Call It Even

Privacy Policy

Last updated: 2026-06-25

This Privacy Policy explains how Level Up Softwares (“Call It Even,” “we,” “us,” or “our”) collects, uses, discloses, and protects personal information when you use the Call It Even mobile applications, website, and related services (together, the “Service”). Call It Even is a free tool that helps friends, roommates, and travel companions split and keep track of shared expenses.

Important: Call It Even is a record-keeping and ledger tool only. We do not process payments, hold funds, or move money between users. When you “settle up,” we simply record that a payment was made outside the app (for example, by cash, Venmo, or bank transfer). See our Terms of Service for more about how the Service works.

Please read this Policy carefully. If you do not agree with it, please do not use the Service. If you have questions, contact us at [email protected].

1. Who is responsible for your data (Controller)

Level Up Softwares is the controller responsible for your personal information under applicable data protection laws, including the EU and UK General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act, as amended by the California Privacy Rights Act (“CCPA/CPRA”). Our contact details are set out in the “How to Contact Us” section below.

2. Information We Collect

We collect the following categories of personal information, depending on how you use the Service:

a) Information you provide to us

  • Account and profile information: your name, email address, and phone number. You may optionally add a profile photo, a short bio, and your date of birth.
  • Authentication identifiers: when you sign in with Google or Apple, we receive an account identifier and basic profile details (such as name and email, or a private relay email if you choose to hide your email with Apple). When you sign in by phone, we use your phone number to send and verify a one-time code.
  • Content you create: the expenses, bills, trips or groups, settlements, notes, and friend connections you add, including amounts, descriptions, dates, categories, and the people you choose to share them with.
  • Communications: information you provide when you contact support, send feedback, or report a problem.

b) Information we collect automatically

  • Device and technical data: device type, operating system and version, app version, language settings, time zone, and general (city-level) location inferred from your IP address.
  • Usage data: how you interact with the Service, such as features used, screens viewed, and actions taken, collected through analytics and diagnostics.
  • Push notification tokens: a device token from the Apple Push Notification service (APNs) so we can send you notifications (for example, when a friend adds an expense). You can disable notifications in your device settings.
  • Log and error data: crash reports, error logs, IP address, and similar diagnostic information used to keep the Service secure and reliable.
  • Cookies and local storage: on our website we use cookies and similar technologies. See our Cookie Policy for details.

c) Information from third parties

  • Sign-in providers: Google and Apple share the limited identifiers and profile data described above when you choose to sign in with them.
  • Other users: if a friend adds you to an expense or group, they may provide your name, email, or phone number so the Service can connect your activity. If you do not have an account, this information is used to invite you and associate shared expenses with you.

d) Sensitive information

We do not seek to collect special-category or “sensitive” personal information. Date of birth is optional and used only to confirm age eligibility and, if you choose, to display your birthday. We ask that you not include sensitive details in free-text fields such as expense descriptions or your bio.

3. How We Use Your Information

We use personal information to:

  • create and manage your account and authenticate you securely;
  • provide the core features of the Service — recording shared expenses, calculating who owes whom, tracking trips and groups, and recording settlements;
  • connect you with the friends and groups you choose and deliver invitations you initiate;
  • send you a one-time passcode by SMS when you sign in by phone (these are transactional, service messages; we do not send marketing texts without your consent);
  • send push notifications and service-related emails about activity, security, and important changes (you can control these);
  • provide customer support and respond to your requests;
  • monitor, troubleshoot, secure, and improve the Service, including analytics and error logging;
  • prevent, detect, and address fraud, abuse, and violations of our Terms; and
  • comply with legal obligations and enforce our agreements.

4. Legal Bases for Processing (GDPR / UK GDPR)

If you are in the European Economic Area, the United Kingdom, or Switzerland, we rely on the following legal bases under Article 6 GDPR:

Purpose Legal basis
Creating your account and providing the core Service to you Performance of a contract (Art. 6(1)(b))
Sending one-time passcodes and essential service messages Performance of a contract (Art. 6(1)(b))
Securing the Service, preventing fraud and abuse, and improving our product through analytics Our legitimate interests (Art. 6(1)(f)), balanced against your rights
Optional features (e.g., profile photo, bio), non-essential cookies, and any marketing communications Your consent (Art. 6(1)(a)), which you may withdraw at any time
Meeting legal, tax, and regulatory obligations and responding to lawful requests Compliance with a legal obligation (Art. 6(1)(c))

Where we rely on legitimate interests, we have assessed that those interests are not overridden by your interests or fundamental rights. You may object to such processing as described in “Your Privacy Rights” below. Where we rely on consent, withdrawing it will not affect the lawfulness of processing carried out before withdrawal.

5. How We Share Your Information

We do not sell your personal information for money. We share personal information only as described here:

  • With other users: when you add an expense, group, or settlement, the relevant details (such as your name, the amount, the description, and the date) are visible to the other people you include. This is a core function of a shared-expense tool.
  • With service providers (processors) who perform services on our behalf under contract and may process personal information only on our instructions, by category:
    • Authentication: Google (Google Sign-In) and Apple (Sign in with Apple).
    • SMS delivery: Twilio, to send one-time passcodes by text message.
    • Push notifications: Apple Push Notification service (APNs).
    • Cloud hosting and infrastructure: our cloud hosting provider, which stores and processes data needed to run the Service.
    • Analytics and error/crash logging: providers that help us understand usage and diagnose problems.
    • Email delivery and customer support tooling.
  • For legal reasons: to comply with applicable law, regulation, legal process, or an enforceable governmental request; to enforce our Terms; or to protect the rights, property, or safety of our users, the public, or us.
  • In a business transfer: in connection with a merger, acquisition, financing, reorganization, or sale of assets, in which case we will require the recipient to honor this Policy or notify you of any material change.
  • With your direction or consent: for any other purpose disclosed to you at the time.

6. SMS / Text Messaging

If you sign in using your phone number, we send you a one-time passcode by SMS through our messaging provider (Twilio) to verify your identity. These are transactional messages tied to your use of the Service. Message and data rates may apply. We do not sell or share your mobile phone number with third parties or lead generators for their own marketing. We will not send you recurring marketing text messages unless you separately opt in, and you can opt out of any optional messaging program at any time by replying STOP.

7. Data Retention

We keep personal information for as long as your account is active and as needed to provide the Service. If you delete your account, we delete or de-identify your personal information within a reasonable period, except where we need to retain certain information to comply with legal obligations, resolve disputes, prevent fraud or abuse, or enforce our agreements. Note that content you shared with other users (such as a shared expense) may remain visible to those users as part of their own records even after you leave, though it will no longer be associated with an active account. Backup copies may persist for a limited time before being overwritten.

8. How We Protect Your Information

We use technical and organizational measures designed to protect personal information, including encryption in transit, access controls, and monitoring. No method of transmission or storage is completely secure, and we cannot guarantee absolute security. Please keep your account credentials and device secure, and notify us promptly if you suspect unauthorized access.

9. International Data Transfers

We operate in the United States, and our service providers may process your information in the United States and other countries that may have data protection laws different from those in your country. Where we transfer personal information out of the EEA, the United Kingdom, or Switzerland, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses (and the UK Addendum, where applicable) or another lawful transfer mechanism. You may contact us for more information about these safeguards.

10. Your Privacy Rights

a) Everyone

You can review and update much of your profile information directly in the app, manage notifications in your device settings, and delete your account from within the Service or by contacting us.

b) EEA / UK / Switzerland (GDPR)

Subject to applicable law, you have the right to: access your personal information; correct inaccurate or incomplete data; request erasure (“right to be forgotten”); restrict or object to processing (including processing based on legitimate interests); data portability; and withdraw consent where processing is based on consent. You also have the right to lodge a complaint with your local supervisory authority, though we encourage you to contact us first so we can help.

c) California (CCPA/CPRA)

If you are a California resident, you have the right to: know and access the categories and specific pieces of personal information we have collected; know the categories of sources, the business or commercial purposes for collecting it, and the categories of third parties to whom we disclose it; correct inaccurate personal information; delete personal information (subject to exceptions); and not be discriminated or retaliated against for exercising your rights.

“Sale” and “Sharing.” We do not sell your personal information, and we do not “share” it for cross-context behavioral advertising, as those terms are defined under the CCPA/CPRA. Because we do not sell or share personal information in this way, there is nothing to opt out of; however, you may still exercise the right to opt out, and we honor opt-out preference signals such as the Global Privacy Control (GPC) where they apply to our website. We also do not use or disclose sensitive personal information for purposes that would trigger the right to limit; we use the limited information we collect only for permitted business purposes.

To exercise your California rights, contact us at [email protected] or use the tools in the app. We will verify your request by confirming information associated with your account. You may use an authorized agent to submit a request on your behalf, subject to verification.

d) How to exercise your rights

Email us at [email protected] or use the in-app controls. We will respond within the time required by applicable law (generally within 30 days under GDPR and 45 days under the CCPA/CPRA, with an extension where permitted). We will not charge a fee unless your request is manifestly unfounded or excessive.

11. Children’s Privacy

The Service is intended for general audiences and is not directed to children under 13 (or under 16 in the European Union and other regions where a higher age applies). We do not knowingly collect personal information from children below the applicable age. If you believe a child has provided us personal information, please contact us and we will take steps to delete it.

12. Cookies and Similar Technologies

Our website uses cookies and local storage for purposes such as keeping you signed in, remembering preferences, and measuring usage. For details on what we use and how to control them, please see our Cookie Policy.

13. Third-Party Links and Services

The Service may reference or link to third-party websites, products, or services (for example, a payment app you use to settle up outside Call It Even). We do not control and are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies.

14. Automated Decision-Making

We do not make decisions that produce legal or similarly significant effects about you based solely on automated processing without human involvement.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by posting the updated Policy with a new “Last updated” date and, where appropriate, through the Service or by email. Your continued use of the Service after the changes take effect means you accept the updated Policy.

16. How to Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal information, contact us at:

  • Level Up Softwares LLC
  • Email: [email protected]
  • Attn: Privacy Team, [Jurisdiction/State]

If you are in the EEA or UK and we are required to designate a representative, that representative’s contact details will be provided here: [EU/UK Representative, if applicable].