Pliro

Privacy Policy

Last updated: June 20, 2026

This Privacy Policy explains how Pliro ("Pliro," "we," "us," or "our") collects, uses, shares, and protects information when you use the Pliro receipt-scanner application and related services (the "Service"). If you do not agree with this policy, please do not use the Service.

Questions or requests about your privacy can be sent to privacy@pliroapp.com.

1. Our local-first approach

Pliro is designed to be local-first. When you scan a receipt, the image is captured, text is recognized, a PDF is assembled, and the result is saved on your device first, so the app works fully offline. Cloud services are used to sync and back up your data across your devices and to power optional features — not as the primary place your data lives. Some processing described below happens entirely on your device and is never sent to us or anyone else.

2. Information we collect

Account information

When you create an account or sign in, our authentication provider (Google Firebase Authentication) processes:

  • your email address (where applicable);
  • your display name (optional);
  • a unique account identifier (UID); and
  • the sign-in method you use — email and password, Google, Apple, or phone number (SMS).

If you sign in with Google or Apple, that provider shares a limited profile (such as your name, email, and a provider identifier) with us in accordance with their own terms and the permissions you grant. If you sign in by phone, your phone number is processed to send and verify a one-time code.

Receipt content

The core of the Service is your receipt data, which may include:

  • receipt and document images you capture or import;
  • text recognized from those images (OCR);
  • generated PDF documents of your receipts; and
  • parsed details such as merchant name, total amount and currency, date, line items, payment method, subtotal, tax, tip, store address, phone number, website, return policy, and order, transaction, invoice, or merchant tax/VAT identifiers.

Information you create in the app

  • Categories you define (including optional budgets and descriptions);
  • Merchants you add or edit; and
  • Preferences and settings, such as preferred currency, upload quality, color mode, Wi-Fi-only uploads, and whether AI and backup features are enabled.

Device and technical information

  • a push notification token and your device platform, used to deliver notifications (for example, when a receipt finishes uploading).

Location information

If you grant location permission, Pliro may determine approximate coordinates for a receipt's address. This geocoding is performed on your device, and the resulting coordinates are stored only on your device — they are not uploaded to our servers.

Device permissions

Depending on your platform, the app may ask for access to your camera (to capture receipts), photo library (to import images), location (to tag a receipt's location), and notifications. You can grant or revoke these in your device or browser settings; some features will not work without them.

Waitlist and website

If you join the waitlist on our website (pliroapp.com), we collect your email address and limited technical data — an irreversibly hashed form of your IP address plus your browser's user-agent — used only to prevent spam and abuse (we do not store your raw IP address). This is single opt-in: we use your email solely to notify you when Pliro becomes available, and you can ask us to remove it at any time at privacy@pliroapp.com. Waitlist data is stored using Firebase (see "How we share information" below).

3. How we use information

We use the information above to:

  • provide the Service — scanning, text recognition, PDF generation, organizing, searching, and budgeting;
  • sync your data across your devices and store backups in the cloud;
  • power optional AI features (see "AI features" below);
  • send you notifications you have enabled;
  • if you joined our waitlist, email you about Pliro's availability;
  • maintain the security, integrity, and reliability of the Service; and
  • comply with legal obligations.

4. On-device processing

On iOS and Android, text recognition (OCR) runs on your device and the receipt image is not sent to us for that purpose. On the web and macOS, where on-device recognition is not available, receipt images are sent to Google Cloud Vision to extract text. Geocoding of addresses is performed on-device on all platforms.

5. AI features

Pliro offers optional AI features, which you can turn off in the app's settings (they may also be disabled remotely by us):

  • Receipt normalization — to improve accuracy, the receipt image (up to the first two pages) and recognized text, along with your list of categories and merchants and your default currency, may be sent to Google's Vertex AI / Gemini models (via Firebase) to return structured receipt details.
  • Spending assistant — when you chat with the assistant, your question and relevant receipt and spending data are sent to the same models to generate a response.

These AI features are provided through Google as our service provider, and your data is processed under Google's and Firebase's data processing terms. AI output can be inaccurate or incomplete; you should review it before relying on it. If you disable AI, receipts are parsed using non-AI methods and the assistant is unavailable.

6. How we share information

We do not sell your personal information, and we do not share it for cross-context behavioral advertising. We share information only as follows:

  • Service providers (sub-processors). We use Google Firebase and Google Cloud to operate the Service, including: Firebase Authentication (sign-in), Cloud Firestore (syncing receipt metadata, text, settings, and notification tokens), Cloud Storage (storing receipt PDFs and recognized-text files), Cloud Functions (AI normalization), Cloud Vision (web/macOS text recognition), Vertex AI / Gemini (AI features), Remote Config (feature configuration), and Cloud Messaging (notifications).
  • Sign-in providers. Google and Apple, when you choose to sign in with them.
  • Backup destinations you choose. If you use the optional backup feature, the exported archive is saved to a location you select (such as iCloud Drive, Google Drive, or your file system). Your use of those services is governed by their own terms and privacy policies.
  • Legal and safety. We may disclose information if required by law or to protect rights, safety, and the integrity of the Service.
  • Business transfers. Information may be transferred as part of a merger, acquisition, or sale of assets, subject to this policy.

7. Backup and export

The backup feature is off by default and entirely under your control. When you use it, Pliro exports your local data (receipts, categories, merchants, settings, and associated files) into a single archive and saves it to the destination you choose. We do not receive or store that archive; protecting it is governed by the storage provider you select and your own settings.

8. Data retention and deletion

Your data is retained while your account is active. Local data is removed when you delete the app from a device. To delete your account and the data we hold in the cloud, or to request a copy of it, contact privacy@pliroapp.com. We will respond within the time required by applicable law.

9. Security

Data in transit is encrypted using industry-standard protocols, and cloud access is restricted by security rules that scope your data to your authenticated account. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

10. International data transfers

We use Google's infrastructure, which may process and store data in the United States and other countries where Google operates. Where required, these transfers rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses.

11. Your privacy rights

If you are in the European Economic Area or the United Kingdom (GDPR / UK GDPR)

You have the right to access, correct, delete, restrict, or object to the processing of your personal data, and to data portability. Where we rely on consent, you may withdraw it at any time. Our processing is based on performing our contract with you (providing the Service), your consent (for example, optional AI and location features), and our legitimate interests in operating and securing the Service. You may also lodge a complaint with your local supervisory authority.

If you are in California or another U.S. state with privacy rights (CCPA / CPRA and similar)

You have the right to know what personal information we collect and how we use it, to request access to or deletion of it, to request correction of inaccurate information, and to not be discriminated against for exercising these rights. We do not sell or share your personal information as those terms are defined under California law.

To exercise any of these rights, contact privacy@pliroapp.com. We will verify your request as required by law before responding, and you may use an authorized agent where permitted.

12. Children's privacy

The Service is not directed to children under 13 (or the minimum age required in your jurisdiction, such as 16 in parts of the EEA), and we do not knowingly collect personal information from them. If you believe a child has provided us information, contact us and we will delete it.

13. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date above and, where appropriate, provide additional notice. Continued use of the Service after an update means you accept the revised policy.

14. Contact us

Pliro privacy@pliroapp.com