Security

Bill Radar requests only the https://www.googleapis.com/auth/gmail.readonly scope, plus openid, email, and profile. We never request send, modify, or delete scopes. This means we are technically unable to alter your inbox in any way.

Refresh tokens are encrypted at rest using AES-GCM with a 256-bit key, via a server-side key. Tokens are never stored in plain text.

We do not permanently store your full email body. Message contents are processed transiently to extract billing data, then discarded. We keep only the necessary metadata (message id, thread id, sender, subject, snippet, date) and the extracted structured data.

Data is stored and processed on Cloudflare infrastructure (Cloudflare D1 database and Cloudflare Workers). Data is transmitted over encrypted connections (HTTPS).

No human reads your email data except as needed for security or abuse prevention, with your explicit consent, or to comply with the law.

You can disconnect any Gmail account from Dashboard → Gmail accounts, which revokes the Google token and deletes the stored tokens and that account's metadata. You can delete all your data from Dashboard → Settings.

If you discover a security vulnerability, please report it responsibly to hamidalqwaysim@gmail.com and we will work to address it promptly.