InvoiceKit

We use collected information for the following purposes:

• Account Management: To create and maintain your account, authenticate your identity, and manage your Pro subscription.
• Service Delivery: To provide invoice generation services and deliver your downloaded PDF invoices.
• Communications: To send you welcome emails, password reset confirmations, and subscription-related notifications via EmailJS.
• Payment Processing: To process your subscription payments through Stripe.
• Security: To detect, investigate, and prevent fraudulent or unauthorized access to your account.

InvoiceKit uses Stripe to process subscription payments securely. When you subscribe to our Pro plan ($2.50/week or $49/year), your payment information is handled directly by Stripe.

What we do not do:

• We never see or store your full credit card number
• We never handle your raw payment card data
• We only receive confirmation of successful transactions from Stripe

For details about how Stripe handles your payment information, please review Stripe's Privacy Policy.

We take the security of your information seriously. Here are the measures we have implemented:

• Password Security: Passwords are hashed using industry-standard algorithms and never stored in plain text.
• HTTPS: All communication between your browser and InvoiceKit is encrypted using HTTPS/SSL.
• Local Storage: Invoice data remains on your device and is never transmitted to our servers.
• Stripe Integration: Payment processing is handled by PCI DSS-compliant Stripe.
• No Third-Party Tracking: We do not use advertising networks, analytics providers, or other third parties that track your behavior.
• Minimal Data Collection: We collect only the minimum data necessary to provide our service.

While we strive to protect your information, no security system is impenetrable. If you suspect unauthorized access to your account, please contact us immediately.

InvoiceKit integrates with the following third-party services:

• Stripe: Payment processor. See Stripe's Privacy Policy for details on how they handle your payment information.
• EmailJS: Email service provider used to send welcome and transactional emails. See EmailJS Privacy Policy.
• Netlify: Our hosting and serverless backend provider. See Netlify's Privacy Policy.

We do not share your data with any other third parties. We do not sell your data to advertisers or data brokers.

For EU/UK Residents (GDPR):

If you are located in the European Union or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR):

• Right to access your personal data
• Right to rectify inaccurate data
• Right to erase your data ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing

To exercise these rights, please contact us at the address provided in the Contact Information section below.

InvoiceKit is not intended for children under the age of 13 (or the applicable age of digital consent in your region). We do not knowingly collect personal information from children. If we become aware that we have collected information from a child without parental consent, we will delete that information immediately.

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by updating the "Last updated" date at the top of this page and, if the changes are significant, by providing you with more prominent notice.

Your continued use of InvoiceKit after changes become effective constitutes your acceptance of the updated Privacy Policy.

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Thank you for trusting InvoiceKit with your invoice generation needs. We are committed to maintaining your privacy and providing a transparent, secure service. Your data security and privacy are our top priorities.