Privacy Policy

Last updated: June 2026

What we do

Purchase Tracker is a browser-based tool that helps Australian sole traders categorise bank transactions, attach receipts, and prepare BAS-ready reports. Your data stays on your own Google Drive — we don't have servers that store your financial information.

What data we access

When you sign in with Google, we request access to:

Your email address — used only to identify your account within the app. We don't send you emails or share your address.
Google Drive (app-specific files only) — we create and read a single JSON file in your Drive's app data folder to save your session. Receipt files are stored as individual files in your Drive. We cannot see or access any other files in your Drive.

What data we store

On our servers: nothing. Purchase Tracker runs entirely in your browser. Your transaction data, categories, receipts, and rules are saved to your own Google Drive account. We have no database and no server-side storage of your financial information.

Locally in your browser, we store:

Your Google authentication token (temporary, expires after 1 hour)
Your display preferences (dark mode, settings toggles)
Your Anthropic API key if you choose to enable OCR receipt scanning (stored in your browser's localStorage only — never sent to our servers)

Third-party services

Google Drive API — to save and load your session data. Governed by Google's Privacy Policy.
Anthropic API (optional) — if you provide your own API key for OCR receipt scanning, receipt images are sent directly from your browser to Anthropic's API. We don't proxy or store these requests. Governed by Anthropic's Privacy Policy.
Cloudflare — hosts the application files. Standard web server logs (IP address, page requested) may be retained by Cloudflare per their Privacy Policy.

What we don't do

We don't sell, share, or transfer your data to third parties
We don't use your data for advertising or marketing
We don't track your behaviour with analytics or tracking pixels
We don't access files in your Google Drive other than our own app data
We don't store your financial data on any server

Data deletion

To delete all your data:

In the app: Open Settings → Delete all data. This removes the session file from your Google Drive.
Revoke access: Visit Google Account Permissions and remove Purchase Tracker. This revokes our ability to access your Drive.
Browser data: Clear your browser's localStorage for this site to remove any locally stored preferences.

Children's privacy

Purchase Tracker is a business accounting tool not intended for use by anyone under the age of 18.

Changes to this policy

If we make material changes to this policy, we'll update the date at the top of this page. Continued use of the app after changes constitutes acceptance of the updated policy.

Contact

For privacy-related questions or concerns, contact us at: kaijunn94@gmail.com

Google API Services disclosure

Purchase Tracker's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.