Last updated: 1/22/2026
We collect: (a) your email address for account creation and authentication, (b) your Hiboutik API credentials (encrypted at rest), (c) vendor and invoice data synced from your Hiboutik account.
We process your data based on contract fulfillment (providing the invoice generation service you signed up for). We do not use your data for marketing or profiling.
Your data is stored in secure databases hosted by Supabase (EU region available). We retain your data until you delete your account. You can request deletion at any time.
You have the right to: access your data, rectify inaccuracies, request erasure, restrict processing, data portability, and object to processing. Contact privacy@autofacture.pro to exercise these rights.
We use: Supabase (database, EU), Vercel (hosting, US with EU data processing), Lemon Squeezy (payments, US/EU). Each processor has their own GDPR-compliant privacy policy.
Some sub-processors are US-based. Data transfers are covered by Standard Contractual Clauses (SCCs) as per GDPR requirements.
For privacy concerns: privacy@autofacture.pro. You also have the right to lodge a complaint with your local data protection authority (CNIL in France).