Privacy policy

Invoice Done is operated by an individual sole-trader based in the United Kingdom. For any privacy questions, write to privacy@invoicedone.app.

We collect three kinds of data:

1. Account data. Your email address, a hashed password, the business details you enter during onboarding (business name, address, tax number, default currency), and any settings you change later.
2. Invoice data. Everything you put on the invoices you create — client name, client email, line items, prices, dates, notes, payment terms, and the PDFs themselves.
3. Usage data. Anonymous-by-default events about how you use the app (which pages you visit, which features you use, error reports). We use this to fix bugs and improve the product.

We do not collect payment-card numbers. When you subscribe to Pro, Stripe handles your card details directly — we only see the resulting subscription status.

• Run your account. The email + password let you sign in. The business details let your invoices render correctly.
• Render invoices. We need the line items, client details, and your branding to produce the PDF you send.
• Send transactional email. When you email an invoice or receive a payment notification, we send that mail via Resend on your behalf.
• Take payments. Stripe processes subscription payments (your subscription to us) and pay-by-link customer payments (your customer paying you, via Stripe Connect Express).
• Fix and improve the product. Usage analytics tell us which screens are confusing and which features matter.

Your data goes to a small set of named third parties, only as much as each one needs to do its job:

• Supabase (database + auth) — hosts your account and invoice data. Located in the EU.
• Stripe (payments) — processes your subscription payments and, if you enable pay-by-link, your customers' payments to you via Stripe Connect Express.
• Resend (email) — sends transactional email on our behalf (invoices, reminders, password resets).
• Cloudflare (hosting + CDN) — runs the website, stores cached PDFs in R2, renders PDFs via Browser Rendering.
• PostHog (product analytics) — receives anonymised usage events. We do not send your invoice contents or your customers' personal data to PostHog.

We do not sell your data to anyone. We do not share it with advertisers or data brokers.

We keep your data for as long as your account is active. If you delete your account, we remove your personal data within 30 days, except where we have a legal obligation to keep it longer (e.g. accounting records linked to Stripe payments, which UK tax rules require us to retain for six years).

PDF caches expire automatically after 90 days. PostHog usage events are kept for 12 months.

Under UK GDPR you have the right to:

• Ask for a copy of the personal data we hold about you.
• Ask us to correct anything that is wrong or out of date (you can also do this yourself from Settings).
• Ask us to delete your data. The simplest way is to delete your account from Settings. For data we have to keep for tax reasons, we will keep only what we are legally required to.
• Object to certain uses of your data (e.g. usage analytics) by writing to us.
• Complain to the Information Commissioner's Office at ico.org.uk if you think we have not handled your data fairly.

We use cookies and browser storage only for things that make the app work: keeping you signed in, remembering your preferences, and telling PostHog one event from another. We do not use advertising cookies and we do not display advertising.

If we change how we handle data in a way that affects you, we will let you know by email before the change takes effect. The "last updated" date at the top of this page records every revision.

For any question about privacy, write to privacy@invoicedone.app.