Privacy Policy

1. Introduction

Roitio ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our invoice management service. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Service.

2. Information We Collect

2.1 Personal Information

We may collect personal information that you voluntarily provide to us when you:

• Register for an account
• Connect your email account
• Subscribe to our service
• Contact our support team

This information may include your name, email address, and payment information.

2.2 Email Data

When you connect your email account (such as Gmail), we access:

• Email subjects and snippets to identify invoice-related messages
• Email attachments (PDFs, images) that appear to be invoices
• Sender information for organizing invoices by vendor
• Email dates for chronological organization

Important: We do not read, store, or process emails that are not related to invoices, receipts, or financial transactions. Our scanning is limited to identifying and extracting invoice-related content only.

2.3 Automatically Collected Information

We automatically collect certain information when you visit our Service, including your IP address, browser type, operating system, access times, and the pages you have viewed directly before and after accessing the Service.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our Service
• Process your transactions and manage your subscription
• Scan your emails to identify and extract invoice data
• Send you technical notices, updates, and support messages
• Respond to your comments, questions, and customer service requests
• Monitor and analyze trends, usage, and activities
• Detect, investigate, and prevent fraudulent transactions and other illegal activities

4. Data Storage and Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

• Encryption of data in transit and at rest
• Secure OAuth 2.0 authentication for email access
• Regular security audits and updates
• Limited employee access to user data

Your invoice data is stored securely in our database. We do not store the full content of your emails—only the metadata and attachments necessary to provide our invoice management service.

5. Third-Party Services

We may share your information with third-party service providers that perform services on our behalf:

• Google: For OAuth authentication and email access (Gmail API)
• Payment Processors: For processing subscription payments
• Cloud Providers: For hosting and data storage
• Analytics Services: For understanding how users interact with our Service

These third parties have access to your personal information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

6. Google API Services

Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, we only use Google user data (email content and attachments) for the purpose of identifying and managing invoices. We do not use this data for advertising, and we do not share it with third parties except as necessary to provide our Service.

7. Your Rights

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate personal information
• Deletion: Request deletion of your personal information
• Portability: Request a copy of your data in a portable format
• Revocation: Revoke access to your email account at any time

To exercise these rights, please contact us at privacy@roitio.com

8. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. If you wish to cancel your account or request that we no longer use your information, please contact us. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

9. Children's Privacy

Our Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us.

10. International Data Transfers

Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

11. Changes to This Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us: