Last updated: February 23, 2026
O$P$ ("Owe Money, Pay Money") is a free, open-source expense splitting application. We respect your privacy and collect only the minimum data needed to provide the service. We do not sell, rent, or share your personal information with third parties for marketing purposes.
Account information: When you sign up, we store your email address and display name. If you sign in with Google, we receive your name, email, and profile picture from Google's OAuth service.
Expense data: Group names, expense descriptions, amounts, split details, and settlement records that you create within the app.
Receipt images: If you use the receipt scanning feature, your receipt photos are stored in a private storage bucket. Images are processed by a third-party AI vision model (via OpenRouter) for text extraction. Receipt images are only accessible to authenticated group members.
Technical data: We do not use analytics trackers or third-party cookies. Standard server logs (IP addresses, timestamps) may be retained by our hosting providers (Netlify, Supabase) per their respective privacy policies.
Your data is used solely to provide the expense splitting service: authenticating your identity, storing your expenses and groups, computing balances, sending transactional emails (account confirmation, password reset, group invitations), and parsing receipts. We do not use your data for advertising, profiling, or any purpose unrelated to the core functionality of the app.
O$P$ relies on the following third-party services, each with their own privacy policies:
Supabase — database, authentication, and file storage (hosted in Singapore). Netlify — web hosting and serverless functions. Google — OAuth sign-in (only if you choose Google login). Resend — transactional email delivery. OpenRouter — AI vision model for receipt parsing (receipt images are sent to their API for text extraction only).
Authentication tokens are encrypted with AES-256-GCM and stored in httpOnly cookies that JavaScript cannot access. All communication is over HTTPS. Database access is protected by Row Level Security policies ensuring users can only access their own groups and expenses. Passwords are hashed with bcrypt by Supabase and never stored in plaintext. Receipt images are stored in a private bucket accessible only via time-limited signed URLs.
Your account and expense data is retained for as long as your account exists. When you delete an expense, associated splits, line items, and receipt images are permanently removed. You can request deletion of your account and all associated data by contacting us.
You can view, edit, and delete your expense data directly within the app. You can leave any group at any time. For account deletion or data export requests, contact us at the email below.
O$P$ is fully open source. You can inspect exactly what data is collected and how it is handled by reviewing the source code at github.com/ClementLSW/osps.
For privacy questions or data requests, contact contact@clementlsw.com.
We may update this policy from time to time. Changes will be reflected on this page with an updated date. Continued use of the app after changes constitutes acceptance of the revised policy.