Privacy Policy

SlipSync ("we", "us", "our") respects your privacy. This Privacy Policy explains how we handle personal information when you use our website, join our waitlist or beta programs, and use the SlipSync mobile application and related services (together, the Services).

We aim to meet the requirements of the Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs) in Schedule 1. Where our processing falls within scope, we also take into account obligations and expectations under comparable laws (including the EU and UK General Data Protection Regulation and related legislation), industry guidance, and platform rules that apply to mobile apps.

If you do not agree with this Policy, please do not use the Services. We may update this Policy from time to time; the "Last updated" date above will change and we will take reasonable steps to notify you of material changes where required by law.

Who we are

SlipSync is operated from Australia. For privacy enquiries and requests, contact us using the details under Contact us below. If we appoint a privacy officer or representative, we will publish updated contact details here.

Personal information we collect

The personal information we collect depends on how you interact with us. It may include:

• Identity and contact details — for example, name and email address when you join a wishlist or beta, contact support, or create or maintain an account.
• Account and service data — information you choose to enter in the app (such as expense, bill, settlement, or profile information) and technical metadata needed to operate sync, backups, or similar features if you enable them.
• Communications — messages you send us (including email content), feedback, and records needed to respond or improve the Services.
• Marketing preferences — where you opt in to receive updates or marketing communications (including optional tick-box consents on forms).
• Device and technical information — such as device type, operating system version, app version, approximate location derived from IP where relevant for security or analytics, diagnostics, and crash data where collected and permitted by your settings and applicable law.

We collect personal information directly from you where practicable, and from your device or service providers where necessary to provide the Services. Some information may be aggregated or de-identified so that it no longer identifies you; we treat such information in accordance with applicable law.

Purposes for which we use personal information

We use personal information for purposes that are reasonably necessary for our functions and activities, including to:

• provide, operate, maintain, and improve the Services;
• authenticate users, secure accounts, and detect and prevent fraud, abuse, or unauthorised access;
• communicate with you about the Services, beta or waitlist participation, support requests, and (where you have opted in) marketing or product updates;
• comply with legal obligations and respond to lawful requests from government or regulatory bodies;
• resolve disputes and enforce our terms; and
• conduct analytics and product improvement in line with this Policy and your choices (including device or app settings).

Where Australian law requires a lawful basis for processing, we rely on performance of a contract, consent (where obtained), legitimate interests balanced against your rights, or legal obligation as appropriate to the activity. Where the GDPR or UK GDPR applies, we identify and document lawful bases in line with those regimes (including where consent is required for certain communications).

Disclosure of personal information

We may disclose personal information to:

• Service providers who assist us (for example hosting, database or backend infrastructure, email delivery, analytics, crash reporting, customer support tools, or payment processing if applicable). We require these providers to protect personal information and use it only for the purposes we specify.
• Professional advisers where necessary (for example lawyers or accountants under confidentiality).
• Authorities where required or authorised by Australian or other applicable law, court order, or lawful government request.
• Corporate transactions — in connection with a merger, acquisition, or sale of assets, subject to appropriate safeguards.

Some of our service providers may store or process data outside Australia (including in the United States, European Economic Area, United Kingdom, or other regions). Where we disclose personal information overseas, we take reasonable steps under APP 8 to ensure the overseas recipient handles it in accordance with the APPs unless an exception applies. For EU/UK data subjects, we use appropriate safeguards (such as standard contractual clauses or adequacy decisions) where required by law.

Security

We implement reasonable technical and organisational measures designed to protect personal information against misuse, interference, loss, unauthorised access, modification, or disclosure. These measures may include encryption in transit, access controls, secure development practices, and vendor assessment. No method of transmission or storage is completely secure; we encourage you to use strong credentials and keep your devices updated.

Retention

We retain personal information only for as long as necessary for the purposes described in this Policy, unless a longer period is required or permitted by law (for example tax, audit, or dispute resolution). When retention ends, we take reasonable steps to destroy or de-identify information where appropriate.

Your rights (Australia)

Under the Privacy Act and APPs, you generally have the right to:

• request access to personal information we hold about you;
• request correction of personal information that is inaccurate, out of date, incomplete, irrelevant, or misleading;
• withdraw consent where processing is based on consent (without affecting the lawfulness of processing before withdrawal); and
• lodge a complaint (see below).

To exercise these rights, contact us using the details below. We will respond within a reasonable period and in line with statutory timelines where they apply. We may need to verify your identity before fulfilling certain requests.

International users (including GDPR)

If you are in the European Economic Area, United Kingdom, or other regions with dedicated privacy laws, you may have additional rights — such as to object to certain processing, request restriction, data portability (where applicable), or lodge a complaint with a supervisory authority. We honour such rights where required by applicable law. Our lawful bases and retention practices are described above; contact us for jurisdiction-specific questions.

Cookies and similar technologies (website)

Our website may use cookies or similar technologies for essential operation, preferences, or analytics. Where required, we obtain consent before non-essential cookies. You can control cookies through your browser settings.

If you choose Accept on our website banner, we load privacy-preserving analytics and performance measurementto understand aggregate traffic and how quickly pages load. Your choice is stored in your browser's local storageas "accepted" or "rejected" so we don't ask on every visit; you can clear site data for slipsync.app to reset it. If you decline, those tools are not loaded on that browser.

Children

The Services are not directed at children under the minimum age required to consent to online services in their jurisdiction without parental involvement. If you believe we have collected personal information from a child without appropriate authority, contact us and we will take appropriate steps.

Deleting your account

You can permanently delete your SlipSync account in the app at Settings → Session → Delete account. Deletion is initiated and completed in the app (not by email). We may ask you to confirm before your account is removed.

When you delete your account, we remove your sign-in and delete or anonymise your personal data, including your personal ledger, budgets, notification preferences, and device tokens. Shared expenses you participated in with friends remain in their history under a generic "Deleted user" label so their balances stay accurate. You may register again later with the same email as a new account. Some information may be retained for a limited period where required by law (for example tax, fraud prevention, or security logs).

Deleting your SlipSync account does not cancel an Apple App Store subscription for SlipSync Pro. Manage or cancel subscriptions in iPhone Settings → Apple ID → Subscriptions.

Complaints (Australia)

If you believe we have breached the APPs or your privacy, please contact us first at privacy@slipsync.app. We will acknowledge and investigate complaints promptly. If you are not satisfied with our response, you may complain to the Office of the Australian Information Commissioner (OAIC) — see oaic.gov.au.

Contact us

For privacy questions, access or correction requests, or this Policy:

• Email: privacy@slipsync.app
• General enquiries: support@slipsync.app