← Back to SaveScout AI

Privacy Policy

Effective date: April 30, 2026  ·  Version 2.2

1. Who We Are

SaveScout AI is operated by Kardoxa Labs Inc., a company incorporated in Ontario, Canada.

SaveScout AI ("we", "us", or "our") is a financial intelligence application that helps you analyse spending, track receipts, and discover savings opportunities. Our app is available on iOS and as a web application at savescoutai.com.

If you have questions about this policy, contact us at [email protected].

2. Information We Collect

We collect only the data needed to deliver the service:

2.1 Information You Provide

• Account information — your email address and display name, used to create and identify your account.
• Financial data — transactions, statement data (period, balances, account type), receipt details (merchant, items, totals, payment method, last 4 digits of card), and line items extracted from your uploaded documents.
• Uploaded documents — PDFs and images you provide (bank statements, receipts) are processed on our servers to extract financial data and are not retained. Original files are stored only on your device if you enable local saving.
• Financial accounts — account names, institution names, account types, and masked account identifiers (last 4 digits only). We never store full account numbers, card numbers, CVVs, or government-issued identification numbers.
• AI chat and voice queries — text or voice input you provide when using AI features is sent to our backend and processed by AI service providers to generate answers. Queries are not stored permanently.
• Voice session metadata — when you use the Scout Voice Agent, the duration of each session is recorded to enforce your monthly usage allowance (30 minutes per billing period). Conversation content is not stored.
• In-app purchase records — if you purchase voice top-up credits (consumable IAPs via StoreKit 2), we receive a receipt token from Apple to verify and credit your account. We do not receive or store your payment card details.
• Budgets and savings goals — budget limits and savings targets you set within the app.

2.2 Information Collected Automatically

• Device and connection data — when you use the service, our hosting infrastructure may log your IP address and basic request metadata as part of standard server operation.
• Usage metrics — we track aggregate feature usage counts (e.g., number of documents processed) for billing and service improvement. These metrics are tied to your account but do not include the content of your financial data.
• Voice usage metering — for paid subscribers using the Scout Voice Agent, session duration is aggregated server-side per billing period to enforce the 30-minute monthly allowance. This is a running total (in seconds); raw audio is never retained after processing.

2.3 Information Processed On-Device Only

The following data is processed entirely on your device and is never transmitted to our servers:

• Biometrics (Face ID / Touch ID) — used on iOS to unlock the app after inactivity. Biometric data is processed by your device's secure enclave.
• Camera — accessed only when you use the receipt scanner or select a photo. The camera feed is not recorded or stored on our servers.
• Widget data — if you install the iOS home screen widget, summary financial figures are shared with the widget via an on-device App Group container.

3. How We Use Your Information

• Provide, operate, and improve the SaveScout AI service.
• Extract and categorise your financial transactions, statements, and receipts.
• Generate AI-powered spending insights, budget recommendations, and savings opportunities.
• Analyse spending patterns and merchant relationships to provide financial intelligence.
• Authenticate your identity and protect your account.
• Detect duplicate uploads and match receipts to transactions.
• Respond to your requests and provide customer support.

We do not use your data for advertising, sell it to third parties, share it for marketing purposes, or use it to train AI models.

4. AI and Document Processing

SaveScout AI uses artificial intelligence services to extract data from documents, categorise transactions, answer financial questions, generate insights, and power voice interactions. When you use these features:

• Your data is sent to our AI service providers solely to process your request and return results.
• AI providers process your data under their standard commercial terms of service. We select providers whose terms prohibit using customer data for model training. See Section 6 for provider details and links to their privacy policies.
• We use multiple AI providers for different features (see Section 6). The specific provider used depends on the feature.

4.1 Voice Features

SaveScout AI has two distinct voice surfaces with different privacy profiles:

• Quick Voice Log (Apple Speech): When you dictate an expense using Quick Voice Log, speech-to-text is performed entirely on your device using Apple's on-device speech framework. No audio or transcript is ever transmitted to our servers or to any third party.
• Scout Voice Agent (paid tier): The Scout conversational voice agent uses a cloud pipeline: your audio is streamed in real time to LiveKit (our voice infrastructure provider), transcribed by Deepgram (speech-to-text), processed by an LLM to generate a response, and converted back to speech by Cartesia (text-to-speech). Audio is processed in real time and is not permanently stored. Voice sessions are not recorded. Session duration is metered server-side for your monthly allowance (see Section 2.2).

4.2 Trust Receipt

The Trust Receipt (Settings → Privacy) is an in-app audit log showing every external service that processed your data during the current billing period, in plain language. It is generated entirely from our own records — no data is sent to external services to produce it. You can review it at any time. It refreshes each time you open it.

5. Data Storage and Security

• Your data is stored in a secure, access-controlled cloud database. Row-level access controls ensure that you can only access your own data.
• All data is encrypted in transit (TLS) and at rest.
• Uploaded documents (bank statements, receipts) are processed on our servers to extract data and are not retained after processing. Original files remain on your device only.
• Morning briefing audio and advisor voice recordings are stored in private, access-controlled storage and are never accessible via public URLs.
• Sensitive configuration data (such as API keys) is encrypted at rest using industry-standard encryption.
• The iOS app enforces biometric re-authentication after a period of inactivity. Sessions automatically expire after a period of inactivity on all platforms.
• We maintain audit logs for security-relevant events. These logs do not contain your financial data.

For more details on our security practices, see our Security Statement.

6. Third-Party Service Providers

We use the following third-party service providers to deliver the service. Each provider operates under its standard commercial terms of service.

• AI inference: Anthropic, OpenAI, Microsoft Azure, Google Cloud
• Database & authentication: Supabase
• Voice & video: LiveKit, Deepgram, Cartesia
• Graph database: Neo4j
• Caching: Upstash
• Payments: Apple (StoreKit), Stripe
• Hosting: Hetzner

Links to each provider's privacy policy:

• Anthropic
• OpenAI
• Microsoft Azure
• Google Cloud
• Supabase
• LiveKit
• Deepgram
• Cartesia
• Neo4j
• Upstash
• Apple
• Stripe
• Hetzner

We do not use any advertising networks, cross-app tracking frameworks, or behavioural analytics services. We do not use the Apple App Tracking Transparency framework because we do not track users across apps or websites.

7. Data Sharing

We do not sell, rent, or share your personal or financial data with any party for advertising, marketing, or data brokerage purposes.

Data is shared only:

• With our service providers listed in Section 6, to the extent necessary to operate the service.
• If required by law, regulation, or valid court order, after making reasonable efforts to notify you unless prohibited by law.
• To protect the rights, safety, or property of Kardoxa Labs Inc., our users, or the public, as permitted by law.

8. Your Rights

8.1 All Users

Regardless of where you are located, you have the right to:

• Access — request a copy of the data we hold about you.
• Correction — request that inaccurate data be corrected.
• Deletion — request deletion of your account and all associated data (see Section 9).
• Portability — request an export of your transaction and receipt data in a standard format.
• Withdraw consent — you may stop using the app and request deletion at any time.

8.2 Canadian Residents (PIPEDA)

Under Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), you have the right to access your personal information, challenge its accuracy, and withdraw consent for its collection and use. We process your data on the legal basis of consent and contractual necessity. You may file a complaint with the Office of the Privacy Commissioner of Canada if you believe your rights have been violated.

8.3 California Residents (CCPA/CPRA)

If you are a California resident, you have the right to know what personal information we collect, the right to delete your personal information, and the right to opt out of the sale or sharing of your personal information. We do not sell or share your personal information as defined under the CCPA/CPRA. You will not receive discriminatory treatment for exercising your rights.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

9. Account Deletion and Data Retention

9.1 Account Deletion

You may delete your account at any time from within the app. SaveScout AI uses a "deletion that feels like deletion" flow designed to give you confidence that the wipe is real:

1. Preview: Before confirming, you see a plain-language list of everything that will be deleted.
2. Confirmation: You confirm the deletion. Your account is deactivated immediately and the 30-day deletion window begins.
3. Audit receipt: You receive a downloadable PDF confirming what was deleted and when. Keep this for your records.

Within 30 days of confirmation, the following are permanently deleted:

• All personal and financial data — transactions, receipts, statements, budgets, savings goals, financial accounts, uploaded documents, and your user profile.
• Your authentication credentials (removed from our authentication provider).
• Any files stored in our cloud storage (briefing audio, voice notes).
• Unused voice top-up credits (consumable IAP credits are forfeited on deletion).

After the 30-day period, the only record retained is an anonymised audit log entry (containing only an anonymous identifier and deletion timestamp, with no personal or financial information) for regulatory compliance.

9.2 Data Retention

• Financial data — retained for as long as your account is active, deleted within 30 days of account deletion.
• Security audit logs — retained for 7 years as required by financial record-keeping regulations. These logs do not contain personal financial data.
• Cached AI responses — cleared when new data is uploaded or periodically expired.
• Uploaded documents — deleted when you remove them from the app, or within 30 days of account deletion.

10. Children's Privacy

SaveScout AI is not directed at children. You must be at least 13 years of age to create an account and use the service. We do not knowingly collect personal information from anyone under 13. If you believe a child under 13 has provided us with personal information, contact us at [email protected] and we will promptly delete it.

11. International Data Transfers

Kardoxa Labs Inc. is based in Canada. Our infrastructure and service providers are located primarily in the United States and Canada. If you are located outside these countries, your data will be transferred to and processed in the United States or Canada. By using the service, you consent to this transfer.

Each service provider operates under its standard commercial terms of service and privacy policy, listed in Section 6.

12. Cookies and Tracking

SaveScout AI does not use cookies for advertising or cross-site tracking. We use only essential, first-party browser storage (such as local storage) to maintain your session and remember your preferences (e.g., theme selection). We do not use any third-party analytics, advertising, or tracking services.

The iOS app does not include any third-party analytics SDKs, advertising frameworks, or behavioural tracking libraries. Biometric authentication (Face ID / Touch ID) is handled entirely by Apple's secure enclave on your device — biometric data never leaves your device and is never accessible to us.

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the version number and effective date at the top of this page and, where appropriate, notify you within the app. Continued use of SaveScout AI after any changes constitutes your acceptance of the updated policy.

Previous versions of this policy are available upon request.

14. Contact Us

If you have questions, concerns, or requests regarding your privacy, please contact us:

• Privacy inquiries: [email protected]
• General support: [email protected]
• Website: savescoutai.com