Data & Privacy
Your data belongs to you
We collect the minimum needed to run the service. We don't sell your data. We don't use it for advertising.
Effective: 1 May 2026 ยท Complies with UK GDPR & PECR
๐ Short version: Account details (name, email) live on our servers. Invoices and business info live in your browser unless you have Pro history enabled. Payments are handled by Paddle โ we never see your card details. You can delete everything at any time.
What data we collect
| Data type | Where stored | Why |
|---|---|---|
| Email address | Our servers (encrypted) | Login, activation codes, receipts |
| Display name | Our servers | Personalise your account |
| Login provider | Our servers | Google / Apple / email โ authentication only |
| Subscription status | Our servers + Paddle | To know which features to unlock |
| Invoice content | Your browser (or our servers if Pro history is on) | Generate and store your invoices |
| Business name & logo | Our servers (Settings) | Auto-fill your invoices |
| Payment info | Paddle only โ not us | We never see your card details |
| Usage analytics | Anonymised | Page views, feature usage โ no personal identifiers |
| Error logs | Our servers (30-day retention) | Debugging โ auto-deleted after 30 days |
Cookies
We use only essential cookies โ no tracking, no advertising. We do not use Google Analytics, Facebook Pixel, or any third-party advertising trackers.
Third parties we share data with
- Paddle โ your email, billing details, country (for payment processing & tax compliance)
- Google / Apple โ OAuth token only if you sign in with them (for authentication)
- Lovable Cloud (hosting) โ encrypted database storage for your account
Your rights under UK GDPR
- โ Right to access โ request a copy of all data we hold on you
- โ Right to rectification โ correct any inaccurate data
- โ Right to erasure โ request full account deletion (completed within 30 days)
- โ Right to data portability โ export your invoices and account data
- โ Right to object โ opt out of any non-essential processing
Email privacy@yourhandybook.com to exercise any of these rights.