Invome
Sign in →

Legal

Privacy Policy

Effective date: 10 June 2025

This Privacy Policy explains how South Alias Limited, trading as Invome, collects, uses, and protects your personal data when you use the Invome platform at https://invome.app.

1. Information We Collect

Account information: When you sign up, we collect your email address and any profile details you provide.

Business information: Company name, address, phone number, logo, and brand settings you enter during onboarding or in your account settings.

Document data: Invoice content, customer details, line items, payment records, expenses, and any other data you input into the platform.

Usage data: Pages visited, features used, and general interaction patterns — used to improve the platform. We do not sell this data.

Payment information: Subscription payments are handled by Paystack. We do not store your card details. Paystack's own privacy policy applies to payment processing.

2. How We Use Your Information

  • To provide, operate, and improve the Invome service
  • To process your subscription and send billing-related communications
  • To send transactional emails (invoice copies, payment reminders, team invites) on your behalf
  • To respond to support requests and account queries
  • To detect and prevent fraud, abuse, or security incidents
  • To comply with applicable legal obligations

We do not sell your personal data to third parties. We do not use your data for advertising purposes.

3. Your Customers' Data

When you add customers to Invome, you are uploading personal data about third parties (names, emails, addresses, etc.). You are the data controller for this information. You are responsible for ensuring you have a lawful basis for storing and processing your customers' data and for obtaining any necessary consents.

We act as a data processor for your customer data — we only process it according to your instructions and to provide the service.

4. Data Sharing and Third Parties

We share data with the following third-party services to operate the platform:

  • Supabase — database and authentication infrastructure. Data is stored on Supabase servers.
  • Resend — email delivery service used to send invoices, reminders, and platform notifications.
  • Paystack — payment processing for subscription billing.
  • Vercel — hosting and infrastructure provider.

We do not share your data with any other third parties except where required by law.

5. Data Retention

We retain your account data for as long as your account is active. If you close your account, we will retain your data for 30 days to allow for recovery, after which it will be permanently deleted.

You can export your data at any time from your account settings before closing your account.

6. Security

We take the security of your data seriously. All data is encrypted in transit using HTTPS/TLS. Our database uses row-level security to ensure your data is isolated from other users. We implement industry-standard security practices to protect against unauthorised access, disclosure, or loss of data.

No system is completely secure. In the event of a data breach that affects your personal data, we will notify you as required by applicable law.

7. Cookies

Invome uses essential cookies to maintain your login session. We do not use advertising cookies or third-party tracking cookies. You can disable cookies in your browser settings, but this will prevent you from logging in to the platform.

8. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and data
  • Export your data in a portable format
  • Object to or restrict certain processing of your data

To exercise any of these rights, contact us at support@invome.app. We will respond within 30 days.

9. Children's Privacy

Invome is not intended for use by anyone under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with their data, please contact us and we will delete it promptly.

10. Governing Law

This Privacy Policy is governed by the laws of the Federal Republic of Nigeria, including the Nigeria Data Protection Regulation (NDPR). If you have an unresolved complaint, you may contact the National Information Technology Development Agency (NITDA).

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes by email or by a prominent notice on the platform. The effective date at the top of this page will always reflect the most recent version.

12. Contact Us

For any privacy-related questions or requests, please contact us at: support@invome.app

South Alias Limited — operating as Invome at https://invome.app