Privacy Policy

Last updated: April 24, 2025

1. Introduction

Welcome to invoicedataextraction.com ("we," "our," or "us"). Protecting your personal information and your right to privacy is a cornerstone of our service. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services. By using our services, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide to Us

We collect information that you provide directly to us when you use our services:

• Invoice data that you upload to our platform (which is subsequently processed by our current AI service provider OpenAI for data extraction)
• Account information (e.g., name, email address)
• Customer service communications
• Any other information you choose to provide

2.2 Payment Information

Our payment processor, Paddle, collects and processes payment information. We do not directly collect or store your payment details. Paddle may collect information such as your name, billing address, and payment card details. Please refer to Paddle's privacy policy for more information on how they handle your payment data.

2.3 Information Automatically Collected

When you visit our website or use our services, we may automatically collect certain information, including:

• Usage details (e.g., access times, pages viewed)
• IP address
• Browser type and operating system
• Referring website addresses
• Device information

We use cookies and similar tracking technologies to collect this information. You can control cookies through your browser settings and other tools.

2.4 Authentication Information

We use Clerk, a third-party authentication service, to manage user accounts and logins. Clerk collects and processes authentication-related information such as email addresses, passwords (securely hashed), and other account details necessary for secure login and account management. For more information on how Clerk processes your authentication data, please refer to Clerk's privacy policy.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our services
• Share invoice data with our current AI service provider, OpenAI, to extract relevant information for our invoice data extraction service
• Generate spreadsheets from your uploaded invoices
• Facilitate transactions processed by our payment provider, Paddle, and manage related communications
• Communicate with you about your account and our services
• Respond to your inquiries and customer service requests
• Send you technical notices, updates, security alerts, and support messages
• Detect, investigate, and prevent fraudulent transactions and other illegal activities
• Comply with legal obligations

4. Data Retention and Deletion

• Uploaded invoices are permanently deleted after 24 hours
• Generated spreadsheets are stored securely on our servers
• You can access your spreadsheets anytime through your account on our platform
• You have the option to permanently delete spreadsheets from your dashboard at any time
• We retain other personal information for as long as necessary to provide our services and comply with our legal obligations

5. Data Security

We prioritize the security of your data:

• Our platform is protected by Cloudflare, a leading cybersecurity company
• We use industry-standard encryption protocols to protect data in transit and at rest
• All data is stored on secure servers in the United States
• We implement appropriate technical and organizational measures to protect your personal information against unauthorized or unlawful processing, accidental loss, destruction, or damage
• We regularly review and update our security practices to enhance protection
• Access to personal information is restricted to authorized personnel only
• We ensure that our current AI service provider, OpenAI, adheres to strict security standards when processing your invoice data.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

6. Data Sharing and Third Parties

We do not sell, trade, or rent your personal information to third parties. However, to provide our services effectively, we do share data with certain third parties:

6.1 Service Providers

We use the following service providers to facilitate our core services:

• OpenAI: To provide our invoice data extraction services, we share the contents of uploaded invoices with OpenAI, our current AI model provider. OpenAI processes this information to extract relevant data from your invoices. This sharing is essential for the functionality of our service.
• Paddle: Our payment processor, to facilitate transactions.
• Clerk: Our authentication service provider, to manage user accounts and logins.

These third-party service providers have their own privacy policies and terms of service that govern how they handle your data. We encourage you to review their policies:

• OpenAI's Privacy Policy: https://openai.com/policies/row-privacy-policy/
• Paddle's Privacy Policy: https://www.paddle.com/legal/privacy
• Clerk's Privacy Policy: https://clerk.com/legal/privacy

We only share the minimum amount of information necessary for these providers to perform their services. For instance, invoice data shared with OpenAI is used solely for the purpose of data extraction to provide our service.

6.2 Other Circumstances for Data Sharing

We may also share your information in the following limited circumstances:

• With your explicit consent
• To comply with legal obligations
• To protect and defend our rights and property
• To prevent or investigate possible wrongdoing in connection with our service
• With other service providers who assist us in operating our website, conducting our business, or servicing you
• In the event of a merger, acquisition, or sale of all or a portion of our assets, with the acquiring company

6.3 Third-Party Privacy Practices

While we carefully select our service providers, we do not control and are not responsible for their privacy practices. We recommend reviewing their policies to understand how they handle your personal information.

7. Your Rights

Depending on your location, you may have certain rights regarding your personal information. These rights may vary, but generally include:

• The right to access the personal information we hold about you
• The right to request the correction of inaccurate personal information
• The right to request deletion of your personal information
• The right to object to processing of your personal information
• The right to restrict processing of your personal information
• The right to data portability
• The right to withdraw consent at any time, where processing is based on consent

For users in the European Economic Area (EEA), these rights are provided under the General Data Protection Regulation (GDPR).

To exercise these rights, please email us at [email protected]. We will respond to your request within a reasonable timeframe, typically within one month as required by GDPR for EEA users.

If you are unsatisfied with our response, you have the right to lodge a complaint with a supervisory authority in your country of residence in the EEA.

California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA). Please contact us for more information about your California privacy rights.

8. Children's Privacy

Our services are designed for business use and are not intended for children under the age of 13. We do not knowingly collect or solicit personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will promptly take steps to delete that information.

If you are a parent or guardian and believe we may have inadvertently collected personal information from a child under 13, please contact us at [email protected]. We will work with you to address any concerns and remove any inappropriately collected information.

9. International Data Transfers

Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction. If you are located outside the United States and choose to provide information to us, please note that we transfer the data to the United States and process it there.

Please note that our current AI service provider, OpenAI, may process your invoice data in various locations globally. By using our service, you consent to this transfer and processing of your data.

10. Data Breach Notification

In the event of a data breach that affects your personal information, we will notify you and the relevant authorities as required by applicable law.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy here and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions about this Privacy Policy, please email us at: [email protected]