Legal

Privacy Policy

PDF Invoice Pro is built on a privacy-first architecture. This policy explains exactly what data we collect, what we never collect, and how we use third-party services to keep this tool free.

Last Updated: June 27, 2026Effective: June 27, 2026

Invoice data stays in your browser

Ads are shown to keep the tool free

Contact form emails stored securely

1. Data We Collect

We collect only the minimum data necessary to operate the website and deliver our service. The categories of information we collect are:

Contact Form Submissions

When you submit the contact form at /contact, we collect your name, email address, subject, and message. This information is used solely to respond to your inquiry and is not added to any marketing list.

Account Registration (Optional)

If you create an optional account via Google Sign-In, we receive your email address, display name, and profile picture as provided by Google. We use these to identify your account and link your cloud-synced data. We do not receive your Google password.

Usage & Analytics Data

We use Google Analytics to collect non-personally-identifiable data such as pages visited, time on page, device type, browser type, and approximate geographic region (country/city level). This data is aggregated and does not identify you individually.

Advertising Data

Google AdSense may collect data about your browsing activity across websites to serve personalized advertisements. This is subject to Google's own Privacy Policy. See Section 5 for full details.

Standard Server Logs

Our hosting infrastructure (Vercel) automatically records standard server log data including IP address, HTTP request type, pages accessed, and timestamp. These logs are retained for security and abuse prevention and are automatically purged.

2. Data We Never Collect

The following data is processed entirely inside your browser and is never transmitted to our servers:

  • Invoice content — client names, addresses, line items, amounts
  • Your business name, tax ID (VAT/GST number), or company details
  • Client email addresses entered in the invoice generator
  • Payment amounts, tax rates, or financial totals
  • Digital signatures or uploaded logos
  • QR code payment details
  • Any data entered into the CRM or invoice editor fields

3. Browser Local Storage & IndexedDB

The invoice generator, CRM dashboard, and all related tools store data using your browser'slocalStorage andIndexedDB APIs. This means:

  • Your invoice drafts, saved clients, company profile, and preferences are stored only on your device.
  • This data is not accessible to PDF Invoice Pro or any third party.
  • If you clear your browser data, your locally-stored invoices and clients will be permanently deleted.
  • Data stored in one browser does not sync to another device unless you create an optional account (see Section 4).

To delete your locally stored data, go to your browser's Settings → Privacy & Security → Clear Browsing Data → select "Cookies and site data" and "Cached images and files" for the domain pdfinvoicepro.com.

4. Optional Cloud Accounts & Synced Data

Creating an account is entirely optional. If you choose to sign in with Google, the following data is stored securely in our database (Supabase, hosted on AWS):

  • Your Google account email, display name, and profile photo URL
  • Invoice records and client data you explicitly save to cloud sync
  • Notification preferences and dashboard settings

All cloud-synced data is protected with AES-256 encryption at rest and TLS 1.3 encryption in transit. We use Supabase Row-Level Security (RLS) policies so that only your authenticated session can query your data — no other user or administrator can access your records.

To delete your account and all cloud-synced data, contact us at privacy@pdfinvoicepro.com. You may also request a full data export. We will process requests within 30 days.

5. Advertising — Google AdSense

PDF Invoice Pro displays advertisements served by Google AdSense to support the free service.

Advertising revenue allows us to maintain this tool at no cost to users. We do not control which specific ads appear, and we do not share your personal data with advertisers.

Google AdSense and its ad-serving partners use cookies (including the DART cookie) and similar tracking technologies to serve ads based on your prior visits to this website and other sites on the internet. This is called interest-based advertising.

Your opt-out options:

For more information, review Google's Privacy Policy and Google's advertising policies.

6. Analytics — Google Analytics

We use Google Analytics 4 (GA4) to understand how visitors interact with our website. This service collects anonymized data including:

  • Pages viewed and navigation flow
  • Session duration and bounce rate
  • Device type, operating system, and browser
  • Approximate geographic location (country/city — not street-level)
  • Traffic source (search, direct, referral)

We have configured GA4 with IP anonymization enabled. We do not use GA4 User ID features to cross-reference analytics data with your account information.

Your GA4 data is processed by Google under their data processing terms and retained for 14 months before automatic deletion. You can opt out via the Google Analytics Opt-out Browser Add-on.

7. Cookies & Tracking Technologies

We use the following categories of cookies:

Strictly Necessary Cookies

Required for the website to function. Includes session tokens for authenticated users and security cookies. Cannot be disabled.

Examples: Supabase auth token, CSRF protection cookies

Functional Cookies

Remembers your preferences such as language selection and cookie consent status.

Examples: Language preference (i18next), cookie consent record

Analytics Cookies

Collects anonymized data about how visitors use the site to help us improve it.

Examples: Google Analytics (_ga, _gid, _gat)

Advertising Cookies

Used by Google AdSense to serve relevant advertisements and track ad performance.

Examples: Google DART cookie, DoubleClick cookies

You can manage or disable cookies through the Cookie Settings button in our footer, or through your browser settings. Disabling advertising and analytics cookies will not affect your ability to use the invoice generator.

8. Third-Party Service Providers

We work with the following third-party services. Each has its own privacy policy governing data they collect:

ServicePurposeData Shared
Google AdSenseDisplay advertisingCookies, browsing behavior
Google Analytics 4Website analyticsAnonymized usage data
Google Sign-In (OAuth)Optional account authenticationEmail, name, profile photo
Supabase (AWS)Cloud database for optional accountsEncrypted account & invoice data
VercelWebsite hosting & CDNServer log data (IP, requests)
Nodemailer / SMTPContact form email deliveryYour contact form submission

9. Your Rights (GDPR & CCPA)

Depending on your location, you may have the following rights regarding your personal data:

Right to Access

Request a copy of the personal data we hold about you.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Correction

Request correction of inaccurate personal data.

Right to Portability

Receive your data in a machine-readable format.

Right to Object

Object to processing of your data for advertising purposes.

Right to Restrict

Request that we limit how we process your data.

Because the invoice generator stores data in your browser (not on our servers), most rights are self-exercisable: you can delete your local data by clearing your browser storage at any time. For cloud account data, contact privacy@pdfinvoicepro.com.

California Residents (CCPA): PDF Invoice Pro does not sell your personal information. We disclose data only to service providers listed in Section 8 for operational purposes. You have the right to know what data is collected and to request deletion.

10. Data Retention

  • Contact form submissions: Retained for up to 12 months to facilitate ongoing support, then deleted.
  • Google Analytics data: Retained for 14 months per Google's default settings.
  • Cloud account data: Retained until you delete your account or submit a deletion request.
  • Server logs: Automatically purged per Vercel's standard log retention policy.
  • Browser localStorage: Persists until you clear your browser data — we have no control over this.

11. Children's Privacy

PDF Invoice Pro is not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@pdfinvoicepro.com and we will delete it promptly.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top. If changes are material, we will post a notice on the website homepage for 30 days. Continued use of PDF Invoice Pro after changes are posted constitutes acceptance of the updated policy.

13. Contact Us

For any privacy questions, data access requests, or concerns, contact us:

We aim to respond to all privacy-related requests within 30 days.

Last Updated: June 27, 2026 · PDF Invoice Pro · https://pdfinvoicepro.com