Privacy Policy

Introduction

InvoiceIQ ("we", "our", or "us") is a B2B invoice automation platform that enables merchants to create and send invoices, process M-PESA payments, and manage customer communications. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

By using InvoiceIQ, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our service.

Information We Collect

We collect several types of information to provide and improve our service:

How We Use Your Information

We use the information we collect for the following purposes:

• Providing the Service: Creating, managing, and sending invoices on your behalf.
• Payment Processing: Initiating M-PESA STK Push requests, processing manual Paybill and Till payments, and reconciling transactions with invoices.
• Communications: Sending invoice notifications to your customers via WhatsApp and email, and notifying you of payment updates.
• Service Improvement: Analyzing usage patterns to improve functionality, user experience, and performance.
• Support: Responding to your inquiries and providing customer support.

Data Sharing

We share your information with third-party service providers that help us operate our platform:

• Safaricom (M-PESA): We share transaction details with Safaricom via the Daraja API to process M-PESA payments.
• WhatsApp Business API: We use a trusted WhatsApp Business Service Provider (BSP) API to send WhatsApp messages to your customers for invoice notifications and payment confirmations, and to you for payment updates.

We do not sell your personal information to third parties.

Data Security

We implement appropriate technical and organizational measures to protect your information:

• Encryption: Sensitive data, including your Daraja API credentials, is encrypted at rest using industry-standard encryption algorithms.
• HTTPS: All communications between your browser and our servers are encrypted using HTTPS.
• Access Controls: We implement role-based access controls to ensure that only authorized personnel can access sensitive data.

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

Your Rights

You have the following rights regarding your personal information:

• Access: You can request a copy of the personal information we hold about you.
• Correction: You can request that we correct any inaccurate or incomplete information.
• Deletion: You can request that we delete your personal information, subject to legal retention requirements.
• Data Portability: You can request your data in a structured, commonly used format.
• Withdraw Consent: Where we rely on your consent to process your information, you can withdraw that consent at any time.

To exercise any of these rights, please contact us using the information provided below.

Cookies and Tracking

We use cookies and similar tracking technologies to operate our service:

• Essential Cookies: Required for authentication, session management, and security. These cookies are necessary for the service to function properly.
• Analytics: We may use analytics tools to understand how users interact with our service and to improve user experience.

You can control cookie preferences through your browser settings. However, disabling essential cookies may affect the functionality of our service.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top of this policy.

For significant changes, we will also notify you via email or through a prominent notice on our service. We encourage you to review this Privacy Policy periodically for any changes.

Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us at: