Privacy Policy

Last updated: April 7, 2026

This Privacy Policy explains how TTP GO LTD (“TTP GO”, “we”, “us”, or “our”) collects, uses, stores, and protects personal data when you use the TTP Invoice Dashboard (the “Service”). The Service is an invoice management and analytics platform that allows users to upload, extract data from, categorize, and analyze business invoices.

We are committed to protecting your privacy and handling your data in accordance with the Israeli Protection of Privacy Law, 5741-1981 and its regulations, and, where applicable, the EU General Data Protection Regulation (GDPR).

1. Who We Are (Data Controller)

The data controller responsible for your personal data is TTP GO LTD, an Israeli private limited company. For any privacy-related inquiries, requests, or complaints, please contact us at yinon11@gmail.com.

2. Information We Collect

We collect the following categories of information:

2.1 Account Information

• Full name
• Email address
• Password (stored only as a salted bcrypt hash; we never see or store your plaintext password)
• Profile image (if provided)
• Account creation and email verification timestamps

2.2 Invoice and Business Data

When you upload invoices or other documents, we collect and store the files themselves and the data contained within them, which may include:

• Invoice files (PDF, PNG, JPEG, WebP, TIFF)
• Vendor and supplier names, aliases, and categories
• Invoice numbers, dates, amounts, currency, VAT amounts, and descriptions
• Extracted text, extraction method, and confidence scores
• Review notes, approval status, and rejection reasons
• A cryptographic hash (SHA-256) of each uploaded file, used to detect duplicates

Because invoices are business records, they may incidentally contain personal data about third parties (e.g., vendor contact names). You are responsible for ensuring you have the legal right to upload such documents to the Service.

2.3 Usage and Technical Data

• Session cookies required for authentication
• Audit logs of actions you take in the Service (e.g., approving, rejecting, updating, or deleting invoices)
• Server logs (IP address, browser type, timestamps) used for security and debugging
• Aggregated analytics and product usage data collected through the third-party tools described in Section 13 (Cookies, Analytics & Tracking), subject to your consent choices

We do not sell your personal data to third parties.

2.4 Email Forwarding Service

When you create an account, the Service generates a unique email address for your use. Invoices and documents you forward to this address are automatically received and processed by our servers. To protect against spoofing, we verify DKIM signatures on incoming emails; messages that fail cryptographic sender verification are rejected. We collect and store the email message metadata (sender address, subject line, timestamps), file attachments, and extracted invoice data. Duplicate messages are automatically detected and ignored. You are responsible for ensuring that any third-party information contained in forwarded emails is shared lawfully.

2.5 API Credentials

If you choose to provide your own API key for AI extraction services, we encrypt the key at rest using industry-standard encryption. The key is decrypted only momentarily when making requests on your behalf and is never logged, displayed in full, or shared. You may remove your API key at any time, and removal takes effect immediately.

2.6 Payment Information

If you subscribe to a paid plan, payment processing is handled by Stripe, Inc. We do not store your full credit card number. Stripe’s use of your payment data is governed by Stripe’s privacy policy (https://stripe.com/privacy). We receive from Stripe only the information necessary to manage your subscription, such as payment status, last four digits of your card, and billing cycle dates.

3. How We Use Your Data

We process your personal data for the following purposes:

• To create and manage your account and authenticate you
• To provide the core Service: storing, organizing, extracting, and displaying invoice data
• To automatically extract structured data from uploaded documents using text parsing and AI-based vision models (see Section 5)
• To detect duplicate uploads via file hashing
• To maintain audit trails for accounting and compliance
• To secure the Service, prevent abuse, and troubleshoot issues
• To comply with legal obligations under Israeli and, where applicable, EU law

4. Legal Basis for Processing (GDPR)

Where GDPR applies, we rely on the following legal bases:

• Contract: processing necessary to provide the Service you signed up for.
• Legitimate interests: securing the Service, preventing fraud, and improving functionality.
• Legal obligation: where we must retain or disclose data under applicable law.
• Consent: where you have explicitly consented (you may withdraw consent at any time).

5. Automated Data Extraction

To extract fields such as vendor, date, and amount from your uploaded documents, the Service uses a combination of text-based parsing and, as a fallback for scanned or image-based documents, a third-party AI-powered vision model. When vision-based extraction is used, the contents of the relevant document are transmitted to the AI provider solely for the purpose of extracting structured data, and are not used by us or the provider to train public models. No decisions with legal or similarly significant effects are made about you based solely on automated processing.

The AI extraction services are currently provided by one or more of the following providers, depending on availability and document type:

• Anthropic, PBC (Claude) — San Francisco, USA
• Google LLC (Gemini) — Mountain View, USA
• OpenAI, Inc. (GPT) — San Francisco, USA

Each provider processes document data solely for extraction purposes. We maintain Data Processing Agreements or equivalent contractual safeguards with each provider. Where your data is transferred to providers located outside the European Economic Area, such transfers are made subject to appropriate safeguards as described in Section 6.

6. Where Your Data Is Stored

Account data, invoice metadata, vendors, and audit logs are stored in a PostgreSQL database hosted on servers located in Israel and operated directly by TTP GO LTD. Uploaded files are currently stored on locally-managed servers in Israel. Files are logically isolated per user.

We may migrate file storage to Amazon Web Services (AWS) infrastructure in the future. If and when such migration occurs, we will update this Policy to reflect the specific AWS region(s) used. Where personal data of EU residents would be transferred outside the European Economic Area, we will ensure appropriate safeguards are in place, such as the European Commission’s Standard Contractual Clauses or AWS’s Data Processing Addendum.

7. Data Sharing and Disclosure

We do not sell your personal data. We may share data only with:

• Service providers (processors) acting on our behalf, such as hosting, database, object storage, and AI extraction providers, each bound by confidentiality and data protection obligations.
• Legal and regulatory authorities where required by Israeli law, court order, or valid legal process.
• Successors in connection with a merger, acquisition, or sale of assets, subject to this Policy.
• Payment processor (Stripe, Inc.) for subscription billing, bound by their Data Processing Agreement.
• AI extraction providers (Anthropic, Google, and OpenAI) for automated document processing, each bound by Data Processing Agreements or equivalent contractual safeguards.

8. Data Retention

We retain your data according to the following schedule:

Account information is retained for as long as your account remains active, and deleted within 30 days of account closure, unless longer retention is required by law.

Invoice data and uploaded files are retained for as long as your account remains active. Upon account deletion, invoice data is deleted within 30 days, except where we are required to retain records for tax or accounting purposes under Israeli law (typically 7 years from the end of the relevant tax year).

Server logs are retained for up to 12 months for security and debugging purposes.

Audit logs are retained for as long as your account is active plus 7 years, to comply with accounting record-keeping requirements.

You may request deletion of your account and associated data at any time by contacting us at yinon11@gmail.com. We will process deletion requests within 30 days, subject to any legal retention obligations.

9. Security

9.1 Technical and organizational measures

We implement technical and organizational measures designed to protect your data, including encryption in transit (HTTPS), bcrypt password hashing, server-side session validation, per-user data isolation, parameterized database queries, and access controls. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

Additionally, login attempts and password reset requests are rate-limited to prevent brute-force attacks. Password reset links are single-use, cryptographically random, and expire within one hour.

Your identity is re-verified on every request using a signed session token. Changes to your account status (such as role changes or access revocation) take effect immediately.

9.2 Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority (the Israeli Privacy Protection Authority or, where applicable, an EU data protection authority) within 72 hours of becoming aware of the breach. Where the breach is likely to result in a high risk to you, we will also notify you directly without undue delay, providing information about the nature of the breach and steps you can take to protect yourself.

10. Your Rights

Subject to applicable law, you have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate or incomplete data
• Request deletion (“right to be forgotten”) of your data
• Restrict or object to certain processing
• Request portability of your data in a machine-readable format
• Withdraw consent where processing is based on consent
• Lodge a complaint with the Israeli Privacy Protection Authority or, if you are in the EU, your local data protection authority

To exercise any of these rights, contact yinon11@gmail.com. We will respond within the timeframes required by applicable law.

11. Children

The Service is intended solely for users who are 18 years of age or older. We do not knowingly collect personal data from children under 18. If you believe a minor has provided us with personal data, please contact us and we will delete it.

12. Business Use

The Service is designed for business and professional use. If you use the Service on behalf of a company or organization, you represent that you have authority to bind that entity to this Privacy Policy and our Terms of Service.

13. Cookies, Analytics & Tracking

The Service uses two categories of cookies and similar technologies:

• Strictly necessary cookies. Required for core functionality such as authentication, session management, security, and remembering your cookie preferences. These are always on and do not require your consent.
• Analytics cookies (optional, consent-based). Used to understand how users interact with the Service so we can improve it. These are loaded only if you grant consent via our cookie banner.

13.1 Consent Categories and Google Consent Mode v2

Our cookie banner exposes three categories:

• Strictly necessary — always on.
• Analytics — off by default; when you opt in, tools such as Google Analytics and Microsoft Clarity are loaded through Google Tag Manager.
• Advertising — off by default; when you opt in, tools such as the Meta (Facebook) Pixel and Google Ads conversion tags are loaded through Google Tag Manager for conversion measurement, audience building, and retargeting.

We implement Google’s Consent Mode v2. By default, analytics_storage, ad_storage, ad_user_data, and ad_personalization are set to denied until you make a choice in our cookie banner. Only functionality_storage and security_storage are granted by default, as they are strictly necessary. Your choices in the Analytics and Advertising categories directly control which of these signals are updated to granted.

13.2 Third-Party Analytics and Tag Management Tools

Subject to your consent, the Service may load the following third-party tools:

• Google Tag Manager (GTM). Provided by Google Ireland Limited. GTM is a tag container used to deploy and manage tags; it does not set tracking cookies on its own but can load other tags (such as Google Analytics) based on your consent choices.
• Google Analytics 4 (GA4). Provided by Google Ireland Limited. Used to collect aggregated usage statistics such as page views, session duration, device type, approximate geolocation (based on IP), and interactions with the Service. GA4 sets cookies such as _ga, _gid, and _gat, which are automatically cleared if you withdraw analytics consent. IP addresses are truncated/anonymized where supported.
• Microsoft Clarity. Provided by Microsoft Corporation. Used to understand how users interact with the Service through aggregated metrics, heatmaps, and session replays. Clarity may record interactions such as mouse movements, clicks, scrolls, and page navigation. We configure Clarity to mask sensitive input fields by default, but you should avoid entering highly sensitive personal data into fields that are not clearly required.
• Meta (Facebook) Pixel. Provided by Meta Platforms Ireland Ltd. Used, subject to your consent, for conversion measurement, audience building, and retargeting advertising on Facebook, Instagram, and other Meta properties. The Meta Pixel may set cookies such as _fbp and fr, and may transmit events (such as page views, sign-ups, or other interactions) to Meta. Meta is a joint controller with us for certain pixel-collected data under the Meta Controller Addendum.
• Additional tags (future integrations).We may, from time to time, add further measurement, analytics, error-monitoring, advertising, or marketing tags through GTM. Any such tag will only be loaded under an existing consent category you have already approved (for example, an additional analytics provider under the “analytics” category). We will update this Policy to name the specific provider when we add a tag that: (i) introduces a new consent category; (ii) materially changes the scope of data collected; or (iii) transfers data to a new jurisdiction or recipient not already listed here. Minor additions within an existing category may be reflected only in a future revision of this Policy.

These providers act as independent or joint data controllers for the data they collect through their own tools. Their use of data is governed by their own privacy policies:

• Google: https://policies.google.com/privacy
• Microsoft Clarity: https://privacy.microsoft.com/privacystatement
• Meta (Facebook): https://www.facebook.com/privacy/policy/

13.3 International Transfers

Google, Microsoft, and Meta may process data outside the European Economic Area and Israel, including in the United States. Where such transfers involve personal data of EU or Israeli residents, they are made subject to appropriate safeguards, such as the European Commission’s Standard Contractual Clauses and Israeli Privacy Protection Regulations (Transfer of Data to Databases Abroad), 5761-2001.

13.4 Managing Your Choices

You can accept, reject, or customize your cookie preferences at any time via the cookie banner and the “Preferences” link it provides. Rejecting analytics cookies will not affect your ability to use the core features of the Service. You can also block or delete cookies directly in your browser settings.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified through the Service or by email. The “Last updated” date at the top reflects the latest revision.

15. Contact

TTP GO LTD
Email: yinon11@gmail.com

See also our Terms of Service.

© 2026 TTP GO LTD. All rights reserved.