy occasionally. Significant changes will be communicated via email or in-app notification. Your continued use of the App constitutes acceptance of the updated policy.

Last updated: February 23, 2026

---