Privacy Policy

Information you provide directly:

• Account details: name, email address, company name, phone number
• Business data you enter: invoices, transactions, employee records, inventory, etc.
• Billing information (your payment card details are processed and stored by our payment provider, not by us)
• Support communications: messages, attachments, and feedback you send to our team

Information collected automatically:

• Usage data: pages visited, features used, buttons clicked, session duration
• Device information: IP address, browser type and version, operating system, screen resolution
• Mobile app data: device model, OS version, app version, crash reports, and performance metrics via Firebase
• Cookies and similar tracking technologies (see Section 8)

We use the information we collect to:

• Provide, operate, maintain, and improve the Service
• Process payments and manage your subscription through our payment provider
• Send transactional emails such as invoice confirmations, password resets, and system alerts
• Respond to customer support inquiries and resolve technical issues
• Analyze usage patterns and feature adoption to guide product improvements
• Monitor and enforce compliance with our Terms and Conditions
• Detect, prevent, and investigate fraud, security incidents, or misuse
• Comply with legal obligations applicable to us in the Republic of Djibouti

We do not use your business data (invoices, transactions, employee records, etc.) for any purpose other than delivering the Service you have subscribed to.

We do not sell your personal data. We share information only in the following limited circumstances:

• Service providers — trusted third parties who process data on our behalf to deliver the Service (see Section 4).
• Legal requirements — we may disclose information if required by law, court order, or a legitimate request from a governmental authority.
• Business transfers — in the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your data is subject to a different privacy policy.
• With your consent — for any other purpose with your explicit prior consent.

We use the following third-party services. Each has its own privacy policy that we encourage you to review:

All service providers are contractually obligated to protect your data and use it only for the purposes we specify.

We implement appropriate technical and organizational security measures to protect your information, including:

• Encryption in transit using HTTPS/TLS for all data sent between your device and our servers
• Encryption at rest for stored data on our infrastructure
• Role-based access controls limiting who within our team can access customer data
• Regular security reviews and monitoring

No method of transmission or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security. If you believe your data has been compromised, please contact us immediately.

We retain your personal data for as long as your account is active or as needed to provide the Service. Specifically:

• Active accounts: data is retained for the duration of your subscription
• After cancellation or termination: data is retained for up to 90 days, during which you may export your data
• After 90 days: personal data is deleted or anonymized, unless we are required by law to retain it longer (e.g., financial records)
• Aggregated, anonymized analytics data may be retained indefinitely

Depending on your location and applicable laws, you may have the following rights regarding your personal data:

• Access — request a copy of the personal data we hold about you
• Correction — request correction of inaccurate or incomplete data
• Deletion — request deletion of your personal data ("right to be forgotten")
• Restriction — request that we restrict processing of your data
• Data portability — receive your data in a structured, machine-readable format
• Objection — object to certain types of processing

To exercise any of these rights, contact us via our contact form. We will respond within 30 days. Some rights may be limited where we have a legitimate interest or legal obligation to retain the data.

We use the following types of cookies:

• Essential cookies — required for authentication, session management, and security. These cannot be disabled without breaking core functionality.
• Analytics cookies — used by Google Analytics to understand how visitors interact with our website. This data is aggregated and anonymized.

You can control or disable non-essential cookies through your browser settings. Note that disabling cookies may affect some features of the Service.

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal data, we will delete that information promptly. If you believe a child has provided us with their data, please contact us via our contact form.

Our mobile applications are distributed through the Apple App Store and Google Play Store. When you download our app, these platforms may collect certain information about you in accordance with their own privacy policies:

• Apple: apple.com/legal/privacy
• Google: policies.google.com/privacy

We are not responsible for the data practices of these platforms.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of significant changes by email and/or by posting a notice within the Service. The date of the most recent revision is shown at the top of this page.

Your continued use of the Service after the effective date of any revision constitutes your acceptance of the updated policy.

For privacy-related questions, requests, or to report a concern, please contact us: