Security

Last updated: May 24, 2026

The short version: Your receipts and spending data are encrypted in transit and at rest. We use Google Sign-In so we never see or store your password. We don't connect to your bank. We don't sell or share your data, and we don't use it to train AI models.

Google OAuth sign-in HTTPS / TLS everywhere Encrypted at rest No bank linking No advertising trackers Export and delete anytime

How sign-in works

BiteSpend uses Google Sign-In (and Apple Sign-In once iOS ships) to identify your account. That means we never see your password, and there's no password for us to lose. Authentication is handled by Google's infrastructure, and only a short-lived identity token reaches our servers.

How your data travels

Every request between the BiteSpend app and our backend goes over HTTPS with TLS 1.2 or higher. Receipts uploaded for AI extraction travel over the same encrypted channel. Nothing meaningful is ever sent in the clear.

Where your data lives

Account info, expenses, budgets, and your purchase history are stored in a managed database operated by our hosting provider. Storage is encrypted at rest. Access is restricted to the backend service that runs BiteSpend, using credentials that rotate and are never embedded in the mobile app.

Receipt images are stored in an S3-compatible object store (Cloudflare R2 by default) with private access policies. The mobile app fetches them only through authenticated, short-lived signed URLs.

How AI processing works

When you scan a receipt, the image is sent to a frontier AI model (Gemini 2.5 Flash, accessed via our Forge gateway). The model extracts item names, prices, the vendor, and the total. It returns the structured result, and the request ends.

Important: AI processing is stateless. The model does not retain your receipt between scans, and your data is not used to train any AI model. Each scan is processed independently.

What we don't do

We don't connect to your bank. BiteSpend never asks for bank credentials, account numbers, or Plaid tokens. The only thing we read is the receipts you choose to scan.
We don't sell or share your personal data with advertisers, data brokers, or anyone else.
We don't include advertising SDKs in the mobile app. No Facebook SDK, no AppsFlyer, no tracking pixels.
We don't track your location. BiteSpend does not request location permissions.

Your controls

Export. You can download a full export of your data at any time from Settings → Your Data → Export My Data.
Delete. You can permanently delete every receipt, expense, budget, and recommendation from Settings → Your Data → Delete All My Data.
Sign out. Available from Settings on any device. Signing out does not delete your data.
Account deletion. To delete your entire account, including the underlying record, email contactus@gorkhabots.com.

Vulnerability reports

If you've found a security issue with BiteSpend, please email contactus@gorkhabots.com with details. Please give us a reasonable window to investigate and fix the issue before disclosing it publicly. We don't run a formal bounty program yet, but we appreciate responsible disclosure and will credit you on this page if you'd like.

More on data handling

For the full picture of what we collect and how it's used, see the Privacy Policy. For the rules of using the Service, see the Terms.