Privacy Policy
Last updated: February 2026
This privacy policy explains how Reign collects, uses, and protects your personal data when you use our expense tracking service.
Data We Collect
We collect the following information to provide our service: email address, display name, receipt images, transaction data (amounts, merchants, dates, categories), OCR-extracted text from receipts, and wallet metadata (wallet names, currencies, balances).
How We Use Your Data
Your data is used solely for: personal expense tracking, receipt OCR processing to extract transaction details, shared household finance management within spaces you create or join, and subscription management.
Third-Party Services
We use the following third-party services to operate Reign: Supabase for hosting, authentication, and data storage; Stripe for payment processing; and an internal OCR service for receipt scanning. Your data is never sold to third parties.
Data Retention
Your data is retained for as long as your account is active. When you delete your account, all data is permanently purged within 30 days. Receipt images can be automatically deleted after OCR processing by enabling the option in your privacy settings. Deleted data cannot be recovered.
Your Rights
You have the right to: export all your data in JSON and CSV formats at any time, request complete account deletion, access all data stored about you within the app, control whether receipt images are retained after processing, and manage your privacy preferences in Settings.
Security
All data is encrypted in transit using TLS 1.2 or higher and encrypted at rest. Authentication is managed through secure session cookies. We do not use tracking cookies or third-party analytics.
Cookies
Reign uses only essential session cookies required for authentication (managed by Supabase). We do not use tracking cookies, advertising cookies, or third-party analytics cookies.
GDPR & CCPA Compliance
Reign is designed to comply with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). You may exercise your data subject rights — including access, correction, deletion, and portability — through the Settings page or by contacting us.
Contact
For privacy inquiries or to exercise your data rights, contact us at [email protected].