This policy explains what personal data LudeInvoice ("the Service", "we", "us") collects, why, who we share it with, how long we keep it, and the rights you have. It reflects the General Data Protection Regulation (GDPR) and Cyprus data-protection law.
1. Who we are
The data controller is LudeHQ, based in Larnaca, Cyprus. For any privacy question or to exercise your rights, contact contact@ludehq.com.
2. Using LudeInvoice without an account
You can use the core invoice/offer builder without signing in. In that mode the app runs entirely in your browser: what you type, the logos and product images you add, and your theme preferences are saved only in your device's local storage and are never sent to us. PDFs are generated on your device. If you never sign in, we do not hold any personal data about you beyond the standard server request metadata described in section 4.
3. What we collect when you sign in or subscribe
When you create an account or upgrade to Pro, we process:
- Account & identity. Your name, email address and profile image, as provided by your chosen sign-in provider (Google or Apple, via LudeHQ's single sign-on). We use this to create and secure your account.
- Your documents (Pro cloud sync). If you enable cloud sync, the invoices and offers you save — including buyer details, line items, notes, logos and product images — are stored in our database so they're available across your devices.
- Billing data. To take payment we store your Stripe customer and subscription identifiers, plan, status and renewal date. Your card details are entered directly into Stripe and are never seen or stored by us.
- AI draft builder. If you use the AI feature, the text and images you submit are sent to our AI provider to generate draft line items. We store a monthly counter of how many AI builds you run, to enforce fair-use limits.
- Technical data. Like any web service, our hosting receives standard request metadata (such as your IP address, browser type and timestamps) and keeps short-lived operational logs, used to run and secure the Service.
4. Why we process your data and our legal bases
- To provide the Service (accounts, cloud sync, AI drafting) — performance of a contract (GDPR Art. 6(1)(b)).
- To take payment and manage subscriptions — contract and legal obligation for tax/accounting records (Art. 6(1)(b) and (c)).
- To keep the Service secure and prevent abuse (logs, rate limits) — legitimate interests (Art. 6(1)(f)).
- To process AI requests you initiate — necessary to deliver a feature you asked for (contract), based on your action of submitting the content.
5. Who processes your data for us
We use a small number of trusted providers who process data on our behalf under data- processing agreements:
- Vercel — application hosting and delivery.
- Neon — our database (accounts, subscriptions and cloud-synced documents), hosted in the EU.
- Stripe — payment processing and subscription billing.
- Google and Apple, via LudeHQ single sign-on — account authentication.
- OpenRouter — routes AI draft-builder requests to a language model; only the content you submit to that feature is sent.
We do not sell your personal data, and we do not use it for advertising or third-party marketing.
6. International transfers
Our database is hosted in the EU. Some providers (for example hosting and the AI provider) may process data outside the European Economic Area, including in the United States. Where that happens, the transfer is covered by appropriate safeguards such as the European Commission's Standard Contractual Clauses.
7. How long we keep it
- Account and documents: until you delete them or delete your account.
- Billing records: retained as required by applicable accounting and tax law, even after account deletion.
- AI submissions: we do not retain the text and images you send to the AI feature beyond what's needed to return your draft; only the usage counter remains.
- Technical logs: kept for a short period for security and troubleshooting.
8. Your rights
Under the GDPR you have the right to:
- access the personal data we hold about you;
- correct inaccurate data;
- erase your data ("right to be forgotten");
- receive your data in a portable format;
- restrict or object to certain processing;
- withdraw consent where processing is based on consent.
You can exercise the two most common rights yourself at any time from your account page: Download my data (access and portability) and Delete account (erasure). For anything else, email contact@ludehq.com. You also have the right to lodge a complaint with your supervisory authority — in Cyprus, the Office of the Commissioner for Personal Data Protection.
9. Cookies and local storage
We use only what's strictly necessary, so there is no tracking or advertising cookie banner:
- Sign-in session cookie — set only when you sign in, to keep you logged in. It is essential to the account feature.
- Browser local storage — stores your current draft and preferences on your device (see section 2). It is not transmitted with requests.
When you sign in or pay, Google, Apple and Stripe may set their own cookies on their pages as part of authentication and fraud prevention, governed by their respective policies. We do not use analytics, advertising or cross-site tracking cookies.
10. Security
Data is transmitted over encrypted connections (HTTPS) and access to our database is restricted. No online service can guarantee absolute security, but we take reasonable technical and organisational measures to protect your data.
11. Children
LudeInvoice is a business tool and is not directed at children under 16. We do not knowingly collect data from children.
12. Changes to this policy
If this policy changes, we will update the "Last updated" date above and, for material changes, take reasonable steps to notify account holders.
13. Contact
Questions or requests about your data? Email contact@ludehq.com.