Privacy Policy

1. Who we are

ProclyApp ("we", "us", "our") is a procurement management software service operated at proclyapp.com. Our contact: proclyapp@gmail.com

2. What data we collect

When you use ProclyApp, we collect:

• Account data: Name, email address, and encrypted password when you register.
• Order data: Purchase orders, supplier information, delivery dates, notes, and attachments you enter in the application.
• Payment data: We use Stripe to process payments. We do not store your card details. Stripe may store billing information per their own privacy policy.
• Usage data: Basic technical logs such as login events, to maintain security and service quality.

3. How we use your data

• To provide and operate the ProclyApp service
• To process payments and manage subscriptions
• To send transactional emails (account confirmation, password reset, billing receipts)
• To respond to support requests

We do not sell your data to third parties. We do not use your data for advertising.

4. Data storage and security

Your data is stored in Supabase (PostgreSQL database hosted in the EU region). Access is protected by row-level security — only you and your invited team members can access your organization's data.

Passwords are hashed using bcrypt. All connections use HTTPS/TLS encryption. We apply the principle of least privilege to all data access.

5. Third-party services

• Supabase — database and authentication (supabase.com)
• Stripe — payment processing (stripe.com)
• Netlify — hosting (netlify.com)

6. Your rights (GDPR)

If you are located in the European Union, you have the right to:

• Access the personal data we hold about you
• Correct inaccurate personal data
• Delete your account and associated data (via Settings → Delete account in the app, or by contacting us)
• Export your order data (via the Excel export feature)
• Object to processing or withdraw consent

To exercise your rights, contact us at proclyapp@gmail.com. We will respond within 30 days.

7. Data retention

We retain your data as long as your account is active. When you delete your account, your profile and personal orders are permanently deleted. Billing records may be retained for up to 7 years as required by Finnish accounting law.

8. Cookies

ProclyApp uses minimal cookies required for authentication (session tokens stored in localStorage). We do not use tracking cookies or analytics cookies.

9. Children's privacy

ProclyApp is a business tool and not directed at children under 16. We do not knowingly collect data from children.

10. Changes to this policy

We may update this Privacy Policy. We will notify registered users by email of significant changes. Continued use of the service after changes constitutes acceptance.

11. Contact

For any privacy-related questions: proclyapp@gmail.com