Privacy Notice

Last updated: May 15, 2026

1. Who we are

BillSlash (the "Service") is operated by the owner of billslash.com. We act as the data controller for personal data we collect about you.

2. Data we collect

• Account data — name, email, password (hashed), display name.
• Bill data you enter — provider, category, amount, billing cycle, notes, optional account number.
• Documents you upload — bill statements stored in our encrypted vault.
• Usage data — pages viewed, features used, device/browser identifiers, IP address.
• Support communications — messages you send us.

3. Why we use it (legal basis)

• To provide the Service and your account (contract performance).
• To generate AI call scripts and savings suggestions (contract performance).
• To improve the Service, prevent fraud and secure your account (legitimate interests).
• To send transactional emails and important notices (contract / legal obligation).
• To send marketing emails only with your consent.

4. AI processing

When you generate a call script or savings plan, the relevant bill information is sent to our AI provider for inference. We do not allow AI providers to use your data to train their models. We never send your full document vault to AI by default.

5. Who we share data with

• Service providers — hosting, database, AI inference, email delivery and analytics.
• Paddle.com — our Merchant of Record for sales, subscription management, payments, tax compliance and invoicing.
• Professional advisers — legal and accounting, where necessary.
• Authorities — where required by law.

We do not sell your personal data.

6. Retention

We keep account and bill data for as long as your account is active. If you delete your account, we delete or anonymize your data within 30 days, except where we must retain it for legal or financial obligations (e.g. tax records).

7. Your rights

Depending on where you live, you may have rights to access, correct, delete, port, restrict or object to processing of your personal data, and to withdraw consent. To exercise any right, contact us in-app or by email. EU/UK users have the right to lodge a complaint with their local supervisory authority. We will respond within one month.

8. International transfers

Some of our service providers are located outside the UK/EEA. Where data is transferred internationally, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

9. Security

We use encryption in transit and at rest, role-based access controls, and regular security reviews. No system is perfectly secure, but we work hard to protect your data.

10. Cookies

We use essential cookies to keep you signed in and to remember your preferences. We may use limited analytics cookies to understand how the Service is used; you can manage these in your browser settings.

11. Contact

Questions about your privacy? Reach out in-app and we will respond within one month.