Privacy Policy — Centsei

Last updated: 15 June 2026

Centsei is a personal expense tracker built to be private by default. This policy explains exactly what happens to your data.

1. Your data lives on your device

Your transactions, categories, budgets, and settings are stored locally on your device (in the browser's IndexedDB / localStorage). We do not have a server that holds your ledger, and we cannot see it.

2. Optional cloud sync — end-to-end encrypted

If you turn on Cloud Sync, your data is encrypted on your device (AES-GCM, with a key derived from your sync code) before it is uploaded. Our server stores only the encrypted blob and can never read its contents. Your sync code and encryption key never leave your device. If you lose your sync code, the data cannot be decrypted by anyone, including us.

3. Receipt scanning (third-party AI)

If you use "Scan receipt", the photo you choose is sent — over an encrypted connection, through our processing endpoint — to Anthropic (the Claude API) solely to extract the amount, date, merchant, and category. We do not store the image; it is processed and discarded. Anthropic processes the image under its own terms; per Anthropic's policy, API inputs are not used to train its models. If you do not use receipt scanning, no images are ever sent anywhere.

If you supply your own Anthropic API key (optional), that key is held only in memory to forward the request and is never stored or logged by us; it is saved only on your own device.

4. No accounts, no ads, no tracking

Centsei has no sign-up, no advertising, and no analytics or third-party trackers. To enforce the free monthly receipt-scan limit, an anonymous random identifier (a UUID) is generated on your device and sent only with scan requests. It is not linked to your identity and contains no personal information.

5. Children

Centsei is a general-audience utility and is not directed at children under 13.

6. Deleting your data

Because data is local, you can remove it by deleting your entries, clearing the app's website data, or uninstalling. If you used Cloud Sync, stopping sync leaves the encrypted copy until it expires or is overwritten.

7. Changes

We may update this policy; the "Last updated" date will change accordingly.

8. Contact

Questions about privacy: yuxuanchin95@gmail.com

This document is a good-faith plain-language summary, not legal advice. Before selling Centsei in your market (and especially for GDPR/EU, UK, CCPA/California users), have a qualified lawyer review it and add any jurisdiction-specific terms.