Privacy Policy

This Privacy Policy explains how DueTrail collects, uses, stores, and protects information when you visit the public site, create an account, use the product, or contact support.

The policy covers business contact information, workspace data needed to run the service, support communications, and limited technical information used for security and product reliability.

We collect account details such as name, work email address, organisation name, and role information needed to create and manage a workspace.

Inside the product, we process invoice data, customer contact details, communication history, promise-to-pay submissions, internal notes, import records, and audit events required for the collections workflow.

We also collect technical information such as log data, browser information, approximate location derived from IP address, and events required for security, billing, and service monitoring.

We use information to provide the service, authenticate users, secure workspaces, send operational notices, process billing, improve onboarding, and respond to support requests.

We do not use customer invoice data for advertising. Product analytics should be limited to understanding onboarding, safety, and product reliability.

DueTrail relies on specialised providers for hosting, authentication, transactional email, billing, error monitoring, analytics, and customer support. These providers process data only to the extent needed to deliver the service.

Paddle.com Market Limited is the merchant of record for all orders and processes payment details, tax handling, and invoicing. Paddle is an independent controller for payment data.

We retain account and workspace data for as long as needed to provide the service, meet legal obligations, resolve disputes, and maintain security records.

When an account is closed, we may retain limited records for fraud prevention, financial reporting, and audit purposes before deletion or anonymisation.

You may request access, correction, export, or deletion of personal information, subject to legal and contractual limits. Workspace owners remain responsible for the customer data they upload into the product.

Privacy requests can be sent to the contact below. We may need to verify the request before acting on it.

The data controller for the DueTrail service is Dmytro Yalanskyi, an individual entrepreneur registered in Ukraine.

For privacy requests (access, correction, export, deletion) write to privacy@duetrail.com. We aim to acknowledge privacy requests within 5 working days and to respond substantively within 30 days.