Legal
Privacy Policy
Effective April 19, 2025
KeepMySubs is a subscription tracking tool. This policy explains what personal data we collect, why we collect it, who we share it with, and how you can control it. We do not sell personal data.
What we collect
Account data
When you create an account we collect your email address and a hashed password. Authentication is handled by Supabase Auth — we never store plain-text passwords.
Subscription records
Subscription names, prices, billing cycles, renewal dates, categories, and reminder preferences you enter into the app. This is the core product data.
Billing emails and PDFs (Pro plan only)
If you're on the Pro plan and forward billing emails to your KeepMySubs mailbox, we receive those emails including their subject lines, body text, sender addresses, and any PDF or image attachments. This content is used only to parse charge details and match them to your subscriptions.
AI-processed text
PDF attachments are converted to structured text using Cloudflare Workers AI. Extracted text may also be sent to Google's Gemini API for higher-accuracy bill parsing. Gemini usage is capped per user per day and tracked internally. You can opt out of Gemini processing in Settings.
Usage and delivery logs
We log when reminder emails are sent, whether delivery succeeded, and when price-change alerts are created. This lets you audit what the app has done without guessing.
How we use it
Providing the service
Account data authenticates you. Subscription data powers your dashboard, renewal calendar, and reminder emails.
Automatic bill parsing
Billing email content and PDF text are used exclusively to extract charge amounts, service names, and dates so we can create or update subscription records on your behalf.
Sending reminders
We send reminder emails to your account address via Resend before each subscription renews. Delivery is logged to prevent duplicate sends.
Price-change alerts
We compare incoming charge amounts against your subscription history. A 10% or greater increase creates an in-app alert.
Third-party services
Supabase
Our database and authentication provider. All account and subscription data is stored in Supabase-managed Postgres. Supabase is GDPR-compliant and SOC 2 Type II certified.
Cloudflare
Application hosting and Workers AI runtime. PDF-to-text conversion runs inside Cloudflare's AI infrastructure. Processed text is not retained by Cloudflare beyond the request.
Resend
Transactional email service used to send reminder and alert emails. Resend receives your email address and the email content we generate; it does not receive your subscription data.
Google Gemini (optional)
When enabled, extracted bill text is sent to Google's Gemini API for parsing. This is subject to Google's API data use policies. You can disable Gemini processing in your account Settings at any time.
Data retention
Active accounts
All data is retained for as long as your account is active.
Billing import records
Raw inbound billing emails are stored as import records associated with your account. You can request deletion of specific imports or all imports at any time.
Account deletion
When you delete your account, all associated data — subscriptions, billing imports, charge history, alert logs, and delivery logs — is permanently deleted within 30 days.
Your rights
Access and export
You can view all subscription data, charge history, and delivery logs inside the app at any time.
Correction
You can edit or delete any subscription record, charge event, or account setting yourself through the dashboard.
Deletion
You can delete your account from the Settings page. To request deletion of specific data or your entire account, email us at hello@keepmysubs.com.
Portability
To request an export of your data, email us at hello@keepmysubs.com and we will respond within 30 days.
Contact
Questions or requests
If you have any questions about this policy, want to exercise your data rights, or need to report a concern, reach us at hello@keepmysubs.com. We aim to respond within 5 business days.