Home · Privacy

Privacy & local-only architecture

Invoice files are sensitive. The default scan keeps them in your browser.

This page answers the first enterprise objection: what happens to invoice rows, master data, and exported reports? The short answer — by default, nothing leaves your device.

Local-only scan path

Simple enough to explain before a client uploads anything.

CSV files Browser worker Local rule engine Report / export Manual wipe / 15-min auto-wipe

Privacy proof

The default scanner is intentionally quiet.

No upload by default

CSV parsing and analysis run in the browser. The zero-cost build needs no server-side scan.

No invoice rows in LocalStorage

Preferences may be stored, but raw invoice rows are not persisted in LocalStorage.

Manual + 15-min auto-wipe

The scan page has a wipe control and is designed around short-lived local sessions.

No third-party scripts

No CDNs, trackers, or analytics. The app shell may cache; client invoice files are not cached.

Privacy policy

What is processed, what is not uploaded, and what remains your responsibility.

Browser-local processing by default

Invoice CSVs, customer masters, vendor masters, tax-code lists, and supporting files are parsed and checked in your browser. No raw invoice rows are uploaded to our servers by default.

What may be stored locally

The scanner may remember non-sensitive preferences — country pack, theme, language, thresholds, brand color. Raw invoice rows and client master-data rows are not intentionally stored in LocalStorage.

What may be collected when you contact us

If you request support, a pilot review, a paid pack, or send a message, limited metadata may be collected — name, company, contact details, scan ID, row counts, plan, and summarized issue counts. Do not send raw invoice data without a written processing agreement.

Exports are user-controlled

PDF reports, CSV issue registers, remediation emails, and ASP workshop packs are generated for you to download and share. You control whether those exports leave your device.

PDPL responsibility

Invoice exports may contain personal and commercially sensitive data. You are responsible for complying with UAE Federal Decree-Law No. 45 of 2021 and any client confidentiality obligations on the files you process.

Deletion & wipe

The workspace includes manual wipe controls and a 15-minute auto-wipe design. Closing the tab, clearing site data, or using the wipe control removes the active local scan session.

Enterprise option

Private deployment remains available for firms that prohibit browser tools.

Private hosting

Run in a controlled environment

For large firms, BPOs, or regulated groups with procurement constraints.

Custom rules

Keep rule packs tenant-specific

Add ERP-specific mappings, branches, entities, and private exception rules.

Audit posture

Report what was checked

Timestamp, file names, row counts, deterministic row hashes, and rule-pack versions.

Run the sample scan without uploading any client data.

See exactly how the local-only path works before you ever touch a real file.

Run a free scan →