EquiShare ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services (collectively, the "App").
Please read this Privacy Policy carefully. By using EquiShare, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not use the App.
1. Information We Collect
1.1 Personal Information You Provide
When you register and use EquiShare, we collect the following personal information:
Account Information: Email address, full name, password (encrypted)
Profile Information: Profile picture (optional), preferred currency, language preferences
Contact Information: Names, email addresses, and phone numbers of contacts you add to the app (for invitation and expense sharing purposes)
Financial Information: Expense amounts, descriptions, categories, payment records, and balance information
Group Information: Group names, descriptions, member lists
1.2 Information Collected Automatically
When you use the App, we automatically collect:
Device Information: Device model, operating system version, unique device identifiers
Usage Data: App features used, frequency of use, session duration
Log Data: IP address, browser type, access times, pages viewed
We integrate with third-party services that may collect information:
Authentication Services: If you sign in using Google, Apple, or other OAuth providers, we receive basic profile information (name, email, profile picture) as permitted by those services
Payment Processors: Subscription payment information is processed by Apple App Store and Google Play Store. We do not directly collect or store your credit card information
Analytics Services: We use analytics tools to understand app usage and improve our services
Notify you about expense updates and balance changes
Respond to your support requests
Send important service announcements
2.4 Security and Fraud Prevention
Detect and prevent fraudulent activity
Monitor for security threats
Verify user identity
Enforce our Terms of Service
3. How We Share Your Information
Important: We do not sell your personal information to third parties.
We share your information only in the following circumstances:
3.1 With Other Users
Group Members: Users in your groups can see your name, profile picture, expenses you create, and balances between group members
Contacts: Users you invite can see your name and invitation message
3.2 With Service Providers
We share information with trusted third-party service providers who assist us in operating the App:
Cloud Hosting: Supabase (database and authentication services)
Analytics: Anonymous usage analytics to improve the app
Payment Processing: Apple App Store and Google Play Store for subscription management
Email Services: For sending transactional emails (account verification, invitations)
Customer Support: For responding to your support requests
3.3 For Legal Reasons
We may disclose your information if required by law or in response to court orders, legal processes, or requests from law enforcement or government agencies.
4. Data Storage and Security
4.1 Data Storage
Your data is stored on secure servers provided by Supabase (hosted on AWS)
Data is stored in compliance with industry standards
We retain your data for as long as your account is active or as needed to provide services
4.2 Security Measures
We implement appropriate technical and organizational measures to protect your information:
Encryption: Data is encrypted in transit (TLS/SSL) and at rest
Authentication: Passwords are hashed using industry-standard algorithms
Access Controls: Row-level security policies restrict data access
Regular Security Audits: We conduct regular security assessments
Secure Development: We follow secure coding practices
Note: However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
5. Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal information:
5.1 Access and Portability
Right to Access: Request a copy of your personal information
Data Portability: Receive your data in a structured, machine-readable format
5.2 Correction and Deletion
Right to Correct: Update or correct inaccurate information
Right to Delete: Request deletion of your account and associated data
5.3 Control and Objection
Right to Object: Object to certain processing of your information
Right to Restrict: Request restriction of processing in certain circumstances
Withdrawal of Consent: Withdraw consent for optional features
Account Deletion: Settings → Delete Account (permanently removes all your data)
We will respond to your request within 30 days.
6. Data Retention
6.1 Active Accounts
We retain your personal information for as long as your account is active and as necessary to provide services.
6.2 Deleted Accounts
When you delete your account:
Personal information is permanently deleted within 30 days
Some information may be retained in backup systems for up to 90 days
Anonymized usage data may be retained for analytics purposes
We retain certain information if required by law or for legitimate business purposes
6.3 Inactive Accounts
Accounts inactive for more than 3 years may be automatically deleted after reasonable notice.
7. Children's Privacy
EquiShare is not intended for users under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us at [email protected]. We will delete such information from our systems.
8. International Data Transfers
EquiShare is operated from Turkey. If you are located outside Turkey, please be aware that information we collect will be transferred to, stored, and processed in the United States (AWS servers via Supabase) and other countries where our service providers operate.
We ensure appropriate safeguards are in place for such transfers, including Standard Contractual Clauses approved by the European Commission and compliance with applicable data protection laws.
9. Your Privacy Choices
9.1 Account Information
Update your profile information in Settings
Change your email address and password
Manage contact permissions
9.2 Communications
Email Notifications: Manage preferences in Settings → Notifications
Push Notifications: Control via device settings
Transactional Emails: Cannot be disabled (required for account security)
9.3 Device Permissions
You can control the following permissions via your device settings:
Contacts: For importing contacts to invite to groups (optional)
Camera: For scanning receipts (optional)
Storage: For saving receipts and exporting data (optional)
Notifications: For receiving expense updates (optional)
10. Third-Party Services
10.1 Third-Party Links
The App may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.
10.2 Third-Party Integrations
We use the following third-party services:
Supabase: Database, authentication, and real-time services (Privacy Policy)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
Right to Know: Information about categories of personal information we collect, sources, purposes, and third parties
Right to Delete: Request deletion of your personal information
Right to Opt-Out: We do not sell your personal information
Non-Discrimination: We will not discriminate against you for exercising your CCPA rights
To exercise your CCPA rights, contact us at [email protected] or use the in-app privacy tools.
12. European Privacy Rights (GDPR)
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):
12.1 Legal Basis for Processing
We process your personal information based on:
Consent: You have given explicit consent
Contract: Processing is necessary to provide services
Legal Obligation: Compliance with legal requirements
Legitimate Interests: For our legitimate business purposes
12.2 GDPR Rights
Right to access, rectify, erase, or restrict processing
Right to data portability
Right to object to processing
Right to withdraw consent at any time
Right to lodge a complaint with a supervisory authority
12.3 Data Protection Officer
For GDPR-related inquiries, contact our Data Protection Officer at: [email protected]
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by:
Posting a prominent notice in the App
Sending an email notification (if you provided an email)
Updating the "Last Updated" date at the top of this policy
Continued use of the App after changes become effective constitutes acceptance of the revised Privacy Policy.
14. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us: