Privacy Policy

Bill Radar is a service that helps you discover the subscriptions, invoices, and payments hidden in your Gmail inbox, and shows you their costs, renewal dates, and how to cancel them. To do this we request read-only access to your inbox and process only billing-related emails.

We collect the minimum data needed to run the service:

• Account data: your name and the email address associated with your Bill Radar account (from openid, email, and profile).
• Gmail metadata: message id, thread id, sender, subject, the short Gmail snippet, and date.
• Extracted structured data: merchant, amount, currency, dates, renewal status, cancellation links, and whether an item is a payment or a subscription.
• Google access and refresh tokens needed to run scans, stored encrypted.

We do not permanently store your full email body. Message contents are processed transiently in memory to extract billing data only, then discarded. We keep only the metadata and structured data described above.

• Detecting subscriptions and payments and displaying them in your dashboard.
• Calculating your monthly and annual spend and reminding you of upcoming renewals.
• Showing you how to cancel each subscription (we never cancel on your behalf).
• Securing the service and preventing abuse.

We use a server-side AI provider to extract structured data from candidate emails. Candidate email contents are sent to this provider solely for extraction and are not used to train general-purpose models.

On first connection we scan billing-related emails from the last 90 days (invoices, subscriptions, renewals, payments, refunds, trials, cancellations). After that we run a weekly scan of only the last 7 days.

We do not sell your data, and we do not share it with advertisers. We share the minimum necessary data only with service providers required to operate the product: Google (for Gmail access), our infrastructure provider Cloudflare (for storage and processing), and our AI provider (for extraction). These providers process data only on our behalf.

We retain your metadata and structured data for as long as your account is active. When you disconnect a Gmail account, we delete its tokens and metadata. When you delete your Bill Radar account, we delete all associated data and revoke all Google tokens.

Refresh tokens are encrypted at rest using AES-GCM (256-bit) with a server-side key. Data is stored and processed on Cloudflare infrastructure. Learn more on our Security page.

Bill Radar's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. For details see our Gmail Data Use page.

At any time you can disconnect any Gmail account from Dashboard → Gmail accounts, or delete all your data from Dashboard → Settings. You can also review or revoke Bill Radar's permissions from your Google Account settings.

Bill Radar is not directed to children under 16, and we do not knowingly collect their data.

We may update this policy from time to time. We will post the updated version on this page along with the revision date.

For any privacy-related question, contact us at hamidalqwaysim@gmail.com.