Privacy Policy
FactuLink is committed to protecting your data and ensuring compliance with GDPR, Spain’s Veri*Factu requirements, and related regulations. This Privacy Policy describes how we collect, use, and safeguard information when you use our services.
Information we collect
We collect account details, billing information, and invoice payloads submitted via the dashboard or API. System logs and telemetry data are captured to monitor performance and security. We do not sell personal data.
How we use data
Invoice data is processed to generate signatures, deliver to AEAT, handle retries, and maintain audit trails. Contact information is used to provide support, updates, and service-related communications.
Data retention
We retain invoice records and evidence according to Spanish regulations and customer contracts. Sandbox data may be purged periodically. You can request deletion of personal data where legally permitted.
Security
FactuLink uses encryption at rest and in transit, role-based access controls, logging, and continuous monitoring. We regularly assess our systems and work with third parties for penetration tests.
Your rights
You may request access, correction, or deletion of personal data, or object to processing, by contacting hola@factulink.io. We respond within one month, subject to legal obligations.
International transfers
When data leaves the EU, we rely on Standard Contractual Clauses or other lawful mechanisms. We only transfer data to processors that provide adequate safeguards.
Contact
For privacy questions or DPA requests, email hola@factulink.io. We may update this policy and will notify you via the dashboard or email when material changes occur.