Handl Privacy Policy
Effective Date: November 11, 2025
Last Updated: November 11, 2025
Welcome to Handl. Your right to privacy and data security is important to us. This Privacy Policy explains how Handl Automation Inc. (“Handl”, “we”, “us”, or “our”) collects, uses, discloses, and protects your personal information when you use our mobile application, website, and related online services (collectively, the “Services”). By using our Services, you agree to the terms described in this Privacy Policy. If you do not agree, please do not use the Services.
← Back to HomeWelcome to Handl. Your right to privacy and data security is important to us. This Privacy Policy explains how Handl Automation Inc. (“Handl”, “we”, “us”, or “our”) collects, uses, discloses, and protects your personal information when you use our mobile application, website, and related online services (collectively, the “Services”). By using our Services, you agree to the terms described in this Privacy Policy. If you do not agree, please do not use the Services.
Handl is an AI-powered expense-splitting and card-linked finance app that helps users automatically track and divide group expenses through secure financial connections and smart automation.
When you use Handl:
You choose who to share expenses with (individual friends or groups).
Expense details are only visible to those with whom you explicitly share them.
Shared participants can view, edit, or delete expenses that involve them.
Expenses and receipts are never made public.
A. Information You Provide
Account information: name, email address, and phone number.
User-generated content: expenses, groups, receipt uploads, and AI prompts.
Communications: when you contact support or participate in feedback.
B. Automatically Collected Information
Device & technical data: IP address, device model, OS version, app version.
Usage data: interactions within the app (feature usage, activity logs, error reports).
Approximate location: used to detect region-specific compliance and currencies.
C. Information from Connected Services
Financial data via Plaid: When you link a bank or card, Handl uses Plaid Technologies, Inc. (“Plaid”) to securely connect your financial accounts. Plaid provides read-only transaction and balance data to power expense tracking and analytics. Handl never sees or stores your login credentials or full card numbers. Data transmitted through Plaid is governed by the Plaid Privacy Policy.
Data via Supabase: Supabase hosts our secure databases and authentication services. All user records are encrypted and managed according to Supabase’s security standards.
Data via Gemini: If you use Handl’s AI features (e.g., receipt scanning or smart suggestions), input data (such as text or receipt images) may be processed through Google’s Gemini API solely to return responses. These prompts are not used to train Gemini models.
We process personal data to:
Operate and deliver the Services.
Authenticate users and secure account access.
Improve user experience by analyzing usage patterns and feedback.
Enable card-linked features.
Provide support, troubleshoot bugs, and communicate updates.
Comply with legal obligations, such as fraud prevention and regulatory reporting.
We share data only as necessary to provide our Services:
Service providers: Plaid (financial data), Supabase (cloud hosting), Gemini (AI processing), and third-party analytics or error-tracking tools.
Legal requirements: to comply with laws, regulations, or court orders.
Non-identifiable data: aggregated, anonymized insights (e.g., spending trends) may be shared for product analytics - never personally identifying.
Handl does not sell or rent personal data to advertisers or third parties.
Handl operates from Canada but may process information in the United States and European Union. Regardless of where data is processed, we apply consistent safeguards, including encryption, access control, and contractual data-processing agreements compliant with GDPR, CCPA, and PIPEDA.
We use industry-standard technical and administrative measures:
Encryption: TLS for data in transit, AES-256 for data at rest.
Access control: strict least-privilege authentication for staff.
Monitoring: continuous audits and threat detection.
However, no system is 100% secure. Users are encouraged to use trusted emails and keep their devices protected.
Handl’s website and mobile app may use cookies or similar technologies to maintain sessions, remember preferences, and analyze traffic. You can adjust cookie preferences through your browser or device settings.
Depending on your jurisdiction:
Access and correction: request access to or correction of your personal data.
Deletion: request that we delete your account and related data.
Withdrawal of consent: revoke permissions for connected services.
Portability: request a copy of your Handl data.
Requests can be made by emailing tryhandl.it@gmail.com.
We will respond within legal timeframes (typically 30 days).
We retain personal data only as long as necessary to provide the Services, comply with legal obligations, and prevent fraud. Once data is no longer needed, it is securely deleted or anonymized.
Handl is not intended for children under 18 (or the minimum age in your jurisdiction).
We do not knowingly collect information from minors. If you believe a child has provided us personal data, contact tryhandl.it@gmail.com and we will promptly delete it.
We may update this Privacy Policy periodically.
If we make material changes, we will notify users via email or in-app notice.
The revised version becomes effective immediately upon posting.
Handl Automation Inc.
Toronto, Ontario, Canada
📧 tryhandl.it@gmail.com