Privacy Policy.
Plain English. No legalese.
TL;DR
I collect the minimum data needed to run Split My. Receipt photos are sent to AI for processing and then discarded — I don't store them. I don't sell your data, run ads, or build profiles on you. You can request deletion any time by emailing splitmy@icloud.com.
Who I am
Split My is built and operated by Dhanish Athif, an individual based in Malaysia — not a company or a team.
What I collect
Account data
When you sign up, I store your email address and the display name you choose. If you sign in with Google, I also receive your profile photo URL from Google's API.
Group & expense data
Everything you enter into the app — trip names, expense titles, amounts, currencies, who paid, how it's split — is stored in the database so your groups persist between sessions.
AI processing (receipt photos)
When you scan a receipt, the photo is sent to OpenAI or Anthropic to extract the items and amounts. The image is discarded after processing — only the extracted text ends up in my database.
Server logs
Like every web service, my hosting provider (Vercel) automatically logs basic request metadata: timestamps, IP addresses, and which URLs were accessed. These logs are used for debugging and are retained per Vercel's standard policy.
How I use it
- Power the features you use (splitting, settlements, trip history)
- Send transactional emails (magic links, invite links)
- Debug issues when something breaks
No ads, no selling data, no behavioural profiling, no AI training.
Third-party services
Split My is built on top of these infrastructure providers. Each processes data on my behalf under their own privacy policies:
Ghost participants
When a group creator adds someone by name (before they've signed up), that person exists as a "ghost participant" — stored only as a name string, with no email, password, or personal details attached.
The group creator takes responsibility for getting consent before adding someone. If you've been added to a group without your knowledge and want the record removed, email splitmy@icloud.com and I'll handle it promptly.
Your rights
- Access — Your data is visible in-app (trips, expenses, profile).
- Correct — Edit your name and profile details in Settings.
- Delete — Email splitmy@icloud.com to request full account deletion. I'll remove your account and associated personal data.
Security
All data is encrypted in transit (HTTPS). The database uses Row Level Security so users can only access their own data. No passwords are stored — sign-in is via magic links or OAuth only. No system is perfectly secure; if you find a vulnerability, please email me before disclosing publicly.
Children
Split My is not intended for children under 13. I don't knowingly collect personal data from anyone under 13. If you believe a child under 13 has created an account, email splitmy@icloud.com and I'll remove it.
Changes to this policy
Material changes get an updated date at the top and an email notification. Continued use means you accept the new policy.
Contact
Questions, concerns, or requests about your data? Email me at splitmy@icloud.com. I aim to respond within 3 business days.