Privacy Policy

1. Data We Collect

When you use Bilta, we collect the following information:

• Account information: name, email address, company name
• Billing data: invoices, client details, payment records
• Usage data: feature usage, session duration, device type

2. How We Use Your Data

Your data is used to:

• Provide and improve the Bilta service
• Generate invoices, contracts, and reminders on your behalf
• Send transactional emails (confirmations, reminders)
• Provide customer support

We never sell your data or use it for advertising purposes.

3. Hosting and Security

Your data is hosted in Europe via Supabase (PostgreSQL). All connections use TLS encryption. Data at rest is encrypted with AES-256. We follow GDPR requirements for data protection.

4. Sub-processors

We use the following third-party services:

• Supabase — Database, authentication, and file storage (EU)
• Stripe — Payment processing (PCI DSS compliant)
• Resend — Transactional email delivery

5. Your Rights (GDPR)

Under GDPR, you have the right to:

• Access your personal data
• Rectify inaccurate data
• Request deletion of your data
• Export your data in a portable format
• Object to processing

To exercise any of these rights, contact us at contact@bilta.co.

6. Cookies

Bilta uses essential cookies for authentication and session management. We do not use tracking or advertising cookies.

7. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification.

8. Contact

For privacy-related questions, contact us at contact@bilta.co.