Conscia logo Conscia

Privacy Policy

Last updated: May 1, 2026

1. What We Collect

We collect only what's necessary to provide the Conscia experience:

  • Account information — email address and authentication provider (Email, Google, or Apple Sign-In).
  • Financial data you enter — transactions, budgets, and categories you create manually.
  • Receipt images — only when you use the receipt scanner (Premium). Images are processed and deleted within 24 hours.
  • AI interaction logs — your queries to the pre-purchase advisor and reflections, used to provide personalized responses.
  • Device & usage metadata — anonymized analytics (app version, OS, crash reports) to improve reliability.

2. What We Don't Collect

  • We never connect to your bank accounts or payment processors.
  • We never sell, rent, or share your personal data with third parties for advertising.
  • We never use your financial data to train AI models for other purposes.
  • We never store your Apple or Google authentication passwords.

3. How We Use Your Data

  • To provide the service — storing your transactions, budgets, and generating AI advice based on your spending context.
  • To improve the product — aggregated, anonymized usage patterns help us prioritize features.
  • To enforce freemium limits — we track monthly usage counts (AI assists, reflections) to apply tier limits.

4. AI & Your Data

When you use the AI pre-purchase advisor or reflections:

  • Your query and recent spending context are sent to an AI model to generate advice.
  • We use Amazon Bedrock (Claude) in production, which does not retain or train on your data.
  • AI interaction logs are stored in your account and can be deleted at any time.
  • Prompt sanitization is applied to prevent injection attacks.

5. Data Storage & Security

  • Data is stored in AWS infrastructure with encryption at rest and in transit.
  • Authentication is managed by AWS Cognito with industry-standard OAuth 2.0 / OIDC.
  • Receipt images are stored temporarily in encrypted S3 buckets and automatically purged.
  • Access to production systems follows the principle of least privilege with scoped IAM policies.

6. Your Rights

You have the right to:

  • Export your data at any time from Settings.
  • Delete your account and all associated data permanently.
  • Opt out of anonymized analytics.
  • Request a copy of all data we hold about you.

7. Third-Party Services

  • Apple App Store / Google Play — subscription billing is handled entirely by the platform. We only receive a transaction ID confirming your subscription status.
  • Google Sign-In / Apple Sign-In — used for authentication only. We receive your email and a unique identifier, nothing more.
  • Amazon Web Services — our cloud infrastructure provider, bound by their data processing agreements.

8. Children's Privacy

Conscia is not intended for children under 13. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated through the app and published here with an updated date.

10. Contact

Questions about this privacy policy? Reach us at privacy@getconscia.com.