Privacy Policy

PayPrompt (“we”, “us”, “our”) operates the PayPrompt mobile application and the payprompt.app website. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, who we share it with, and the choices you have.

By using PayPrompt you agree to the practices described in this policy. If you disagree, please discontinue use and contact us to request data deletion.

A. Account & Identity

When you register, sign in with Google, or claim a guest account, we collect:

• Full name and email address
• Password — stored as a scrypt hash with a unique salt. We never store plain-text passwords.
• Google Sign-In: your Google profile email and display name, received after you authorize. We validate tokens against our Google OAuth client ID.

B. Guest Accounts

• Temporary accounts use auto-generated emails in the form guest_<uuid>@payprompt.app.
• Guest data is stored on our servers but features are limited until you claim a permanent account.

C. Business Profile

• Business name, type, contact email, phone, and address
• Currency preference, invoice prefix, logo URL
• Reminder preferences (timing, frequency)

D. Business Data You Enter

• Customer records: name, company, email, phone, address, tax number, notes
• Invoices: line items, amounts, statuses, due dates, notes
• Payments, receipts, reminder logs, and in-app notifications

E. Usage & Subscription Data

• Subscription tier (guest / registered / premium), status, and billing period dates
• Monthly usage counters: invoices created, emails sent, WhatsApp actions initiated
• Product analytics events (e.g. plan_viewed, invoice_created, purchase_started) linked to your user ID

F. Device & App Data

• Authentication token stored locally on your device (AsyncStorage)
• We do not use browser cookies for authentication — PayPrompt uses a Bearer token API model

G. Website (payprompt.app marketing pages)

• Static informational pages; no account login is available on the website
• Standard server logs (IP address, user agent, timestamps) from our hosting provider

• Provide invoicing, customer management, payment tracking, and reminder features
• Send invoice and reminder emails on your behalf via our email provider (Resend)
• Generate WhatsApp message links (wa.me) — messages are sent from your own device and WhatsApp account, not by PayPrompt directly
• Enforce plan limits (guest, free, premium) and prevent abuse
• Process subscriptions via RevenueCat and app stores
• Improve the product through first-party analytics
• Respond to support requests
• Apply rate limiting on authentication endpoints to prevent brute-force attacks

If you are located in the European Economic Area (EEA) or United Kingdom, we process your personal data under the following legal bases:

• Contract performance — to deliver the PayPrompt service you signed up for
• Legitimate interests — product analytics, security, fraud prevention
• Consent — where we request it explicitly (e.g. optional marketing)

Users outside the EEA/UK: applicable local privacy law governs your rights. The protections described in this policy apply regardless of location.

We share data only with the providers necessary to operate PayPrompt. Each provider processes data under their own privacy policy.

• Supabase — database hosting (PostgreSQL). Your account and business data is stored here.
• Railway — API server hosting. Requests to the PayPrompt API are processed here.
• Resend — transactional email delivery (invoice PDFs, payment reminders sent on your behalf).
• Google — OAuth sign-in. We receive only your email and display name after your explicit authorization.
• RevenueCat — subscription management and purchase tracking.
• Apple App Store / Google Play — in-app purchase processing for Premium ($4.99/month).
• WhatsApp / Meta — only when you choose to open a wa.me link. We do not use or integrate the WhatsApp Business API.

• We share data with the service providers listed in Section 5, limited to what is needed to operate the service.
• Invoice and reminder emails are sent to your customers' email addresses — you control who receives them.
• We may disclose data if required by law, court order, or to protect the rights and safety of PayPrompt, our users, or the public.

• Active accounts: retained while your account exists and for a reasonable period after closure for legal and audit purposes.
• Deleted invoices with associated payments may be soft-deleted/archived to preserve financial audit trails.
• Guest accounts: retained until claimed as a permanent account, or until inactive for 90 days, whichever comes first.
• Analytics events: retained for up to 24 months, then anonymized or deleted.
• Account deletion requests are processed within 30 days. As there is no in-app deletion flow yet, email privacy@payprompt.app to request deletion.

• All data in transit is protected by HTTPS/TLS.
• Passwords are hashed with scrypt plus a unique salt — never stored in plain text.
• Authentication tokens are HMAC-signed with expiry.
• Business data is scoped per authenticated user — there is no cross-tenant data access.
• Rate limiting is applied to authentication endpoints.

No system is perfectly secure. If you discover a vulnerability, please contact us at privacy@payprompt.app.

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and data
• Export your data in a portable format
• Opt out of non-essential analytics (contact us or use the in-app toggle if available)

To exercise any right, email privacy@payprompt.app. We will respond within 30 days.

California (CCPA / CPRA)

California residents have the right to know, delete, correct, and opt out of the sale or sharing of personal information. We do not sell personal information. Submit requests to privacy@payprompt.app.

EEA / UK (GDPR)

You may also lodge a complaint with your local data protection authority. Contact details for EEA authorities are listed at edpb.europa.eu.

Google Permissions

You can manage or revoke Google Sign-In permissions at any time via your Google Account settings.

PayPrompt is not intended for users under 13 years of age (or under 16 in the EEA). We do not knowingly collect personal data from children. If you believe a child has provided us with data, contact privacy@payprompt.app and we will delete it promptly.

PayPrompt is operated with infrastructure in the United States. If you access our service from outside the US, your data may be transferred to and processed in the US. We take appropriate safeguards — including contractual protections with our service providers — to ensure your data is handled securely and in accordance with this policy.

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page. For material changes, we will provide notice via in-app notification or email where appropriate. Continued use of PayPrompt after changes constitutes acceptance of the updated policy.

For privacy questions, data access, correction, or deletion requests:

• Privacy: privacy@payprompt.app
• General support: support@payprompt.app
• Website: https://payprompt.app