Privacy Policy

Last updated: January 2025

1. Introduction

Elnxi (hereinafter "the App") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your information. Please read this policy carefully to understand our privacy practices.

2. Information We Collect

2.1 Information You Provide

When you register an account, complete your profile, or communicate with us, we collect information including: name, email address, phone number, date of birth, identification number, address, and financial information.

2.2 Automatically Collected Information

When you use the Platform, we automatically collect certain information including your IP address, browser type, operating system, access time, and pages visited. We use cookies and similar technologies to collect this information.

2.3 Third-Party Information

We may collect information about you from third-party sources such as credit reporting agencies, banks, and other financial institutions to verify your identity and assess your creditworthiness.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Provide, maintain, and improve our services
  • Process your transactions and send related information
  • Verify your identity and prevent fraud
  • Send you marketing and promotional communications
  • Comply with legal and regulatory requirements
  • Conduct data analysis and improve user experience

4. Information Sharing

We do not sell, trade, or rent your personal information. However, we may share your information with third parties in the following circumstances:

  • With service providers to deliver our services
  • To comply with legal requirements or government requests
  • To protect our rights, privacy, safety, or property
  • In case of business transfer or merger

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. This includes SSL encryption, firewalls, and secure servers. However, no transmission method is 100% secure, and we cannot guarantee absolute security.

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your user experience. Cookies are small text files stored on your device that help us remember your preferences and improve our services.

You can control cookies through your browser settings. However, disabling cookies may affect certain Platform features.

7. Your Rights

Under applicable data protection laws, you may have the right to:

  • Access personal information we hold about you
  • Correct inaccurate or incomplete information
  • Request deletion of your personal information
  • Object to our processing of your information
  • Request restriction of our processing of your information

8. Data Retention

We retain your personal information for as long as necessary to provide our services or as required by applicable law. When your information is no longer needed, we will securely delete or anonymize it.

9. Children's Privacy

The Platform is not intended for children under 18 years old. We do not knowingly collect personal information from children under 18. If we discover we have collected information from a child, we will delete it immediately.

10. Policy Changes

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the Platform constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy or want to exercise your privacy rights, please contact us:

Email: [email protected]

12. Legal Basis for Processing

We process your personal information based on the following legal grounds, depending on your jurisdiction: consent, performance of a contract, compliance with legal obligations, protection of vital interests, and legitimate interests.

  • Consent: You provide explicit permission for specific processing activities
  • Contract: Processing necessary to provide services and fulfill our agreement with you
  • Legal: Processing required to comply with applicable laws and regulations
  • Legitimate Interests: Processing that improves security, performance, and user experience without overriding your rights

13. International Data Transfers

Your information may be transferred to, stored, or processed in countries outside your place of residence. We implement appropriate safeguards, including contractual clauses and technical measures, to ensure your information is protected to standards equivalent to those in your jurisdiction.

14. Third-Party SDKs and Integrations

We may use third-party software development kits (SDKs) and analytics services to improve app performance and user experience. These providers may receive limited technical information, such as device identifiers or usage metrics, in accordance with their privacy policies.

We do not share your personal content. Where required, we obtain your consent before enabling specific integrations, and you may withdraw consent at any time.

15. Consent Management

When processing is based on consent, you may review, modify, or withdraw your choices within the app settings. Withdrawing consent will not affect the lawfulness of processing that occurred before the withdrawal.

For optional features such as financial app detection, you can toggle them on or off at any time to control data use.

16. Financial App Detection Details

Our financial health insights feature detects installed financial and payment app types on your device to compute a Personal Financial Health Score and spending habit analysis.

  • Scope: Only app categories and package names are analyzed to infer types
  • No Content Access: We do not access, process, or upload any app content, credentials, or personal data
  • Control: You can disable detection at any time in settings

17. Google Play Data Safety & Sensitive Permissions

We follow Google Play0s privacy and data safety requirements. Sensitive permissions are optional and processed locally on your device.

SMS Permission (Optional)

  • Purpose: Detect banking/payment SMS to auto-log transactions
  • Processing: All SMS parsing happens on-device; SMS content never leaves your device
  • Protection: On-device processing; no remote storage; minimal metadata only for categorization
  • Sharing: None — SMS content and metadata are not shared or uploaded
  • Retention: Transaction entries you accept are stored locally; you can edit or delete anytime
  • Control: Grant or revoke permission at any time in device settings

Contacts Permission (Optional)

  • Purpose: Match IOU phone numbers with contact names for clarity
  • Processing: Accesses names and numbers only; handled entirely on-device
  • Protection: No upload or remote storage; used solely to label IOUs
  • Sharing: None — contact details are not shared
  • Retention: Contact lookups are ephemeral; IOU records store only the resolved name/number you confirm
  • Control: Grant or revoke permission at any time without affecting core features

18. Data Access & Portability

  • Export: Export expenses, IOUs, and categories in standard formats (CSV/JSON)
  • View: Review all locally stored data via in-app settings
  • Access: Since SMS and contact data stay on-device, you always have full access

19. Data Deletion

  • Delete: Remove individual transactions, IOUs, or categories at any time
  • Clear: Clear all app data via device settings; uninstall to remove local data
  • Server Data: Request deletion of any server-stored account data via support

20. Compliance

We comply with applicable privacy and data protection requirements, including Google Play0s sensitive permissions policies and relevant financial app regulations. Region-specific obligations (e.g., India0s RBI/IT rules) are respected where applicable.

We are committed to protecting your privacy and maintaining your trust in Elnxi.