Legal

Privacy Policy

We built DocRizz to make managing receipts less painful — not to monetize your data. Here's exactly what we collect and why.

Last updated: February 18, 2026

Contents

  1. 1. Who We Are
  2. 2. Data We Collect
  3. 3. How We Use Your Data
  4. 4. Third-Party Services
  5. 5. Data Retention
  6. 6. Security
  7. 7. Your Rights
  8. 8. Children's Privacy
  9. 9. Changes to This Policy
  10. 10. Contact Us

1. Who We Are

DocRizz ("we", "us", or "our") is a receipt management application that helps individuals and small teams organize receipts, track tax deductions, and export financial records. This Privacy Policy applies to our iOS app, web app, and all related services accessible at docrizz.com.

2. Data We Collect

2a. Account Information

When you create an account we collect:

  • Email address (email/password sign-up)
  • Phone number (phone sign-up or 2FA)
  • Name and profile picture (Google Sign-In)
  • A unique user ID assigned by Firebase Authentication

2b. Receipt & Document Data

When you upload a receipt or document we collect:

  • The image or file itself (stored in the cloud, encrypted in transit and at rest)
  • AI-extracted metadata: vendor name, amount, date, category, and line items (processed by Google Gemini)
  • Project assignment and any notes you add
  • File type and upload timestamp

2c. Usage Data

  • Device type, OS version, and app version
  • Pages or screens visited and features used
  • Error logs and crash reports

2d. Payment Information

Subscription payments are processed through Apple In-App Purchase (iOS) or Stripe (web). We do not store credit card numbers or full payment card data on our servers.

3. How We Use Your Data

We use the information we collect exclusively to:

  • Provide and improve the DocRizz service
  • Authenticate you and secure your account
  • Process receipt images with AI to extract structured data
  • Calculate tax deduction estimates and generate reports
  • Enable project sharing and collaboration features
  • Send transactional emails (password resets, verification codes)
  • Diagnose bugs and improve app performance
  • Process subscription payments and manage billing

We do not sell, rent, or trade your personal information or your receipt data to any third party for advertising or marketing purposes.

4. Third-Party Services

DocRizz relies on the following third-party providers. Each has its own privacy policy.

Firebase (Google LLC)

Authentication, token management.

firebase.google.com/support/privacy

Google Gemini API (Google LLC)

AI-powered OCR and receipt data extraction. Receipt images are sent to Gemini for processing and are subject to Google's API data usage policy.

ai.google.dev/gemini-api/terms

Google Drive API (optional)

If you connect Google Drive, we store receipts in your personal Drive folder. We only access the specific folder you authorize.

policies.google.com/privacy

Apple In-App Purchase

Subscription billing on iOS. Payment data is handled entirely by Apple.

apple.com/legal/privacy

5. Data Retention

  • Your account data and receipts are retained as long as your account is active.
  • When you delete a receipt, the file and its metadata are permanently deleted from our storage.
  • When you delete your account, all associated data (projects, receipts, files) is permanently deleted within 30 days.
  • Anonymized, aggregated usage statistics may be retained indefinitely.

6. Security

We take security seriously. Your data is protected by:

  • All data is encrypted in transit (TLS) and at rest
  • Your files are never publicly accessible — only you and the people you explicitly share with can view them
  • Authentication sessions use short-lived tokens that automatically expire
  • Access to your projects and receipts is strictly isolated — other users cannot access your data

No method of transmission over the internet is 100% secure. If you discover a security issue, please report it to us at security@docrizz.com.

7. Your Rights

Regardless of where you live, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Correct — update inaccurate account information via Settings
  • Delete — permanently delete your account and all associated data from Settings
  • Portability — export your receipts as CSV or other formats
  • Withdraw consent — disconnect Google Drive or revoke other permissions at any time

To exercise any of these rights, contact us at privacy@docrizz.com or use the in-app Settings → Account → Delete Account.

8. Children's Privacy

DocRizz is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us at privacy@docrizz.com and we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top and notify you via email or an in-app notice for material changes. Your continued use of DocRizz after changes are posted constitutes your acceptance of the updated policy.

10. Contact Us

If you have any questions about this Privacy Policy, please reach out:

General: support@docrizz.com

Privacy: privacy@docrizz.com

Security: security@docrizz.com

Website: docrizz.com