← Home

Privacy Policy

Last updated: May 16, 2026

Summary

WhoHadThat is a receipt-splitting web app. We collect the minimum data needed to run the Service. We do not sell or share your data for advertising. We do not train AI models on your content. You can delete your data at any time by emailing support@whohadthat.com.

1. What we collect

  • Account info: email address and profile information if you choose to sign in.
  • Payment handles: Venmo, Zelle, or CashApp usernames you voluntarily provide. These are visible to people you split with so they can pay you.
  • Phone number: optional. Used only for identity matching across splits.
  • Receipt photos and parsed data: photos you upload and the item names and prices extracted from them.
  • Split data: who claimed what, payment status, tip, tax, and surcharge amounts.
  • Technical data: IP address, browser type, and error logs needed to operate and debug the Service. Logs are retained up to 30 days.

2. How we use it

  • To operate the Service: parse receipts, display items, compute amounts owed, and generate payment links.
  • To remember you across sessions so you can access your split history.
  • To send transactional notifications you have opted into (never marketing).
  • To diagnose issues and improve reliability via aggregated, anonymized logs.

We do not sell your data, share it for advertising, or use it to train AI models.

3. Third-party service providers

To operate the Service we rely on trusted third-party service providers for hosting and infrastructure, database and authentication, AI-powered receipt parsing, anonymized product analytics, and identity providers if you choose to sign in with one. Each provider processes only the data necessary for its specific function, is bound by industry-standard data-processing agreements, and is contractually prohibited from using your data for its own purposes, including training AI models or serving advertising.

Our analytics provider is configured to mask text and images by default and respects Do-Not-Track. Our servers and providers are located in the United States.

Payment apps (Venmo, Zelle, CashApp, Apple Cash) are not data processors for the Service. We generate deep-link URLs that open those apps; any actual transfer is initiated by you within their app and governed by their own terms.

The specific providers we use may change as the Service evolves. Material changes to how your data is handled will be reflected on this page.

4. Cookies & local storage

We use browser storage (cookies and local storage) to keep you signed in, remember your preferences, and preserve your in-progress work between visits. We do not use third-party advertising cookies. Clearing your browser data removes all locally stored information.

5. Sharing your data

Participants in a split can see the line items, amounts, claims, and any payment handles you have added to that split. This is by design — it is how the bill gets settled.

We do not share data with anyone else except (a) our infrastructure providers as described above, (b) where required by law, or (c) to protect the rights or safety of users.

6. Retention

  • Active splits and account data are kept until you delete them.
  • Settled splits remain in your history until you delete the account or the split.
  • Server logs are retained up to 30 days, then deleted.

7. Your rights

You may have the right to access, correct, port, restrict, or delete your personal data under applicable law (e.g. GDPR, CCPA). We honor these rights regardless of where you live. To make a request, email support@whohadthat.com. We will respond within 30 days.

8. Children

WhoHadThat is not directed at children under 13. We do not knowingly collect data from anyone under 13. If you believe a child has provided us data, contact support@whohadthat.com and we will delete it.

9. International users

Our servers are in the United States. By using the Service from outside the US, you consent to the transfer of your data to the US for processing.

10. Changes

If we make a material change, we will update the date at the top of this page and notify signed-in users the next time they open the app. Continued use after an update means you accept the revised policy.

11. Contact

Privacy questions or deletion requests: support@whohadthat.com.