Invoisor
Legal

Privacy Policy

We believe your receipt data is yours. This policy explains exactly what we collect, why, and how you stay in control.

Last updated: May 30, 2026

Introduction

Invoisor (“we”, “us”, or “our”) operates the Invoisor mobile application for iOS and Android and the website at invoisorai.com(collectively, the “Service”). This Privacy Policy describes how we collect, use, and share information about you when you use our Service, and the choices you have regarding that information.

By creating an account or using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

Short version: We collect only what we need to run the app. We do not sell your data. Your receipt content is processed by our AI pipeline on our servers and is never used to train third-party models.

Information we collect

Account information

When you register, we collect your email address and a hashed version of your password. Optionally, you may provide a display name and phone number. If you sign in with Apple, we receive the token Apple provides and the name you choose to share.

Receipt and financial data

The core purpose of Invoisor is receipt management. When you scan or manually enter a receipt, we store:

  • Merchant name, date, total amount, currency, and payment method
  • Individual line items including name, quantity, unit price, and category
  • Receipt images you upload (stored on Cloudflare R2)
  • Raw text if you submit text-based entries
  • AI extraction confidence metadata

Usage and analytics data

We collect limited usage data to operate the Service:

  • Number of AI scans and categorizations performed (to enforce plan limits)
  • AI token consumption and associated costs per account (internal operations)
  • Job status history (scan submitted, completed, failed, duplicate)
  • Subscription state: plan type (free trial, Plus, or Pro), trial start date, expiry date
  • Monthly scan usage count (to enforce monthly plan limits)

Device and technical data

  • Push notification token — registered when you grant notification permission; used only to send scan-complete and duplicate-detection notifications
  • Device platform (iOS or Android) — stored alongside your push token
  • Access and refresh tokens— short-lived JWT tokens used to authenticate API requests; the refresh token is stored in your device's secure enclave (iOS Keychain / Android Keystore)

Preferences

Currency, region, and display theme preferences are stored locally on your device and may also be synced to your account profile so they persist across reinstalls.

How we use your data

We use the information we collect to:

  • Provide the Service — authenticate your account, store your receipts, run AI extraction, and show analytics
  • Enforce plan limits — track daily AI scan and categorization usage against your trial or subscription limits
  • Send push notifications — notify you when an async scan completes, a duplicate is detected, or a scan fails; only sent if you granted permission
  • Improve the Service — aggregate, anonymised metrics (not linked to your identity) to understand usage patterns and fix bugs
  • Communicate important updates — account security alerts, policy changes, and subscription notices via email; we do not send marketing emails without separate consent
  • Comply with legal obligations — retain records as required by applicable law and respond to lawful requests from authorities

AI processing

When you scan a receipt — whether by image or text — the content is transmitted over an encrypted connection to our backend servers, where an AI pipeline extracts structured data (merchant, items, amounts, dates, currency). The process works as follows:

  • Receipt images are stored temporarily in memory during processing and are not retained in raw form on AI inference servers
  • Extracted structured data is stored in your account in our database
  • Receipt content is not shared with third-party AI providers in a way that associates it with your identity
  • We do not use your receipt content to train or fine-tune any machine learning model
  • Duplicate detection compares hashed fingerprints of receipts within your own account only

If you choose “Save anyway” on a duplicate notification, the original scan payload is resubmitted with a force flag; no new personal data is collected in this flow.

Data sharing

We do not sell, rent, or trade your personal information to third parties. We share information only in the following limited circumstances:

  • Service providers — cloud infrastructure, database hosting, file storage (Cloudflare R2), and AI inference providers who process data solely on our behalf under data processing agreements
  • Push notification delivery — Expo Push Notification Service relays notifications to Apple APNs and Google FCM; only a notification payload and your push token are shared, never receipt content
  • Legal requirements — if required by law, court order, or to protect the rights, property, or safety of Invoisor or others
  • Business transfers — in the event of a merger, acquisition, or sale of assets, your data may be transferred; we will notify you via email before that occurs

Data retention

We retain your data for as long as your account is active or as needed to provide the Service:

  • Account data — retained until you delete your account or request deletion
  • Receipt data — retained until you delete individual receipts or your entire account
  • AI usage statistics — aggregated monthly records retained for up to 2 years for billing and abuse-prevention purposes
  • Push tokens — automatically deregistered and deleted when you log out or uninstall the app
  • Job records — scan job metadata retained for 90 days then purged

After account deletion, we may retain anonymised, aggregated data that cannot be used to identify you. Backups may persist for up to 30 days after deletion for operational continuity before being permanently purged.

Your rights

Regardless of where you are located, you have the following rights with respect to your personal data:

  • Access — request a copy of the personal data we hold about you
  • Correction — update inaccurate or incomplete information via the app (Settings → Profile) or by contacting us
  • Deletion — request deletion of your account and all associated data by emailing us; we will process requests within 30 days
  • Portability — request an export of your receipt data in a structured, machine-readable format
  • Objection — object to processing of your data for purposes other than delivering the Service
  • Withdraw consent — where processing is based on consent (e.g. push notifications), you may withdraw it at any time via your device settings

To exercise any of these rights, email [email protected]with the subject line “Privacy Request”. We will respond within 30 days. We may ask you to verify your identity before acting on a request.

Security

We take reasonable technical and organisational measures to protect your data against unauthorised access, loss, or disclosure. These include:

  • All data in transit encrypted using TLS/HTTPS
  • JWT access tokens with a 15-minute expiry; refresh tokens with a 30-day expiry
  • Refresh tokens stored in the device's secure enclave (iOS Keychain / Android Keystore)
  • Database access restricted to authenticated backend processes
  • Receipt images stored on Cloudflare R2 with access-controlled URLs

No method of transmission or storage is 100% secure. If you believe your account has been compromised, change your password immediately and contact us at [email protected].

For a detailed security overview, see our Security page.

Children's privacy

The Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us and we will delete it promptly.

International transfers

Invoisor is a global service. Your data may be stored and processed in countries outside your own, including countries that may have different data protection laws. By using the Service, you consent to this transfer. We take steps to ensure that any international transfers are protected by appropriate safeguards, such as data processing agreements with our service providers.

If you are located in the European Economic Area (EEA) or United Kingdom, we rely on legitimate interests or contractual necessity as our legal basis for processing, unless we specifically ask for consent. You have the right to lodge a complaint with your local data protection authority.

Changes to this policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by updating the “Last updated” date above and, where appropriate, sending an email notification or displaying an in-app notice. We encourage you to review this policy periodically.

Continued use of the Service after changes take effect constitutes your acceptance of the revised policy.

Contact us

If you have questions, concerns, or requests about this Privacy Policy or your personal data, please contact us:

Invoisor
Email: [email protected]
Subject line: Privacy Request
Website: invoisorai.com