← Back to Resibow

Privacy Policy

Last updated: 2026-05-11

The plain-English version

We don't sell your data. We don't advertise on your data. You own your receipts and expenses. You can export everything anytime. You can delete everything anytime. Your card details never touch our servers — Stripe handles all payments.

What we collect

  • Email address — required to sign in (we use magic links, no passwords).
  • Receipt images you upload — stored in Supabase Storage; see Security & access below for how we protect them.
  • Extracted receipt text + parsed fields — merchant, total, date, category, currency, notes.
  • Plan + usage counters— which plan you're on, how many receipts you've processed.
  • Stripe customer ID — if you upgrade. We never see your card number.

What we do NOT collect

  • Card numbers, partial card digits, or CVV codes (Stripe handles all of this)
  • Your contacts, location, or phone identifiers
  • Receipt data from anyone but you (no aggregate selling)

Why we're allowed to process your data (legal basis)

Under RA 10173 (Data Privacy Act) Section 12, we rely on these grounds:

  • Performance of a contract— signing you in, processing receipts you upload, billing your plan, and providing the export and warranty features you're paying for.
  • Legitimate interest— basic abuse prevention, rate-limiting, and service security. Balanced against your rights and limited to what's necessary.
  • Legal obligation — retaining payment records as required by tax and accounting law.

How receipt parsing works

When you upload a receipt, the image is sent to Supabase Storage and to Anthropic's Claude vision API for parsing into structured fields (merchant, total, date, category, currency).

Per Anthropic's commercial API terms, your receipt images are not used to train their models. Anthropic may retain inputs briefly (up to about 30 days) for abuse monitoring, after which they're deleted. We keep the original image you uploaded plus the structured fields in our database for as long as the receipt exists in your account.

Security & access

Your receipt images live in a private Supabase Storage bucket, encrypted at rest by the storage provider and served only over HTTPS. Row-level security policies tied to your account ID are what stop other signed-in users from reading your data — every read is checked against your session.

Being honest about what that means: Resibow staff with our service-role credentials can technically access stored images (the same way any SaaS operator can). We only do this when you ask us to — e.g. a support ticket where you report a broken upload — or if compelled by law. We don't use end-to-end encryption because OCR and your own re-viewing of receipts depend on the server being able to read the image.

When you delete a single receipt, both the image file and the database row are removed in the same request. When you delete your account, your auth record and every receipt, category, wrap, and image you own are removed from our live systems immediately; encrypted backups containing prior states expire within 30 days.

How long we keep data

  • Receipts, wraps, categories, profile — kept while your account is active.
  • Payment records (Stripe customer ID, invoice metadata) — retained for up to 5 years after your last transaction to meet PH tax and accounting record-keeping requirements.
  • Sign-in and security logs — up to 90 days for abuse investigation, then deleted.
  • After you delete your account — live data is removed immediately; encrypted backups roll off within 30 days.

International data transfers

Resibow runs on infrastructure hosted in the United States and European Union (Supabase, Vercel, Stripe, Anthropic, Resend). That means your data leaves the Philippines for processing. We rely on the contractual data-protection terms that each of these providers commits to (their published Data Processing Addenda) as the safeguard required by NPC Circular 16-02 and RA 10173 Section 21. By using Resibow, you consent to this cross-border processing.

Your data, your control

  • Export — Pro users (including Family Pro members) can export all receipts as CSV anytime.
  • Delete— From your account dropdown → "Delete account", you can delete every receipt, image, and personal record permanently. This is irreversible.
  • Access — Email hi@resibow.com for any data-access request.

Your rights under the Data Privacy Act

Resibow complies with RA 10173 (Data Privacy Act of 2012). As a data subject you have the right to:

  • Be informed about how your data is processed (this page).
  • Access the data we hold about you.
  • Object to processing for non-essential purposes.
  • Erase or block your data when no longer needed.
  • Rectify inaccurate data.
  • Data portability — receive your data in a structured, machine-readable format (our CSV export covers this for receipt data).
  • Damages for inaccurate, false, unlawfully obtained, or unauthorized use of personal information.
  • File a complaint with the National Privacy Commission if you believe we've mishandled your data, at complaints@privacy.gov.ph.

To exercise any of these rights, email hi@resibow.com. We'll respond within a reasonable period and at most within the timelines required by RA 10173.

Children

Resibow is not directed to children under 18 and we don't knowingly collect data from minors. If you believe a minor has created an account, email hi@resibow.com and we'll delete it.

Service providers

We use these third parties to run Resibow:

  • Supabase — auth + database + receipt image storage (US/EU regions)
  • Vercel — application hosting
  • Stripe — payment processing (your card never touches our servers)
  • Anthropic — OCR vision parsing (no training on your data; brief abuse-monitoring retention)

Changes to this policy

If we change anything material, we'll email you. We won't quietly expand what we do with your data without telling you.

Contact

Questions or data requests: hi@resibow.com