Last Updated: May 2026
At Notepay, we take your privacy seriously. This Privacy Policy explains what information we collect, how we use it, and how we protect it.
1. Information We Collect
We collect the minimum amount of information necessary to provide you with a secure and functional experience:
- Authentication Data: Your phone number is used exclusively for OTP login and account verification.
- Profile Data: Your name and profile details are used to identify you within the events you join.
- Event Data: The financial records, expenses, and donations you log within events are stored securely in our database.
2. How We Use Your Information
Your data is strictly used to facilitate the core features of the Notepay application:
- To authenticate your identity and secure your account.
- To display your name and activity to other members of the events you explicitly join.
- To synchronize your data across your devices in real-time.
3. Data Sharing & Disclosure
We do not sell your personal data to third parties. Your information is only shared in the following contexts:
- Within Events: Your profile name and the entries you log are visible to the Organizers and other Members of the specific events you participate in.
- Legal Requirements: We may disclose information if required by law or in response to valid requests by public authorities.
4. Artificial Intelligence & Data Processing
To provide advanced features like our intelligent `@ai` assistant, Notepay uses third-party AI models (e.g., Google Gemini). By using these features, you agree to the following:
- Data Minimization: When you interact with the AI, only the specific financial data and context from that individual event are securely transmitted to the AI processor to generate a response.
- No PII Training: We strictly prohibit our AI providers from using your Personally Identifiable Information (PII) or your event data to train their public or foundational models.
- Opt-Out: If you do not wish for your event data to be processed by our AI features, you may choose to not use the `@ai` command within your events.
5. Data Security
We implement robust security measures to protect your personal information from unauthorized access, alteration, or disclosure. However, no internet-based service can guarantee 100% security. You are responsible for keeping your login credentials and device secure.
6. Your Rights
You have the right to access, update, or delete your personal information at any time. If you wish to permanently delete your account and all associated data, you can contact our support team or use the account deletion tools provided within the app.
7. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact our support team.