Privacy policy
Invoice Minute (“we”, “us”) is an invoicing service operated by David Michael, trading as Invoice Minute, of 2 Nuthill Farm Cottages, Woking, GU23 6FR, United Kingdom. We are the data controller for the personal data described in this policy, and we take that responsibility seriously: we collect the minimum we need to run the service, we run no advertising or analytics trackers, and we never sell personal data.
Questions or requests about your data: support@invoiceminute.com.
1. The data we collect
Account data
Your name, email address and a cryptographically hashed form of your password (we cannot see the password itself), plus account status, plan and security records such as login timestamps and IP addresses.
Business data you enter
Your business details (name, address, VAT number, logo, payment instructions) and the records you create: customers, invoices, quotes, payments and expenses. This often includes personal data about your customers (names, addresses, emails). For that data you are the controller and we act as your processor — we use it only to provide the service to you, never for our own purposes.
Billing data
If you subscribe to Pro, payment is handled by Stripe. We never see or store your card number — we hold only a Stripe customer reference, subscription status and billing period dates.
Support and feedback
Emails you send to support, and testimonials you choose to submit (published only with your consent).
2. Why we use it (lawful bases)
| Purpose | Lawful basis (UK GDPR Art. 6) |
|---|---|
| Providing the service: accounts, invoices, exports, emails you trigger | Performance of a contract |
| Subscription billing and VAT/tax records | Contract; legal obligation |
| Security: session management, rate limiting, fraud and abuse prevention, audit logs | Legitimate interests (keeping the service and your data safe) |
| Service emails (verification, password resets, billing notices) | Contract; legitimate interests |
| Publishing a testimonial you submit | Consent (withdraw any time) |
We do not use your data for marketing without asking first, and we do not do automated decision-making or profiling.
3. Cookies
We set only strictly necessary cookies, which is why you don’t see a cookie banner: a session cookie to keep you signed in, a short-lived security (CSRF) cookie, and a one-time message cookie. No advertising or cross-site tracking cookies, ever. Stripe sets its own cookies on its checkout pages, covered by Stripe’s privacy policy.
4. Who processes data for us
| Processor | What for | Where |
|---|---|---|
| Cloudflare, Inc. | Hosting, storage and content delivery | Global edge network; data stored with appropriate safeguards (IDTA / EU SCCs) |
| Stripe Payments Europe / Stripe, Inc. | Subscription payments | EU/US, with appropriate safeguards |
| Resend (Plus Five Five, Inc.) | Sending transactional email | US, with appropriate safeguards |
Where data leaves the UK, we rely on the processors’ International Data Transfer Agreements or EU Standard Contractual Clauses with the UK addendum. We don’t share personal data with anyone else unless the law requires it.
5. How long we keep it
- Account and business data: for as long as your account exists.
- If you delete your account, your data is deleted immediately from the live database; short-lived encrypted backups expire within 30 days.
- Billing records that tax law obliges us to keep: up to 6 years.
- Security and audit logs: up to 12 months.
6. Your rights
Under UK GDPR you can ask us to:
- access the personal data we hold about you (you can export your records as CSV from settings any time);
- correct it, delete it (account deletion is self-service in settings), or restrict how we use it;
- provide it in a portable format;
- object to processing based on legitimate interests;
- withdraw consent where consent is the basis (e.g. testimonials).
Email support@invoiceminute.com and we’ll respond within one month. If you’re unhappy with how we handle your data, you can complain to the Information Commissioner’s Office at ico.org.uk or on 0303 123 1113.
7. Security
All traffic is encrypted with TLS. Passwords are salted, peppered and hashed — we cannot read them. Sessions, reset links and share links use high-entropy tokens stored only in hashed form. Access to production systems is restricted, and admin actions are recorded in an audit log.
8. Changes
If we make material changes to this policy we’ll email account holders and show a notice in the app at least 14 days before they take effect.