Smoko
Get started
← Smoko

Privacy

Last updated: 7 May 2026

Smoko stores: your name, email, business details, invoices, expenses, and receipt photos you upload. That's it. Compliant with the New Zealand Privacy Act 2020.

Where data lives

  • Database: Neon (Postgres) — encrypted at rest.
  • Auth: Clerk — SOC 2 Type II.
  • Payments: Stripe — PCI-DSS Level 1. Smoko never sees card details.
  • Email: Resend — for welcome / receipts only.
  • Receipt OCR: Anthropic (Claude). Photos sent for parsing, not stored on their side beyond the API call.

No bank logins

Smoko does not connect to your bank. No Akahu, no OAuth into NZ banks. You upload data manually or via CSV. Your bank passwords stay yours.

Export & delete

Email [email protected] any time to export or delete your data. We process within 7 days.

Privacy — Smoko · Smoko