GDPR Compliance

Data controller

Invoicey is the data controller for personal data processed through our platform. For company details and how to reach us, see our Contact page.

Your rights under GDPR

You have the following rights regarding your personal data:

What we process and why

We process personal data to:

• Provide invoicing, quotes, and payment-related features
• Manage your account and preferences
• Send service-related emails (e.g. password reset, invoices)
• Respond to support and contact requests
• Comply with legal obligations (e.g. tax and invoicing rules)

Legal basis

We process your data where necessary to perform our contract with you (providing the service), to comply with legal obligations, and, where applicable, with your consent (e.g. marketing or optional features).

Security and where we store data

We use encryption for data in transit and work with hosting and infrastructure that helps keep your data secure. Where possible we use EU-based or equivalent infrastructure for storing and processing data.

Data retention

We retain your data for as long as your account is active and as long as required by law (for example for invoicing and tax). You can request deletion of your data via the contact channel below; we will handle requests in line with applicable law.

How to exercise your rights

To exercise any of your GDPR rights (access, portability, erasure, rectification, etc.), please use our Contact page We will respond to legitimate requests within the timeframe required by applicable law.

Supervisory authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local data protection authority. In France, the supervisory authority is:

Commission Nationale de l'Informatique et des Libertés (CNIL)
3 Place de Fontenoy, TSA 80715, 75334 Paris Cedex 07, France
www.cnil.fr

Contact

For any GDPR or privacy-related requests, please contact us via our Contact page.

Last updated: 9/3/2026.