Privacy policy
Last updated: February 2025
At Invoice2Notion we care about your privacy. This policy describes what data we collect, what we use it for, and how we protect it when you use our invoice PDF extraction and Notion export service.
1. Data controller
The personal data you provide or that is generated when using Invoice2Notion is processed by the owner of the Invoice2Notion service, as indicated on the website or in the footer.
2. Data we collect
We may collect: (a) data you provide directly, such as your email address when signing up for the waitlist or contacting us; (b) usage data (e.g. frequency of use, types of operations); (c) the content you upload (PDF invoices) and the data extracted from them, only to process and send it to your Notion database at your request. We do not sell your personal data.
3. Purpose of processing
We use your data to provide the Service (invoice data extraction and Notion export), manage your account and our relationship with you, improve the Service, comply with legal obligations, and, if you consent, send you communications about Invoice2Notion.
4. Legal basis
Processing is based on the performance of a contract or pre-contractual measures (providing the Service), on consent when we explicitly request it (e.g. newsletter), and on legitimate interest for security and operation of the Service, within the applicable legal framework (e.g. GDPR in the EU).
5. Sharing data
The data extracted from your invoices is sent to Notion using the credentials and permissions you configure; Notion acts as the controller of the data you store in their services, under their own privacy policy. We may use technical providers (hosting, APIs) that process data on our behalf under confidentiality and compliance agreements.
6. Retention
We retain your personal data for as long as you maintain an active account or relationship with the Service and, thereafter, for as long as necessary to comply with legal obligations, resolve claims, or enforce our agreements. PDFs and extracted data may be retained temporarily for processing; you may request deletion of your data in accordance with the rights section.
7. Your rights
Under applicable law (e.g. GDPR), you may request access, rectification, erasure, restriction of processing, data portability, and objection to the processing of your personal data. You may also lodge a complaint with the relevant data protection authority. To exercise these rights, contact us using the details provided on the website or in the footer.
8. Security
We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or alteration. Communication with the Service uses secure protocols. It is important that you keep your Notion credentials confidential.
9. Changes to this policy
We may update this Privacy policy. Significant changes will be communicated by a notice on the Service or by email when necessary. The «Last updated» date at the top indicates the current version.
10. Contact
For any questions about privacy or exercising your rights, you may contact us through the means indicated on the website or in the Service footer.