Is my financial data safe?

Yes. All data is encrypted at rest with AES-256-GCM using per-user envelope keys. We use row-level security at the database layer, TLS 1.3 in transit, and strict CSP headers. We never sell your data.

Can EXPOZOR move my money?

Never. We connect via read-only APIs (Plaid in the US/CA, TrueLayer in the EU/UK). EXPOZOR can see your transactions — nothing more.

Which banks do you support?

Over 12,000 institutions via Plaid (US and Canada) and TrueLayer/GoCardless (Europe and UK). Other regions can import via CSV or use the EXPOZOR Agent to parse receipts and SMS.

How does the AI categorization work?

Your own rules run first. If a rule matches, no AI is called. For unknowns, Claude Haiku classifies in batch. Results below 60% confidence are flagged for your review — we never auto-apply uncertain categories.

What happens if I cancel?

Cancel anytime — no friction, no dark patterns. You keep access to the Free tier. A full data export is always one click away.

How does Family sharing work?

Add up to 6 members. Each person has private accounts (only they can see) and shared accounts (visible to all members). The smart settle-up minimizes the number of payments needed.

Do you offer refunds?

Paid plans billed monthly are non-refundable for the current period. Annual plans can be refunded pro-rata within 14 days of purchase. Email support@expozor.app.

Is EXPOZOR GDPR compliant?

Yes. You can export or delete all your personal data in under 24 hours from Settings → Privacy. Inactive accounts are warned after 24 months then auto-deleted. We offer EU hosting (Frankfurt region).

All posts

Security

Our Security Philosophy: Privacy by Architecture

Financial data is the most sensitive data people generate daily. Here's how EXPOZOR protects it at every layer — from device to database.

The EXPOZOR Team· Engineering

May 20, 20262 min read

Why "privacy by default" isn't enough

Most apps promise privacy in their marketing. Fewer deliver it in their architecture. The difference matters because promises can change with new management, a funding round, or an acqui-hire. Architecture can't.

EXPOZOR is designed so that even we can't access your financial data — not because of a policy, but because of cryptography.

Encryption at every layer

On your device

Receipt images are processed using on-device ML Kit OCR. The raw image and extracted text never leave your phone unless OCR confidence is below 70% — in which case, the image is sent to our server-side vision pipeline over TLS 1.3, processed in an ephemeral container, and immediately deleted.

In transit

All API communication uses TLS 1.3 with certificate pinning on mobile. HSTS preload is enabled. Downgrade attacks aren't possible.

At rest

Your data is encrypted with AES-256-GCM via managed KMS. But here's the important part: sensitive fields use per-user envelope encryption.

That means:

Each user has a unique data encryption key (DEK)
The DEK is encrypted with a key encryption key (KEK) derived from your credentials
We store the encrypted DEK, not the plaintext
Even a full database breach yields encrypted blobs we can't decrypt

In the database

Every user-scoped table enforces Postgres Row-Level Security (RLS). This is defense-in-depth: even if there's a bug in our application logic, the database itself prevents cross-user data access.

Zero trackers in the app

Inside the authenticated EXPOZOR experience, there are zero third-party trackers. No Google Analytics. No Facebook Pixel. No Mixpanel.

We use PostHog for product analytics, reverse-proxied through our own infrastructure, with anonymized user IDs. Your spending patterns are yours alone.

Your data, your choice

Export everything (JSON or CSV) from Settings → Privacy, anytime.
Delete your account and all data permanently. We fulfill deletion requests within 24 hours.
Inactive accounts receive a warning after 24 months, then auto-delete after 30 days of no response.

Responsible disclosure

We take security reports seriously. If you find a vulnerability, email security@expozor.app. We follow a 90-day coordinated disclosure policy and credit researchers with permission.

What's ahead

We're working toward SOC 2 Type II certification and plan to publish a formal security whitepaper before general availability. In the meantime, our Security page has the technical details.