Home · Privacy
Privacy & local-only architecture
Invoice files are sensitive. The default scan keeps them in your browser.
This page answers the first enterprise objection: what happens to invoice rows, master data, and exported reports? The short answer — by default, nothing leaves your device.
Local-only scan path
Simple enough to explain before a client uploads anything.
Privacy proof
The default scanner is intentionally quiet.
No upload by default
CSV parsing and analysis run in the browser. The zero-cost build needs no server-side scan.
No invoice rows in LocalStorage
Preferences may be stored, but raw invoice rows are not persisted in LocalStorage.
Manual + 15-min auto-wipe
The scan page has a wipe control and is designed around short-lived local sessions.
No third-party scripts
No CDNs, trackers, or analytics. The app shell may cache; client invoice files are not cached.
Privacy policy
What is processed, what is not uploaded, and what remains your responsibility.
Browser-local processing by default
Invoice CSVs, customer masters, vendor masters, tax-code lists, and supporting files are parsed and checked in your browser. No raw invoice rows are uploaded to our servers by default.
What may be stored locally
The scanner may remember non-sensitive preferences — country pack, theme, language, thresholds, brand color. Raw invoice rows and client master-data rows are not intentionally stored in LocalStorage.
What may be collected when you contact us
If you request support, a pilot review, a paid pack, or send a message, limited metadata may be collected — name, company, contact details, scan ID, row counts, plan, and summarized issue counts. Do not send raw invoice data without a written processing agreement.
Exports are user-controlled
PDF reports, CSV issue registers, remediation emails, and ASP workshop packs are generated for you to download and share. You control whether those exports leave your device.
PDPL responsibility
Invoice exports may contain personal and commercially sensitive data. You are responsible for complying with UAE Federal Decree-Law No. 45 of 2021 and any client confidentiality obligations on the files you process.
Deletion & wipe
The workspace includes manual wipe controls and a 15-minute auto-wipe design. Closing the tab, clearing site data, or using the wipe control removes the active local scan session.
Enterprise option
Private deployment remains available for firms that prohibit browser tools.
Run in a controlled environment
For large firms, BPOs, or regulated groups with procurement constraints.
Keep rule packs tenant-specific
Add ERP-specific mappings, branches, entities, and private exception rules.
Report what was checked
Timestamp, file names, row counts, deterministic row hashes, and rule-pack versions.
Run the sample scan without uploading any client data.
See exactly how the local-only path works before you ever touch a real file.