How Expenvo approaches access, protection, and current limitations.

1. Account and data access controls

Expenvo uses authentication and row-level access controls so users can only access their own data or data that has been intentionally shared with them through wallet permissions.

2. Internal access

Expenvo restricts access to stored customer data to authorized personnel and service providers who require that access to operate, secure, maintain, or support the service, comply with legal obligations, or investigate abuse.

Expenvo does not represent that stored customer data is inaccessible to authorized operators. Internal access is intended to be exception-based rather than part of ordinary product operations.

3. Infrastructure and transport protections

• Hosted infrastructure is provided through managed service providers.
• Data is protected in transit and at rest through the hosted infrastructure Expenvo uses.
• Application access is protected by authentication and backend authorization controls, including row-level permissions where applicable.
• Operational safeguards are used to reduce unnecessary retention, excessive logging, and overly broad access.

4. AI and document processing

When users choose AI-powered features such as receipt scanning, document import, voice parsing, or insights, the submitted content may be processed by third-party AI providers as described in the privacy policy.

5. User controls

• Users can export account data from the app.
• Users can delete their account from the app.
• Users can contact support@expenvo.com for support or privacy issues.

6. Current limitations

• Expenvo does not currently represent that stored customer data is protected by end-to-end encryption.
• Expenvo does not currently represent that only the user can read all stored customer data.
• No system can guarantee absolute security or uninterrupted availability.

7. Related documents

• Privacy policy
• Terms of service
• Support page