InvoCenter InvoCenter Back to Home

Privacy Policy

Effective Date: February 15, 2026  •  Last Updated: March 2, 2026  •  Version: 1.1.0

This Privacy Policy explains how InvoCenter ("the Application", "we", "us", or "our") handles personal and business data. InvoCenter supports two storage modes: Local (SQLite) and Cloud (Supabase).

1. Data We Collect

  • Account data: username, email, hashed password, role, session tokens.
  • Business data: company profile, customers, products, invoices, payments, tax and discount settings.
  • Operational data: payment audit logs, email send history, public invoice access logs.
  • Optional local diagnostics: desktop crash diagnostics only when enabled by user.

2. Data We Do Not Collect

  • No ad-tracking SDKs.
  • No analytics trackers.
  • No sale of personal or business data.

3. How Data Is Stored

Local Mode (SQLite)

Data stays on your device unless you explicitly use sharing/email features.

Cloud Mode (Supabase)

Data is stored in your configured Supabase project over HTTPS/TLS. You control project region and configuration. Supabase details: supabase.com/privacy.

4. How Data Is Used

Data is used only to provide core product functionality: authentication, invoice generation, payment tracking, reporting, backup/export, and optional user-enabled features such as cloud sync, SMTP email sending, and public invoice sharing.

5. Third-Party Services

  • Supabase — only when Cloud mode is enabled.
  • Your SMTP provider — only when you configure email delivery.
  • Google Fonts — for font delivery on web pages.

6. Security Measures

  • Bcrypt password hashing.
  • Secure token storage with platform-provided secure storage.
  • TLS for data in transit.
  • Optional encrypted exports (AES-256-GCM).
  • Role-based permissions and row-level data controls in cloud mode.

7. Your Privacy Rights

Depending on your jurisdiction, you may have rights of access, correction, deletion, portability, restriction, and objection (including GDPR/CCPA rights). You can manage or export your data directly from InvoCenter.

8. Data Retention

  • Local mode: retained on-device until you delete or uninstall.
  • Cloud mode: retained in your Supabase project until removed by you.
  • Optional diagnostic data: local-only and user-clearable.

9. Contact

For privacy requests or questions: support@invocenter.app
We aim to respond to data protection requests within 30 days.