Privacy Policy for SubCheck

Last Updated: January 24, 2026

1. Introduction

Welcome to SubCheck ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://app.sub-check.com (the "Site") and use our subscription management application (the "Service").

We adhere to the privacy laws of the jurisdictions in which we operate, including the General Data Protection Regulation (GDPR) for the EU/UK, the Protection of Personal Information Act (POPIA) for South Africa, the California Consumer Privacy Act (CCPA) for US residents, and other applicable international standards.

2. Information We Collect

A. Personal Data

When you register for SubCheck, we may collect:

Contact Information: Name, email address.
Account Credentials: Passwords (hashed), or authentication tokens via Google Sign-In.
Subscription Data: Subscription names, costs, renewal dates, categories, and currencies that you manually input or import.
Billing Information: We use Paystack (a Stripe company) for payment processing. We do not store your credit card information on our servers.

B. Usage Data & Cookies

We automatically collect certain information when you visit, use, or navigate the Service:

Device Data: IP address, browser type, device info, operating system.
Usage Patterns: Features used, pages visited, time spent.
Cookies: We use cookies to maintain your session, preferences (like dark mode), and for analytics (e.g., Google Analytics) to improve our service.

C. AI Processing Data

If you use our "AI Image Scan" feature:

We process the uploaded images of receipts/invoices solely to extract subscription details.
These images are processed securely and are not retained longer than necessary to complete the extraction, unless you choose to save them as attachments.

3. How We Use Your Information

We use your information to:

Provide and manage your access to the Service.
Process payments and manage your subscription plan.
Send you renewal reminders (as per your settings).
Send administrative information, such as security alerts or policy updates.
Optimise and improve our app based on usage trends.

4. Legal Basis for Processing (GDPR/POPIA)

Consent: When you sign up and agree to this policy.
Contractual Necessity: To provide the services you subscribed to.
Legitimate Interests: To improve our product and ensure security.
Legal Obligation: To comply with financial and tax regulations.

5. Sharing Your Information

We do not sell your personal data. We only share data with:

Service Providers:
- Firebase (Google): For hosting, database, authentication, and cloud functions.
- Paystack: For payment processing.
- Google Analytics: For anonymous usage analysis.
Legal Requirements: If required by law, court order, or government regulation.

6. International Data Transfers

Your information may be transferred to and stored on servers located outside of your country (e.g., in the US or Europe). We ensure appropriate safeguards are in place (such as Standard Contractual Clauses) to protect your data in accordance with this policy.

7. Your Privacy Rights

Depending on your location, you may have the right to:

Access: Request a copy of the personal data we hold about you.
Rectification: Request correction of inaccurate data.
Erasure ("Right to be Forgotten"): Request deletion of your account and data. You can perform this directly within the app settings.
Portability: Request extensive export of your data (available via CSV export in the app).
Withdraw Consent: You can withdraw consent for marketing communications at any time.

8. Data Security

We use industry-standard security measures (SSL/TLS encryption, secure databases) to protect your data. However, no internet transmission is 100% secure, and we cannot guarantee absolute security.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us at: dorian@sub-check.com