Back to homeFloosy

Privacy Policy

Last updated: February 23, 2026

Floosy ("we", "us", or "our") operates the Floosy mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App.

1. Information We Collect

Information You Provide

When you create an account and use the App, we collect information you provide directly, including:

  • Name and email address (via account registration or social sign-in)
  • Username and profile image
  • Financial data you enter: transaction amounts, descriptions, categories, tags, account names, balances, budgets, and savings goals
  • Voice recordings when you use the voice input feature
  • Text messages when you use the AI chat feature
  • Friend connections and shared expense data
  • Email addresses of non-users you invite via the friend invitation feature
  • Language and currency preferences
  • Privacy and notification preferences
  • Feedback submissions

Information Collected Automatically

When you use the App, we automatically collect certain information, including:

  • Device information (device type, operating system version)
  • Usage data (feature usage counts, last active timestamp)
  • Onboarding progress
  • Subscription and purchase status
  • Notification delivery tracking

Information We Do Not Collect

We do not collect precise location data, advertising identifiers (IDFA), health data, or browsing history. When you use the friend discovery feature, contact email addresses are transmitted to our servers to check for existing Floosy accounts. Contact names and phone numbers stay on your device and are never sent to our servers.

2. How We Use Your Information

We use the information we collect to:

  • Provide and maintain the App and your account
  • Process and store your expense data, accounts, and budgets
  • Deliver AI-powered features including voice transcription and chat insights
  • Facilitate friend splitting, settlements, and shared expenses
  • Convert currencies using real-time exchange rates
  • Send push notifications about account activity (friend requests, settlements, etc.)
  • Process subscriptions and manage your plan
  • Operate the referral program
  • Improve the App and develop new features
  • Communicate service-related updates

3. Third-Party Services

We share data with third-party service providers only as necessary to operate the App. We do not sell your personal information. Below is each service, what data it receives, and how it is handled.

Clerk (Authentication)

Clerk handles user authentication and account management. Clerk receives your email address, name, and authentication credentials (including OAuth tokens from Google or Apple sign-in) to securely manage your account.

Convex (Database & Backend)

Convex serves as our real-time database and backend infrastructure. All user data — including transactions, accounts, friends, chat history, and preferences — is stored on Convex servers with encryption at rest and in transit.

AI Processing (Groq and OpenAI)

Groq is our primary AI provider. When you use voice input, your audio recording is sent to Groq's Whisper model for transcription. When you use AI chat or voice input, text is sent to Groq's LLaMA model for parsing and generating responses. OpenAI serves as a fallback provider when Groq is unavailable. In both cases, your account name, friend names, and vocabulary hints may be included as context in AI prompts to improve accuracy. Audio recordings are processed in real-time and are not stored by either provider after processing. Neither Groq nor OpenAI uses your data to train their models.

RevenueCat (Mobile Subscriptions)

RevenueCat manages in-app subscriptions and purchases on iOS. RevenueCat receives your anonymous app user ID, purchase receipts, and subscription status. RevenueCat does not have access to your payment card details — all payments are processed by Apple through the App Store.

OneSignal (Push Notifications)

OneSignal delivers push notifications. OneSignal receives your internal account identifier, device push token, device platform, OS version, and notification preferences to send relevant alerts about friend requests, settlements, and account activity.

Resend (Transactional Email)

Resend sends friend invitation emails and split expense notifications to people you invite to Floosy, including non-users. Resend receives recipient email addresses solely for email delivery.

ExchangeRate-API (Currency Rates)

We fetch real-time currency exchange rates from ExchangeRate-API. No personal data is sent to this service — only a request for the latest rates.

4. AI Features and Your Data

Floosy uses artificial intelligence to power voice input and chat features. When you use these features:

  • Voice input: Your audio recording is transmitted to our AI provider's servers for transcription. The audio is processed in real-time and is not stored after processing. The resulting text transcript is stored in your account by default. You can disable voice history storage in Settings.
  • AI chat: Your text messages are sent to our AI provider for processing. Chat history is stored in your account to maintain conversation context.
  • No model training: Neither Groq nor OpenAI uses your data to train their models. Your data is used solely to generate responses for you.

You can control your AI data by disabling voice history in Settings and by deleting your account to remove all stored chat and voice data.

5. Data Security

We implement industry-standard security measures to protect your information, including:

  • Encryption at rest and in transit (TLS/SSL)
  • Secure authentication via Clerk with support for OAuth (Google, Apple)
  • Webhook signature verification for all third-party integrations
  • Input validation and sanitization to prevent injection attacks
  • Username-based identity system — your email and phone are never exposed to other users by default

However, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your data for as long as your account is active. Specifically:

  • Account data, transactions, and preferences are retained while your account is active.
  • Voice recordings are processed in real-time by our AI providers and are not stored by them after processing. Transcripts are stored in your account by default (you can disable this in Settings).
  • Chat history is retained while your account is active.
  • Notifications are automatically deleted after 90 days.
  • When you delete your account, all your personal data is permanently deleted. See Section 8 for full details on what is deleted and what is preserved.

7. Data Sharing

We do not sell, rent, or trade your personal information. We share data only with the third-party service providers listed in Section 3, and only as necessary to operate the App. We may also disclose information if required by law, regulation, or legal process.

8. Account Deletion

You can delete your account at any time from the App settings. When you delete your account, the following happens immediately:

  • Your authentication account is permanently deleted from Clerk.
  • All personal data is permanently deleted, including your transactions, accounts, budgets, voice commands, chat history, notifications, subscriptions, push tokens, referral records, custom categories, feedback votes, and usage data.
  • Feedback submissions you created are anonymized (attributed to "Deleted User") and preserved for community value.
  • Your profile information (name, email, phone, profile image) is removed and replaced with "Deleted User".
  • Your username is reserved to prevent impersonation.
  • Shared records with other users — specifically friend transaction entries and settlement requests involving you — are preserved with your account references removed, so the other party's financial records remain intact. Pending settlements and lending requests are automatically cancelled.
  • This process is irreversible — you cannot recover a deleted account or any associated data.

If you have an active subscription, please cancel it before deleting your account. You can manage your subscription in your device's App Store settings or visit Apple Subscription Management.

9. Your Rights

You have the right to:

  • Access your personal data through the App
  • Correct inaccurate data through your profile settings
  • Delete your account and associated personal data (see Section 8)
  • Control your privacy settings (email/phone visibility, voice history)
  • Opt out of non-essential push notifications
  • Withdraw consent for AI features by not using voice or chat input

To exercise any of these rights or make a data-related request, contact us at privacy@floosy.ai.

10. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

  • The right to know what personal information is collected, used, and shared
  • The right to request deletion of your personal data
  • The right to opt out of the sale of personal data — we do not sell personal data
  • The right to non-discrimination for exercising your privacy rights

11. International Data Transfers

Your data may be transferred to and processed in countries other than your own, including the United States, where our service providers operate. We ensure appropriate safeguards are in place to protect your information in compliance with applicable data protection laws.

12. Children's Privacy

Floosy is not intended for children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 13, we will take steps to delete it promptly. If you believe a child has provided us with personal data, please contact us at privacy@floosy.ai.

13. Tracking and Advertising

Floosy does not track you across other apps or websites. We do not use advertising identifiers (IDFA), and we do not serve advertisements. We do not share your data with ad networks or data brokers.

14. Apple-Specific Terms

For iOS users, this App complies with Apple's App Store Review Guidelines regarding data collection and privacy. Data collected through the App is handled in accordance with both this policy and Apple's privacy requirements. Our privacy practices are reflected in the App Store privacy nutrition labels.

15. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy in the App and updating the "Last updated" date above. Your continued use of the App after changes are posted constitutes acceptance of the updated policy.

16. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, contact us at: