Privacy Policy

Last updated: March 24, 2026

OneSpend ("we", "us", or "our") is an expense tracking application that helps you automatically track your financial transactions by reading bank notification emails from your Gmail account. This Privacy Policy explains what data we access, how we use it, and how we protect it.

1. Data We Access

When you sign in with Google and grant permission, OneSpend accesses your Gmail account with read-only access using the gmail.readonly OAuth scope. Specifically:

• We search your inbox for emails matching bank and financial transaction keywords (e.g., "debit", "credit", "transaction", "payment", "UPI", etc.).
• We read the content of matched emails to extract transaction details.
• We do not access, read, or index emails unrelated to financial transactions.
• We do not access Gmail drafts, sent mail, contacts, calendar, or any other Google service.

2. How We Use Your Data

Your email data is used exclusively to:

• Parse transaction notifications: We use AI (Google Gemini) to extract structured data from bank notification emails, including transaction amounts, merchant names, dates, payment methods, and transaction types.
• Categorize transactions: Extracted transactions are categorized to help you understand your spending patterns.
• Display your financial data: Transaction data is shown to you through the OneSpend dashboard, analytics, and reports.

3. What We Store

• Encrypted transaction data: Parsed transaction details (amount, merchant, date, category, payment method) are encrypted using AES-256-GCM before being stored in our database. Raw email content is not stored.
• Skipped email metadata: For emails that are scanned but determined not to contain transaction data, we store minimal metadata (email ID, subject line, skip reason) for debugging and quality improvement. No email body content is stored for skipped emails.
• Sync state: We store a sync cursor (Gmail history ID) to efficiently process only new emails on subsequent syncs.
• Account information: Your email address, name, and profile picture as provided by Google OAuth.

4. What We Do NOT Do With Your Data

• We do not sell, rent, or share your data with third parties.
• We do not use your data for advertising or ad targeting.
• We do not share your data with data brokers or information resellers.
• We do not use your data to train general-purpose AI or machine learning models. AI processing is performed per-user strictly for transaction extraction.
• We do not modify, delete, or send emails on your behalf. Our Gmail access is strictly read-only.
• We do not allow any human to read your email content or transaction data.

5. Data Security

We employ multiple layers of security to protect your data:

• Encryption at rest: All transaction data is encrypted using AES-256-GCM with per-user encryption keys. Keys are managed through HashiCorp Vault using envelope encryption.
• Encryption in transit: All data transmitted between your browser, our servers, and third-party services uses HTTPS/TLS.
• Key management: Encryption keys are stored in HashiCorp Vault, a secrets management platform. User-specific data encryption keys (DEKs) are wrapped by a key encryption key (KEK) managed by Vault's Transit engine, so plaintext DEKs never touch disk.
• Access controls: OAuth tokens and encryption keys are scoped per user. No user can access another user's data.
• Background sync service: The cron service that syncs your emails runs in an isolated environment with access only to the APIs and data stores it needs.

6. Data Retention and Deletion

You retain full control over your data:

• Delete individual transactions: You can delete any transaction from your account at any time.
• Delete all transactions: You can delete all transaction data and sync history from your account settings.
• Delete your account: You can permanently delete your entire account, including all transactions, categories, tags, and encryption keys. Account deletion also revokes Gmail access.
• Revoke access: You can revoke OneSpend's access to your Gmail at any time through your Google Account permissions.

When you delete data or your account, all associated records are permanently removed from our database. Encrypted data and wrapped encryption keys are destroyed. This action is irreversible.

7. Third-Party Services

• Google OAuth and Gmail API: Used for authentication and reading transaction notification emails (read-only).
• Google Gemini AI: Used to parse and extract structured transaction data from email content. Email content is sent to the Gemini API for processing and is subject to Google's Gemini API terms. Per Google's API terms, data sent through the paid API tier is not used to train Google's models.
• HashiCorp Vault: Used for encryption key management. Vault does not have access to your transaction data; it only manages encryption keys.

8. Google API Services User Data Policy

In accordance with the Limited Use requirements:

• We only request the permissions necessary to provide OneSpend's expense tracking functionality.
• We do not use Google user data for serving advertisements.
• We do not allow humans to read user data unless we have your affirmative agreement, it is necessary for security purposes, to comply with applicable law, or our use is limited to internal operations and the data has been aggregated and anonymized.
• We do not transfer Google user data to third parties except as necessary to provide or improve the app, to comply with applicable law, or as part of a merger/acquisition with notice to users.

9. Children's Privacy

OneSpend is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through a notice on the application. Your continued use of OneSpend after changes are posted constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or your data, please contact us at contact@onespend.in.