Privacy policy.

Privacy Policy

Last updated: October 3, 2025

1. Introduction

BillBob ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and services. By using BillBob, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide when using BillBob:

  • Account Information: Email address, first name, last name, and password (securely encrypted)

  • Authentication Data: Information from third-party authentication providers (Google, Apple Sign-In) including email and profile information

  • Payment Information: Bank account details for making & receiving payouts (processed and stored securely by Revolut and Stripe, our payment solutions providers)

  • Receipt Images: Photos of receipts you upload for scanning (processed via OCR and not permanently stored)

2.2 Bill and Transaction Data

  • Bill details (restaurant names, items, amounts)

  • Participant information (names and amounts owed)

  • Payment history and transaction records

  • Friend connections within the app

2.3 Automatically Collected Information

  • Device Information: Device type, operating system, browser type

  • Usage Data: App interactions, features used, performance metrics

  • Push Notification Tokens: If you enable notifications

3. How We Use Your Information

We use your information for the following purposes:

  • Provide Services: Process bill splitting, facilitate payments, and manage your account

  • Receipt Scanning: Use OCR technology to extract bill details from receipt photos

  • Payment Processing: Process payments and transfers through Stripe Connect

  • Communication: Send push notifications about payment updates (only if you opt-in)

  • Improve Services: Analyze usage patterns to enhance features and user experience

  • Security: Detect and prevent fraud, abuse, and security incidents

  • Legal Compliance: Comply with applicable laws and regulations

4. Third-Party Services

We use the following third-party services to operate BillBob:

Stripe (Payment Processing)

Stripe processes all payments and stores your bank account information securely. We never directly handle or store your full payment card details. Stripe's privacy policy: stripe.com/privacy

Supabase (Authentication & Database)

Supabase provides authentication services and secure database hosting. Your data is encrypted at rest and in transit. Supabase's privacy policy: supabase.com/privacy

Google Sign-In & Apple Sign-In

If you use Google or Apple to sign in, we receive basic profile information (email, name). These services are subject to their respective privacy policies.

OCR Processing

Receipt images are processed to extract text and bill details. Images are not permanently stored and are deleted after processing.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

  • With Other Users: Bill details and your name are shared with participants you add to bills

  • Service Providers: Third-party vendors who help us operate BillBob (Stripe, Supabase)

  • Legal Requirements: When required by law, court order, or government authority

  • Business Transfers: In connection with a merger, acquisition, or sale of assets

  • With Your Consent: When you explicitly agree to share information

6. Your Rights (UK GDPR)

Under UK data protection law, you have the following rights:

  • Right to Access: Request a copy of your personal data

  • Right to Rectification: Correct inaccurate or incomplete data

  • Right to Erasure: Request deletion of your personal data

  • Right to Restriction: Limit how we use your data

  • Right to Data Portability: Receive your data in a structured format

  • Right to Object: Object to certain processing activities

  • Right to Withdraw Consent: Withdraw consent for data processing at any time

To exercise any of these rights, please contact us at the email address provided below.

7. Data Retention

We retain your personal information for as long as necessary to provide BillBob services and comply with legal obligations. When you delete your account, we will delete or anonymize your personal data within 30 days, except where we're required to retain it for legal or regulatory purposes. Transaction records may be retained longer for financial and tax compliance.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

  • Encryption of data in transit (HTTPS/TLS)

  • Encryption of data at rest

  • Secure authentication and session management

  • Regular security assessments and updates

  • Limited access to personal data by authorized personnel only

However, no method of transmission over the internet is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

9. Children's Privacy

We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately and we will delete such information.

10. International Data Transfers

Your information may be transferred to and processed in countries outside the UK where our service providers operate. We ensure appropriate safeguards are in place to protect your data in accordance with UK GDPR requirements.

11. Camera and Notification Permissions

Camera Access

BillBob requests camera access solely to scan receipts and extract bill details. Receipt photos are processed locally or via secure OCR services and are not permanently stored. You can always enter bill details manually without granting camera access.

Push Notifications

If you enable push notifications, we'll send you updates about payments, bill activity, and important account information. You can disable notifications at any time in your device settings.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of BillBob after changes indicates your acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact support.

If you're not satisfied with our response to any privacy concerns, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

Summary

BillBob collects and processes personal information to help you split bills and manage shared expenses. We use trusted third-party services (Stripe for payments, Revolut for payouts, Supabase for authentication) and never sell your data. You have full control over your information and can request access, corrections, or deletion at any time.