Privacy Policy

Last Updated: April 17, 2026

This Privacy Policy describes how Bujit AI ("we", "us", or "our") collects, uses, and protects your information when you use the Bujit mobile application ("App").

1. Information We Collect

1.1 Information Stored Locally on Your Device

  • Transaction data (amounts, notes, categories, dates) — stored via Apple's SwiftData framework
  • Budget settings and preferences
  • App settings (currency, language, appearance)
  • Receipt images — saved as files on your device

This data is never permanently stored on our servers.

1.2 Information Processed Through AI Services

Before any AI feature is used, the App asks for your explicit consent in-app. You can revoke consent at any time from Settings; doing so disables voice commands, receipt scanning, and AI chat.

When you use AI-powered features (after you have granted consent), the following data is temporarily sent to our secure proxy server and forwarded to Google's Gemini API:

  • Voice input: Speech transcription text (not raw audio) for expense parsing
  • Receipt scanning: Receipt image for amount, merchant, and category extraction
  • AI chat: Your question along with a summary of your transaction data

This data is transmitted securely via HTTPS and is not permanently stored on our servers.

1.3 Speech Recognition (Apple)

When you use voice input, the App uses Apple's Speech Recognition framework to convert your speech to text. Depending on your device and iOS version, Apple may process the audio on its servers to perform recognition — iOS prompts you for explicit permission the first time this is used ("Bujit would like to access Speech Recognition"). This is governed by Apple's Privacy Policy. Only the resulting transcription text — never raw audio — is sent to our AI service.

1.4 Authentication Data

We use Firebase Anonymous Authentication. This creates a random anonymous identifier on your device. No personally identifiable information is collected or required.

1.5 Subscription Data

Payment processing is handled entirely by Apple and RevenueCat. We do not collect, process, or store your payment information.

2. How We Use Your Information

  • To provide expense tracking and budgeting features
  • To process voice commands and receipt images via AI
  • To provide AI-powered spending insights and chat responses
  • To enforce rate limits and prevent abuse of AI services
  • To improve the App's functionality and user experience

3. Data Sharing

We do not sell, rent, or share your personal data with third parties. Data is only shared with the following processors, each of which provides contractual protections equivalent to or stronger than those described in this policy:

  • Google (Gemini API): For AI processing of voice, receipt, and chat features. Requests are handled under Google's Gemini API Additional Terms of Service, which prohibit Google from using your prompts, uploads, or responses to train or improve its models when accessed via the paid API. Data is retained briefly only for abuse monitoring and is not linked to your identity.
  • Firebase (Google): For anonymous authentication only. Governed by the Firebase Data Processing and Security Terms. No personal data is shared.
  • RevenueCat: For subscription management. Only anonymous subscription status is processed, under RevenueCat's Data Processing Addendum.
  • Apple: For payment processing through the App Store, governed by Apple's Privacy Policy.

We do not share data with advertising networks, analytics brokers, or other third parties.

4. Data Security

  • All financial data is stored locally on your device and encrypted by iOS
  • API communications use HTTPS encryption
  • Our proxy server validates authentication tokens and enforces rate limits
  • API keys are stored server-side and never embedded in the App

5. Data Retention

  • Local data: Retained on your device until you delete the App
  • AI processing data: Not retained beyond the API request/response cycle
  • Anonymous auth tokens: Managed by Firebase, linked to your device only

6. Your Rights

  • Access: All your data is stored locally and accessible at any time
  • Deletion: Deleting the App removes all local data
  • Consent: AI features are off by default and require your explicit in-app consent. You can revoke consent at any time from Settings → AI Features, which immediately disables voice, receipt scanning, and chat
  • Opt-out: Use manual entry to avoid any data being sent externally
  • Contact support@bujitai.com for any server-side data deletion requests

7. Children's Privacy

Bujit is not directed at children under 13. We do not knowingly collect information from children.

8. Changes to This Policy

We may update this Privacy Policy from time to time. Continued use after changes constitutes acceptance.

9. Contact Us

If you have questions, contact us at support@bujitai.com.