Privacy Policy

SaveBill ("we", "us") operates a bill-comparison service at savebill.com.au (and related domains). This policy explains what data we collect, how we use it, and your rights under Australian Privacy Principles (APPs) and the Privacy Act 1988.

1. Information We Collect

Account data: email address (via Supabase Auth) when you sign up.

Uploaded bills: PDFs and images you submit. We process these using Anthropic's Claude API to extract structured information (provider, billing period, amount, usage). Original files are stored in Supabase Storage scoped to your account.

Extracted bill data: provider name, category, billing dates, amount, usage figures, postcode, contract end dates, and for car insurance: vehicle make/model/year/state and policy details.

Anonymized insights: we store aggregate market data derived from uploaded bills (postcode, provider, anonymized rates) with no personal identifiers in a separate table. This is used solely to improve comparison accuracy.

Usage data: IP address (hashed with SHA-256 + salt, never stored raw) for rate limiting.

2. How We Use Your Data

• Parse your bills and produce personalised comparisons
• Show you cheaper alternatives from our plan database
• Maintain your bill history so you can track spending over time
• Aggregate anonymized pricing to improve market insights (no PII leaves your account)
• Send notifications when better deals become available (only if you opt in)

3. Third-Party Services

We use the following sub-processors, each with their own privacy policies:

• Supabase (EU/US) — database and authentication
• Vercel (US) — website hosting
• Anthropic (US) — Claude API for bill parsing. Your uploaded content is sent to their API for extraction. Anthropic does not train on API inputs per their commercial terms.
• AER Consumer Data Right API (Australian Government) — for live electricity and gas plan data (read-only, we send no personal info).

4. Affiliate Links

SaveBill is free to use. When you click through to a provider's website via our "View plan" or "Get quote" buttons, we may receive a referral commission if you sign up. This does not affect the price you pay and does not alter our ranking — plans are ranked by objective value score or price, regardless of commission.

5. Data We Do NOT Collect

• Bank account or credit card details
• Driver licence numbers (we mask/discard any detected on uploaded bills)
• Health records beyond basic insurance policy metadata
• Tracking cookies for advertising

6. Your Rights

Under the Australian Privacy Act, you can:

• Access a copy of all your data — email us and we'll provide it
• Delete your account and all associated bills — from Settings → Delete account
• Correct inaccurate information via the bill edit feature
• Lodge a complaint with the OAIC (oaic.gov.au) if you believe we've mishandled your data

7. Data Retention

Your bills and profile are kept for as long as your account is active. When you delete your account, all personally identifiable data is removed within 30 days. Anonymized aggregate insights (with no link back to you) may be retained for market analysis.

8. Security

All traffic uses HTTPS. Passwords are never stored (we use Supabase's managed auth with email magic-links). Database access uses row-level security so your bills are only visible to you.

9. Contact

Questions or requests: contact the site owner via the email shown on the Settings page while logged in.