Last updated: 1 March 2026
e-Invoice.app ("we," "our," or "the Site") is operated from New South Wales, Australia. For data protection purposes, the data controller is e-Invoice.app, contactable at team@e-invoice.app.
This Privacy Policy explains how we collect, use, and share information when you use the Site. It applies to all visitors, whether browsing as an unauthenticated guest or as a signed-in user.
When you sign in with LinkedIn, we collect:
We collect content you create on the Site, including:
We automatically collect certain information when you use the Site:
When you use the Vendor Match Tool, we collect:
This data is stored as Vendor Match Tool sessions and is shared with our appointed procurement partner only upon your explicit consent at the submission step.
We track anonymised impressions and clicks on sponsored content to measure sponsorship performance. This tracking uses a temporary session-based identifier (cleared when you close the tab). Sponsorship analytics are not used for behavioural advertising or user profiling.
When you invite colleagues via the Site, we collect the email addresses of the people you invite. These email addresses are stored solely to send the invitation and track invite history. We do not add invited individuals to marketing lists or share their email addresses with third parties. Invited individuals' data is retained only as part of your invite history.
If you have discoverability enabled (the default setting), your name, company, job title, and LinkedIn URL are visible to other signed-in users via the community discovery feature. You can disable discoverability at any time in your profile settings.
We use your information to:
We share information in the following circumstances:
Your name, profile picture, and comments are visible to all visitors of the Site. If you have discoverability enabled, your name, company, job title, and LinkedIn URL are also visible to other signed-in users.
We use the following categories of third-party service providers to operate the Site:
We use LinkedIn as our sole authentication provider. No other social media platforms are integrated.
When you submit a procurement request through the Vendor Match Tool, your submission data (company details, requirements, and contact information) is shared with our appointed procurement partner for vendor matching and selection support. This sharing occurs only upon your explicit consent at the submission step and is transmitted via encrypted email through our email delivery provider.
When you submit contact or quote requests through a sponsor enquiry form, your data (name, email, company name, and message) is shared with the relevant sponsor for direct follow-up.
Upon receiving that data, the sponsor becomes an independent data controller under GDPR and applicable privacy laws. e-Invoice.app does not act as a processor on behalf of the sponsor, and each sponsor is independently responsible for its handling of the data, including any further use, retention, and your rights against the sponsor.
Sponsor logos, names, and brand marks displayed on the Site and our communications are used under licence from the respective sponsor. Their display does not imply ownership, affiliation, or endorsement beyond the relevant sponsorship arrangement.
We may disclose your information if required by law, regulation, legal process, or governmental request, or to protect our rights, users, or the public from harm or illegal activities.
We retain your information for as long as your account is active or as needed to provide our services. When you delete your account:
Specific retention periods:
Regardless of your location, you have the right to:
To exercise these rights, contact us at: team@e-invoice.app
If you are located in Australia, you have the right to:
We collect personal information only for purposes directly related to our functions and activities, as required by Australian Privacy Principle 3.
If you are located in the EU, EEA, or UK, you have additional rights under the GDPR:
The legal bases on which we rely are set out in Section 10.
If you are a California resident, under the California Consumer Privacy Act, as amended by the California Privacy Rights Act:
Authentication session cookies and CSRF protection tokens are required for sign-in functionality. These cookies are strictly necessary and cannot be disabled while using authenticated features.
We use third-party analytics cookies (such as _ga and _gid) to measure pages viewed, session duration, and navigation paths. You can manage your analytics cookie preferences at any time using the cookie settings panel accessible from the site footer, or by adjusting your browser settings. Our CDN provider may also set a performance measurement beacon; this does not use persistent cookies.
We store your cookie consent preferences in your browser's local storage (category selections only, no personal data) and a temporary session identifier for analytics purposes (automatically cleared when you close the tab).
We do not use advertising cookies, retargeting pixels, or sell data to advertisers.
You can opt out of analytics data collection using the cookie preferences panel (accessible via "Cookie Settings" in the site footer) or by adjusting your browser settings. We do not currently respond to "Do Not Track" browser signals, as no consistent standard exists for them.
We implement security measures including:
Data breach notification: In the event of a data breach that is likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) as required under the Notifiable Data Breaches scheme (Part IIIC of the Privacy Act 1988). For EU/EEA users, we will also notify the relevant Data Protection Authority within 72 hours as required by GDPR Article 33.
The Site is not intended for users under 18 years of age. We do not knowingly collect information from anyone under 18. If we become aware that we have collected personal data from a person under 18, we will delete it without undue delay. If you believe we hold data from a minor, contact us at team@e-invoice.app.
For users in the EU/EEA/UK, we process personal data under the following legal bases:
Vendor rankings on the Site are computed algorithmically based on multiple factors including data quality, coverage, and community engagement. These rankings affect vendor visibility on the Site but do not produce legal effects or similarly significant effects on individuals. You may contact us at team@e-invoice.app to query any automated processing relating to your data.
Your information may be transferred to and processed in countries other than your own. Specifically:
Where data is transferred outside of the EU/EEA, we rely on adequacy decisions, standard contractual clauses, or other GDPR-compliant safeguards to ensure your data is protected.
This Privacy Policy is governed by the laws of New South Wales, Australia. If any provision of this Privacy Policy is found to be invalid or unenforceable, the remaining provisions shall continue in full force and effect.
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Continued use of the Site after changes constitutes acceptance of the updated policy for processing based on legitimate interest or contract performance. Where processing is based on consent, we will seek your renewed consent where required by applicable law.
If you have questions about this Privacy Policy or our data practices, please contact us:
This Privacy Policy complies with the Australian Privacy Act 1988, GDPR (EU), CCPA (California), and other applicable data protection regulations. By using e-Invoice.app, you acknowledge that you have read and understood this Privacy Policy. See also our Terms of Service.