← Splitify

Privacy Policy

Last updated: 15 July 2026 · Français

The short version.

The full detail is below. If anything here is unclear, email us — the address is at the bottom.

1. Who is responsible for your data

Splitify is published by Loik Faure-Berlinguette, an individual developer based in France, who is the data controller for the purposes of the General Data Protection Regulation (GDPR / RGPD).

Contact: appstudio.co@gmail.com

We have not appointed a Data Protection Officer, as we are not required to. Requests sent to the address above reach the person responsible directly.

2. What we collect

Splitify is designed to work without knowing who you are. We collect only what the app needs to function:

Category What it is
Account identifier A random identifier generated by our server the first time you open the app. It is not derived from your device, your name, or anything about you. It is the only thing that represents your account.
Content you create The groups and expenses you enter: group titles, expense descriptions, amounts, currencies, dates, who paid, how a cost is divided, and the resulting balances. This includes the names you type for the people you split with (see section 5).
Device information A notification identifier from OneSignal, an identifier the app generates for your installation (it changes if you reinstall), your platform (iOS or Android), the app version, your time zone, and your language setting. We use these to send you the right notifications at the right time in the right language.
Technical logs When your app talks to our server, our hosting provider (Google Cloud) automatically records the request, including your IP address and the app making it. This is standard infrastructure logging that we do not control in detail, and we do not use it to build any profile of you. These logs are kept for 30 days by default.

3. What we do not collect

We think this list matters as much as the one above. Splitify does not collect, request, or have any access to:

We do not sell your personal data, and we do not share it with data brokers or advertisers. We never have.

4. Why we process it, and on what legal basis

Under Article 6 of the GDPR, we rely on the following legal bases:

We do not use your data for automated decision-making or profiling that produces legal or similarly significant effects.

5. The names you enter about other people

When you add someone to a group, you type a name for them. That person may not use Splitify and may never have heard of us — but that name is their personal data, and you are the one choosing to enter it.

Please only enter what you actually need. A first name or a nickname is usually enough; there is no reason to enter a full name, and no field asks for any other detail about them. When you share a group, the other members can see the names and amounts in it.

If you are a person whose name appears in someone's Splitify group and you want it removed, contact us at the address in section 12 and we will help, though in most cases the fastest route is to ask the person who created the group.

6. Who else sees your data

We use two service providers. Both process data on our instructions, under contract.

We also fetch currency exchange rates from third-party currency APIs. Those requests contain only currency codes such as "EUR" and "USD" — no personal data and nothing about you is sent.

Beyond this, we disclose data only where the law requires it — for example in response to a valid legal request — or if Splitify were ever transferred to someone else, in which case we would tell you before it took effect and you would keep every right described here.

Where a provider processes data on our behalf, our contract with them requires protection equivalent to what this policy describes.

7. Data leaving the European Union

Your expenses, groups and account are stored in the European Union and stay there.

Two transfers outside the EU do occur:

You can ask us for more detail about these safeguards at the address in section 12.

8. How long we keep it

We would rather tell you exactly what happens than quote a tidy number:

If you want your data gone, the reliable way is to ask — see the next two sections.

9. Your rights

Under the GDPR you have the right to:

To exercise any of these, email appstudio.co@gmail.com. We reply within one month, as the GDPR requires. Because accounts are anonymous, we may need you to send the request from the device holding the account, or to give us your account identifier, so we can be sure we are acting for the right person and not handing your data to someone else.

10. Deleting your account, and what survives

You can ask us to delete your account at any time by emailing appstudio.co@gmail.com. Doing so permanently removes your account record, your device records, and your notification settings.

Deletion does not erase your history from groups you shared with other people. The expenses you entered, the amounts, and the name recorded for you remain visible to the other members of those groups. This is deliberate: those records are also their financial history, and removing your side of a shared ledger would destroy their record of what they paid and what they are owed. We rely on Article 17(3) of the GDPR here, which allows retention where erasure would override the rights of others. Once every member of a group has deleted their account, the whole group and its expenses are removed.

If you want the name shown for you in a shared group changed or reduced to an initial, ask us and we will do that — it achieves most of what people want without damaging anyone else's records.

11. Security

Traffic between the app and our servers is encrypted in transit using TLS. The authentication tokens the app stores on your device are held in encrypted storage. Access to our production systems is limited to the developer named in section 1.

Two things you should know rather than have to guess at: the copy of your groups and expenses that the app caches on your device, so it works offline, is not separately encrypted by us beyond the protection your phone's own operating system provides. And no method of transmission or storage is completely secure — we can describe what we do, but we cannot promise the impossible.

If you believe you have found a security problem in Splitify, please tell us at appstudio.co@gmail.com. We would genuinely rather hear it from you.

12. Children

Splitify is not intended for children. In France, the age at which a person can consent on their own to a service like this is 15 (Article 45 of the Loi Informatique et Libertés). Elsewhere in the European Union it ranges from 13 to 16 depending on the country. If you are under the applicable age, please use Splitify only with the involvement of a parent or guardian.

We do not knowingly collect data from children below that age. Because the app never asks who you are, we have no way of detecting it — so if you are a parent or guardian and believe your child's data is in Splitify, contact us and we will delete it.

13. Complaints

If you think we have handled your data badly, please tell us first — we would like the chance to fix it. You also have the right to lodge a complaint with a supervisory authority at any time.

In France, that authority is the Commission Nationale de l'Informatique et des Libertés (CNIL), 3 place de Fontenoy, TSA 80715, 75334 Paris Cedex 07 — www.cnil.fr. If you live elsewhere in the EU, you may complain to your own national authority.

14. Changes to this policy

We may update this policy as Splitify changes. If we make a change that matters to you, we will update the date at the top of this page and, for anything significant, tell you in the app before it takes effect. The current version always lives at https://splitify.cc/privacy-policy/.

15. Contact

Questions, requests, or complaints about this policy or your data: appstudio.co@gmail.com.