Yomex

Privacy Policy

Effective date: October 1, 2026

This Privacy Policy explains how Yomex ("Yomex", "we", "us") collects, uses, discloses, and protects information in connection with our websites, applications, and related services (collectively, the "Services"). By using the Services, you agree to the practices described in this policy.

1. Information We Collect

  • Account Information: name, email address, password hash, and settings you configure within your account. We receive OAuth information from Google Sign-In and Sign in with Apple when you use those sign-in options.
  • Financial Context: optional budgeting inputs, goals, and categories you create. We do not store bank credentials. If you choose to connect financial accounts via a third‑party provider, data handling is governed by that provider's policies.
  • Receipt Photos: receipt images you upload are stored and processed in association with your account and used for app functionality and personalization.
  • Voice/Audio Data: voice input is processed in association with your account for app functionality and personalization.
  • Usage Data: device and log information, approximate location (from IP), pages viewed, and interactions to help us improve performance and user experience.
  • Cookies and Similar Technologies: used for authentication, preferences, and analytics. See Cookies section below.

2. How We Use Information

  • Provide, maintain, and improve the Services and user experience.
  • Personalize content, insights, and recommendations.
  • Process payments and manage subscriptions.
  • Monitor security, prevent abuse, and detect fraud.
  • Communicate with you about product updates, offers, and important notices.
  • Comply with legal obligations and enforce our terms.

3. When We Share Information

We do not sell personal information. We do not use data collected in the app for cross-app or cross-website tracking for advertising or ad measurement, and we do not sell or share personal information for targeted advertising.

We may share information with: (a) service providers who perform services on our behalf under contractual confidentiality obligations; (b) third parties when you explicitly authorize integrations; and (c) authorities if required by law or to protect rights, safety, or property.

3.1 Service Providers

We use the following service providers for specific purposes:

  • Firebase (Google): Push notifications. We share device identifiers (e.g., push tokens, app instance IDs) with Firebase for notification delivery and, where applicable, stability and analytics.
  • Brevo: Our email delivery provider sends account-related emails (e.g., magic link, password reset, verification) on our behalf. Data shared: email address and the content of those emails.
  • Expo: If you use our mobile app, Expo may receive app version and related data for over-the-air (OTA) updates and service delivery.

4. Data Retention

We retain personal information only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce agreements. We apply safeguards to archive or delete information when it is no longer needed.

5. Security

We employ administrative, technical, and physical safeguards designed to protect information against unauthorized access, loss, misuse, or alteration. No system is perfectly secure; you are responsible for safeguarding your account credentials.

6. Your Choices and Rights

How to Exercise Your Privacy Choices

You can manage your privacy choices via the in-app Privacy dashboard, and/or by visiting https://useyomex.com/privacy and using the options and contact details there (access, deletion, opt-out, correction, etc.). For all privacy choices (access, deletion, opt-out, correction), use the link above or contact hello@useyomex.com.

How to delete your data without closing your account

You can delete specific data in Yomex while keeping your account active.

How to do it

  • In the Yomex app: Go to Settings → Privacy dashboard (or Account / Data), then choose which data to delete (e.g. transactions, accounts, goals, receipts, AI history). You can delete individual items or use bulk deletion where available.
  • By email: Email hello@useyomex.com from the email linked to your account to request deletion of specific data (e.g. a category, time range, or type of data). We will process your request and confirm when done.

What you can delete: Transactions, accounts, budgets, goals, receipt images, AI processing history, and other data you have added. You can remove these selectively without closing your account.

What we may keep and for how long: We may retain data where required by law (e.g. tax or financial records) for the period mandated by applicable regulations. Deleted data may remain in backups until the next backup cycle (typically within 30 days). After that, it is removed from active and backup systems.

Delete your account

Yomex lets you request full account and data deletion at any time. A dedicated page with this information is at https://useyomex.com/delete-account.

How to request deletion

  • In the app: Open Settings → Account → Delete account, and follow the confirmation steps.
  • By email: Send a deletion request to hello@useyomex.com from the email linked to your Yomex account. We will process your request and confirm once deletion is complete.

What we delete: When you delete your account, we delete your profile, account credentials, transactions, budgets, goals, receipt images, voice/audio data, and any other personal and financial data associated with your Yomex account.

What we may keep and for how long: We may retain certain data where required by law (e.g. tax or financial records) for the period mandated by applicable regulations. Backups may hold deleted data until the next backup cycle (typically within 30 days). After that, your data is removed from active and backup systems.

  • Access, Correction, Deletion: You can access and update certain information in your account settings. You may request deletion of your account and associated personal information by contacting us (see "Delete your account" above).
  • Marketing Communications: You may opt out of non‑essential emails via the unsubscribe link in messages or by adjusting preferences.
  • Cookies: You can control cookies through browser settings. Disabling cookies may affect some features.

7. International Data Transfers

We may process information in the United States and other countries. Where required, we use appropriate safeguards (such as standard contractual clauses) to protect personal data transferred internationally.

8. Children's Privacy

The Services are not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children. If we learn that a child has provided us with personal information, we will take steps to delete it.

9. Cookies and Analytics

We use cookies and similar technologies to keep you signed in, remember preferences, and measure engagement. We may use analytics tools to understand usage trends and improve the Services. Where required by law, we obtain consent for non‑essential cookies.

10. Changes to this Policy

We may update this Privacy Policy from time to time. We will post the updated policy with a new effective date. Your continued use of the Services after the effective date indicates your acceptance of the updated policy.

11. Contact Us

If you have questions or requests, contact us at hello@useyomex.com or by mail at Yomex, San Francisco, CA.

Appendix B: Third-Party Data Processors

Service ProviderPurposeData SharedLocationSafeguards
Firebase (Google)Push notificationsDevice identifiers / tokensUS / GlobalDPA, purpose limitation
BrevoTransactional email (auth, password reset)Email address, email contentEU / USDPA
ExpoOTA updates / app deliveryApp version (as applicable)Per Expo policyPer Expo policy

This policy describes our current practices and does not create contractual rights or obligations beyond those required by law.