Privacy Policy

Last updated: 2026-06-11

This Privacy Policy explains how Cody1 ("we", "us", or "our") collects, uses, and shares information when you use the Apexpense iOS application ("App") and our website at https://apexspence.cody1.co.uk ("Website").

We are the data controller for personal data described in this policy. If you have questions, contact us at [email protected] or via our support page.

1. Summary

Apexpense is a local-first app. Your expenses, receipts, mileage records, and reports are stored on your device. We do not operate a backend that receives or stores your financial data. The Website is a static marketing and support site hosted on Cloudflare Pages.

2. Information the App stores on your device

The App stores the following data locally on your iPhone or iPad using SwiftData:

• Expense records (merchant, amount, currency, category, date, notes, business-use percentage)
• Receipt and document attachments (photos and PDFs)
• Mileage trips (locations, distance, HMRC rates, claim amounts)
• Your profile name, email, and optional profile photo
• App settings (currency, tax rate, mileage rates, vehicle type)
• Smart categorisation rules learned from your entries
• Onboarding completion status and other preferences (UserDefaults / AppStorage)

We do not receive a copy of this on-device content simply because you installed the App. Deleting the App removes local data unless you have a device backup that includes it.

3. Permissions and on-device processing

The App may request access to:

• Camera — to scan paper receipts
• Photo library — to import receipt images
• Files — to import PDF receipts and export reports
• Location (if enabled for mileage map features) — to help plan routes; location is not transmitted to our servers

Receipt text recognition (OCR) is performed on your device using Apple's Vision framework. OCR results are stored locally with your expense or inbox records.

4. Information we do not collect in the App

• We do not require you to create an account with us.
• We do not use third-party analytics or advertising SDKs in the App.
• We do not sell your personal data.
• We do not transmit your expense data to external AI services.
• We do not use Open Banking or connect to your bank accounts.

5. Share extension

The Apexpense Share extension allows you to send images and PDFs from other apps into your receipt inbox. Imported files are saved locally within the App Group shared container on your device. No data is uploaded to our servers during import.

6. Website

When you visit the Website, Cloudflare (our hosting provider) may process standard web server data such as your IP address, browser type, and requested pages for security and delivery purposes. We do not operate a contact form that stores submissions on this site; please email us directly for support.

7. Lawful bases (UK GDPR)

Where UK GDPR applies to data we process:

• Legitimate interests: operating the Website, responding to support enquiries, and protecting our services.
• Contract / service delivery: responding to your support requests.
• Consent: where you contact us by email with personal information.

Data stored only on your device under your control is generally not processed by us as data controller until you choose to contact us (for example, by email for support).

8. Data retention

• App data: retained on your device until you delete records or uninstall the App.
• Support emails: retained for up to 24 months unless a longer period is required for legal or support purposes.
• Website logs: retained by Cloudflare according to their standard practices.

9. International transfers

Cloudflare may process Website request data outside the United Kingdom. Where required, appropriate safeguards such as standard contractual clauses are used by that provider.

10. Your rights

Under UK GDPR, you may have the right to:

• Access, rectify, or erase your personal data we hold (for example, support correspondence).
• Restrict or object to certain processing.
• Data portability, where applicable.
• Lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

To exercise your rights, contact [email protected].

11. Children's privacy

Apexpense is not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will take steps to delete it.

12. Security

We implement appropriate measures for data we process (such as support email). App data security also depends on your device passcode, biometrics, and iOS Data Protection. No method of storage is completely secure.

13. Changes to this policy

We may update this Privacy Policy from time to time. We will post the revised policy on this page and update the "Last updated" date. Material changes may also be communicated in the App where appropriate.

14. Contact

Cody1
Email: [email protected]
Website: Support