Encryption in transit and at rest
Everything you track travels over encrypted connections (TLS/SSL) and is stored encrypted on secure Google Cloud Platform servers.
Security and privacy
A safe app for data that belongs only to you two
How dividi protects what you track: encryption in transit and at rest, passwordless sign-in and the commitment to never ask for what it doesn’t need.
The principle
Security starts with what dividi doesn’t ask for
dividi is an organization tool. It is not a bank, does not process financial transactions and does not connect to your bank account. What never enters the app never needs protecting — and a lot of things simply never enter.
In dividi, a card is an expense organizer: you set a nickname, bank, network and a color. Full number, CVV and expiration date are never requested or stored. There are no passwords here either — you sign in via email link or providers like Google and Apple.
Never asks for banking data
Never asks for card number or CVV
Doesn’t collect location
Never sells your data
In practice
Four layers protecting your day to day
Only the official app reaches the service
Integrity verification (App Check) with Apple’s App Attest and Google’s Play Integrity ensures only the official application connects to our servers.
Passwordless sign-in
Sign in via a link sent to your email or through Google and Apple. No password to leak — and your Google profile photo is never used or stored.
Data minimization
Usage analytics is limited to controlled technical categories. Usage events never store names, free-form descriptions, card nicknames or raw monetary amounts.
And when I talk to Divi?
Voice expense audio is processed on your own device (Apple Speech on iOS, Google Speech on Android). The raw audio is never sent to dividi nor stored — only the text transcription travels, encrypted, to the server so the AI can suggest description, amount and category.
Those records are kept encrypted for at most 90 days and are not used to train AI models, per our Google Cloud agreement. You always review everything before saving.
Your rights apply here (LGPD)
Access, correction, deletion, portability, objection and consent withdrawal. Just ask through the app settings or via suporte@dividi.com.br — we reply within 15 days.
Deletion that actually deletes
When you delete your account, data is immediately removed from active systems. Backup copies are erased within 30 days. See the step-by-step at account and data deletion.
Full transparency
Want the details, clause by clause?
Everything on this page comes from our Terms of Use and Privacy Policy. Read them in full — no hidden fine print.