~/invoicer/legal/privacy.mdx
back to invoicer
// invoicer·legal

Privacy Policy

v1.0·last updated 07 May 2026·by Pixel Forge

This Privacy Policy describes how [LEGAL ENTITY NAME / ABN] ("Pixel Forge", "we", "us", or "our") collects, uses, stores, and shares information when you use Invoicer (the "App"), available on the Apple App Store.

We take your privacy seriously. Invoicer is built so your data stays yours. We do not run analytics SDKs, we do not use advertising identifiers, we do not track you across other apps or websites, and we do not sell your data.

By downloading or using the App, you agree to the practices described in this policy.

1. Who We Are

  • Operator: [LEGAL ENTITY NAME], ABN [ABN NUMBER]
  • Trading as: Pixel Forge
  • App: Invoicer
  • Privacy contact: privacy@thepixelforge.com.au
  • Postal address: [BUSINESS ADDRESS]

2. What Data We Collect

We only collect data that is needed to operate the App. Specifically:

2.1 Account Data

  • Email address
  • Password (hashed by Supabase, never visible to us)

Used to authenticate you and let you recover your account.

2.2 Profile and Business Data

  • Business name, ABN, ACN
  • Business address, phone number
  • Logo and signature image

Used to render your business identity on every invoice and quote you create.

2.3 Banking Details

  • BSB and account number
  • Account name
  • PayID

Used to display payment instructions on invoices you issue to your clients.

2.4 Client Records

Information you choose to add about your clients:

  • Client and contact person names
  • Email addresses, phone numbers, postal addresses
  • ABNs
  • Notes you write about them

See Section 6 for an important explanation of how we treat client records.

2.5 Invoice and Quote Content

  • Line items, rates, quantities, totals
  • Dates and statuses
  • Notes and attached file references

This is the working content of the App.

2.6 Diagnostic Logs

Invoicer uses Apple's OSLog system to record technical events on your device (operation IDs, error codes, performance markers). These logs:

  • Stay on your device
  • Are never transmitted to our servers
  • Only leave the device if you voluntarily share a sysdiagnose file with us for support, or with Apple via Feedback Assistant

2.7 What We Do Not Collect

For clarity, Invoicer does not collect or use:

  • Analytics or telemetry SDKs (no Firebase, no Google Analytics, no Mixpanel, no Amplitude)
  • Advertising identifiers (IDFA)
  • Location data
  • Contacts, photos, microphone, or camera (unless you explicitly upload a logo or signature image)
  • Any data used to track you across apps or websites

3. Where Your Data Is Stored

3.1 On Your Device

  • SwiftData local cache of your records, so the App works offline and syncs efficiently
  • Apple Keychain stores your authentication refresh token (AfterFirstUnlockThisDeviceOnly)

3.2 Cloud Storage (Supabase)

Your account, business profile, clients, invoices, and quotes are stored on Supabase (PostgreSQL with Supabase Auth), hosted in [SUPABASE REGION, e.g. AWS ap-southeast-2 Sydney].

[IF REGION IS OUTSIDE AUSTRALIA, INCLUDE: Because this region is outside Australia, your personal information is disclosed to an overseas recipient under Australian Privacy Principle 8. Supabase is contractually bound to handle your data in line with privacy obligations consistent with the APPs.]

3.3 Apple Services

Your App Store account and any in-app purchase receipts are handled by Apple, governed by Apple's Privacy Policy.

4. How We Use Your Data

We use your data only to:

  • Provide the invoicing service (display, edit, sync, PDF export, share)
  • Authenticate you across your devices
  • Render your business and banking details on the invoices and quotes you create
  • Diagnose crashes or bugs that you report to us
  • Comply with legal obligations (e.g. responding to lawful requests)

We do not:

  • Sell, rent, or share your data with third parties for marketing
  • Provide your data to advertising networks or data brokers
  • Use your data to train AI or machine learning models
  • Profile you for any commercial purpose

5. Sub-processors

We use the following service providers to operate Invoicer. Each is bound by their own privacy policy and data protection commitments.

Sub-processorPurposePrivacy policy
Supabase Inc.Database hosting, authenticationsupabase.com/privacy
Apple Inc.App Store distribution, Sign in with Apple (if used)apple.com/legal/privacy

If we add new sub-processors in the future (for example, payment processing or push notifications), we will update this list and notify users of material changes.

6. Client Records: Controller vs Processor

This is important if you store client information in the App.

When you add a client to Invoicer:

  • You are the data controller for that client's information. You decide what to collect, what to store, and how long to keep it.
  • Pixel Forge acts as a data processor on your behalf. We store and process that information only to provide the App's functionality.

You are responsible for:

  • Having a lawful basis to store your clients' contact details (typically legitimate business interest or contract performance under GDPR, or a permitted purpose under the APPs)
  • Responding to any access, correction, or deletion requests your clients make about their data
  • Complying with any privacy laws that apply to you as a business

If a client of yours contacts us directly about their data, we will refer them to you, and assist you in fulfilling your obligations.

7. Data Retention

  • Active account: we retain your data for as long as you keep using the App
  • Deleted account: we permanently delete your data within 30 days of deletion (see Section 8)
  • Backups: routine system backups may retain copies for up to 30 days after deletion, after which they are overwritten
  • Legal holds: in rare cases we may retain limited data longer where required by law (for example, financial records)
  • Your exports: any JSON backups you generate are stored on your device or iCloud and are entirely under your control

8. Account Deletion

You can delete your account and associated data at any time, directly within the App:

Settings → Account → Delete Account

You can also email privacy@thepixelforge.com.au to request deletion. We will action the request within 30 days and confirm by email.

Important: deletion is permanent. Your invoices, quotes, clients, and business profile will be removed from our servers and cannot be recovered. We recommend exporting your data as JSON before deleting.

9. Your Privacy Rights

You have the following rights under the Australian Privacy Principles (APPs), the EU/UK General Data Protection Regulation (GDPR), and the California Consumer Privacy Act (CCPA), where applicable:

  • Access: request a copy of the data we hold about you. The in-app JSON export feature provides this in a machine-readable format.
  • Correction: edit any of your data directly in the App at any time.
  • Deletion: delete your account and associated data (Section 8).
  • Portability: the JSON export is your portable copy.
  • Withdraw consent: sign out and delete your account.
  • Object or restrict: object to or restrict certain processing where GDPR applies.

We do not sell or share your personal information for cross-context behavioural advertising under the CCPA/CPRA.

To exercise any of these rights, email privacy@thepixelforge.com.au. We respond within 30 days.

Complaints

  • Australia: Office of the Australian Information Commissioner (OAIC), oaic.gov.au
  • EEA / UK: your local data protection authority

10. Security

We use the following measures to protect your data:

  • Encryption in transit: all communication between the App and our servers uses HTTPS / TLS
  • Encryption at rest: Supabase encrypts data at rest at the storage layer
  • Row-Level Security: Supabase Postgres RLS policies ensure one user can never read another user's records
  • Authentication tokens: stored in the iOS Keychain with AfterFirstUnlockThisDeviceOnly accessibility
  • Banking details: [TODO: CONFIRM if bank account fields are encrypted at rest with bank_account_key, and update this line accordingly]

No method of transmission or storage is completely secure. We encourage you to use a strong, unique password and to keep your device locked and updated.

11. App Tracking Transparency

Invoicer does not track you across other apps or websites owned by other companies, and we do not request permission to do so under Apple's App Tracking Transparency framework.

12. App Store Privacy Disclosures

Apple's App Store privacy labels summarise the data Invoicer collects. The detailed practices are described in this policy, and any updates will be reflected in our App Store listing.

13. Sign in with Apple

If you sign in using Sign in with Apple, you can choose to share or hide your email address. If you choose to hide your email, Apple provides us with a private relay address. We use this address only for service communications. Apple's privacy practices are described at apple.com/privacy.

[REMOVE THIS SECTION IF SIGN IN WITH APPLE IS NOT OFFERED]

14. Children's Privacy

Invoicer is a business tool intended for adult freelancers and businesses. It is not directed to children under 13 (US COPPA) or under 16 (GDPR). We do not knowingly collect personal information from children. If we discover that we have collected data from a child, we will delete it. If you believe a child has provided us with information, contact privacy@thepixelforge.com.au.

15. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will:

  • Update the "Last updated" date at the top
  • Display an in-app banner notifying you of material changes
  • For significant changes, send you an email

Continued use of the App after notification means you accept the updated policy. If you do not accept, you can delete your account at any time.

16. Contact Us

For any privacy-related questions, requests, or complaints: