Privacy Policy

To provide the service: extract and categorise your receipts, calculate estimated tax, generate exports, manage your subscription, and keep your account secure. Our legal basis is performance of our contract with you and our legitimate interest in operating and securing the service.

We use a small number of trusted providers to run Forensix:

• Supabase — database and authentication (stores your account and transactions).
• Google (Gemini API) — your receipt images are sent to Google's AI to extract the line items, amounts and tax identifiers. This is core to how the scanner works.
• Stripe — payment processing for paid plans. We do not store your card details.
• Railway / Cloudflare — hosting and delivery.

We do not sell your data, and we do not share it for advertising.

Your data may be processed in the UK, the EU, and other countries where our providers operate, always under appropriate safeguards.

We keep your data while your account is active. If you delete your account, we delete your profile and receipts from our systems (subject to short technical backup windows and any retention the law requires).

You can access, correct, export, or delete your data at any time. The dashboard Settings page lets you export all your data and delete your account directly. You can also object to or restrict certain processing, and complain to your data protection authority.

We use encryption in transit, access controls, row-level security on the database, and an automated validation layer on extracted data. No system is perfectly secure, but we take protecting your financial data seriously.

We use only the cookies/local storage needed to keep you signed in and remember your preferences. We do not use advertising trackers.

Privacy questions or requests: hello@forensix.app.