Last updated: March 15, 2026
By creating an account or using InvoiceProof ("the Service"), you agree to be bound by these Terms of Service. If you do not agree, do not use the Service. These terms apply to all users, including freelancers, businesses, and agencies.
InvoiceProof provides invoice delivery, interaction tracking, e-signature capture, and audit trail generation tools. The Service records interactions with invoices — including when they are opened, from what IP address, and by what device — and stores these records in a tamper-evident, hash-chained audit log. InvoiceProof is a software tool, not a legal service, and does not provide legal advice.
You are responsible for maintaining the security of your account credentials. InvoiceProof is not liable for any loss or damage resulting from unauthorized account access caused by your failure to maintain account security. You must be at least 18 years old to use this Service.
You may not use InvoiceProof to send fraudulent invoices, misrepresent your identity, harass recipients, or violate any applicable local, national, or international law. You are solely responsible for the content of invoices you send through the Service. We reserve the right to suspend or terminate accounts that violate these terms without prior notice.
By sending invoices through InvoiceProof, you acknowledge that your invoice recipients' IP addresses, browser information, and interaction timestamps will be recorded. You represent that your collection of this data is lawful in the jurisdictions where your recipients are located and appropriate in the context of a legitimate business transaction. You are responsible for providing any notices to recipients required by applicable privacy law in your jurisdiction.
Paid plans are billed monthly. A 7-day free trial begins on the date you provide payment information; your card will not be charged until the trial ends. You may cancel at any time; cancellation takes effect at the end of your current billing period. See our Refund Policy below for full details on refunds.
InvoiceProof is provided "as is" without warranties of any kind, express or implied. We are not liable for any indirect, incidental, special, or consequential damages arising from your use of the Service, including but not limited to lost revenue, failed payment collections, or unsuccessful legal proceedings. Our total liability to you for any claim shall not exceed the total amount you paid us in the three months immediately preceding the date the claim arose.
The InvoiceProof platform, including its software, design, and documentation, is owned by InvoiceProof and protected by applicable intellectual property law. You retain full ownership of all invoice content and data you create through the Service.
We reserve the right to modify these terms at any time. We will notify users of material changes by email at least 14 days before they take effect. Continued use of the Service after changes become effective constitutes acceptance of the revised terms.
These terms are governed by the laws of the State of Georgia, United States, without regard to conflict of law provisions. Any disputes arising under these terms shall be resolved in the state or federal courts located in Georgia. By using the Service, you consent to the personal jurisdiction of these courts.
We collect information you provide directly — including your name, email address, business name, and invoice data — as well as information collected automatically when invoices are accessed by your clients, including IP address, browser user agent, timestamp, and interaction type. We do not sell your personal data or your clients' data to third parties.
We use collected information to: provide and operate the Service; generate audit trails on your behalf; send invoices and payment reminders to your clients; process your subscription payments; and improve platform performance and reliability. Client IP addresses and interaction data are collected solely to generate audit records for your benefit as the account holder.
We share data with the following sub-processors who process data on our behalf: Stripe (payment processing and subscription management), SendGrid (transactional email delivery), and Railway (database hosting and infrastructure). All providers are contractually bound to use your data only for the purpose of providing services to InvoiceProof, and are prohibited from using it for their own commercial purposes. We do not share invoice content or audit trail data with any other party.
All data is encrypted in transit using TLS 1.2 or higher. Audit event records use SHA-256 hash chaining to detect any retroactive tampering. We perform regular automated database backups, maintain role-based access controls on all production systems, and do not store plaintext passwords.
You may request a copy of your personal data, correction of inaccurate information, or deletion of your account at any time by emailing support@invoiceproof.io with the subject line "Data Request." We will acknowledge your request within 5 business days and fulfill it within 30 days. To verify your identity, we may ask you to confirm your request from the email address associated with your account. Audit trail data tied to active invoice records may be retained after deletion for legitimate legal and business purposes as described in our Data Retention section.
InvoiceProof is not directed at individuals under the age of 18. We do not knowingly collect personal data from minors. If we become aware that a minor has created an account, we will delete it promptly upon discovery.
Every plan includes a 7-day free trial. Your payment method is collected at sign-up but you are not charged until the trial period ends. You may cancel at any time during the trial and you will not be charged. No refund is necessary for cancellations made before the trial ends.
Once your trial ends and billing begins, we do not offer refunds for the current billing period. You may cancel at any time and your access will continue until the end of the period you have already paid for. We do not offer prorated refunds for unused days within a billing period.
If you experience a significant service outage or a billing error caused by InvoiceProof, contact support@invoiceproof.io within 14 days and we will review your case. Refunds or credits for verified service failures are issued at our discretion. We will always resolve confirmed billing errors in your favor.
You can cancel your subscription at any time from the Settings page in your dashboard. Cancellations take effect at the end of your current billing period. Your data remains accessible until the cancellation date and is retained for 90 days afterward as described in our Data Retention policy.
Important
InvoiceProof is a software tool, not a law firm, and does not provide legal advice. Audit trail documents generated by this Service are evidence tools intended to support your position in a dispute — they are not a guarantee of any legal outcome.
The InvoiceProof audit trail is a time-ordered, cryptographically hash-chained record of events associated with a specific invoice. It records: when an invoice link was delivered; when it was accessed, from what IP address, and with what browser or device; any e-signatures captured; payment reminders sent; and status changes made by the sender. Each event record includes a SHA-256 hash of the previous event, making retroactive alteration detectable.
An IP address does not definitively identify a specific individual. Access from a shared network, corporate proxy, or VPN may make it impossible to conclusively identify the viewer. The audit trail demonstrates that someone accessed the invoice from a given network connection at a given time — it does not constitute absolute proof of identity. The strength of the evidence depends on the specific facts of your dispute.
The evidentiary weight of InvoiceProof audit records varies by jurisdiction, court, and circumstances. In many small claims, civil, and mediation proceedings, timestamped IP-logged records are accepted as relevant supporting evidence. We recommend consulting a licensed attorney in your jurisdiction before relying solely on an InvoiceProof document in any formal legal proceeding.
E-signatures captured through InvoiceProof include the signatory's typed name, IP address, timestamp, a drawn signature image, and an explicit checkbox acknowledgment of terms. This approach is consistent with the basic intent requirements of the U.S. ESIGN Act (15 U.S.C. § 7001). InvoiceProof e-signatures are not notarized and are not equivalent to witnessed wet-ink signatures in contexts where those are legally required. Enforceability in any specific dispute depends on the nature of the agreement, the jurisdiction, and the applicable law.
Each Chain of Custody document includes a SHA-256 hash that can be independently verified at invoiceproof.io/verify/[hash]. This allows any party — including lawyers, mediators, or courts — to confirm the document's integrity without relying solely on InvoiceProof's assertion.
All invoice data, audit trail records, e-signatures, and client data are retained for the lifetime of your active account. We do not automatically purge data while your subscription remains active, including during free trial periods.
Upon cancellation or account deletion, your data is retained for 90 days to allow for reactivation or data export. To request a data export before deletion, email support@invoiceproof.io with the subject line "Data Export Request" before your 90-day window closes. After 90 days, personal data and invoice content are permanently deleted from active systems. Anonymized audit event hashes may be retained for chain integrity verification purposes.
Automated database backups are retained for up to 30 days and then permanently deleted. Backup data is encrypted at rest and is not accessible for individual data export requests.
If we receive a valid legal order, subpoena, or law enforcement request, we may be required to retain or disclose specific data beyond our standard retention periods. Where permitted by applicable law, we will notify affected account holders of such requests before complying.
This section applies to users in the European Economic Area (EEA), United Kingdom, and other jurisdictions with data protection laws similar to GDPR.
When you use InvoiceProof as an account holder, we process your personal data on the basis of contractual necessity — it is required to provide the Service you have signed up for. When your invoices are accessed by your clients, the IP address and interaction data we collect is processed on the basis of legitimate interest — specifically, the legitimate interest of facilitating documented business transactions and protecting account holders from payment disputes. We have assessed that this legitimate interest is not overridden by the interests or rights of invoice recipients, given that this data is collected in a clearly commercial context.
If you are located in the EEA or UK, you have the following rights regarding your personal data: the right to access a copy of your data; the right to correct inaccurate data; the right to request deletion of your data; the right to restrict or object to certain processing; and the right to data portability. To exercise any of these rights, email support@invoiceproof.io with the subject line "GDPR Request." We will respond within 30 days.
InvoiceProof is based in the United States. If you are located outside the U.S., your data will be transferred to and processed in the United States. By using the Service, you acknowledge this transfer. Our sub-processors (Stripe, SendGrid, Railway) maintain their own data transfer mechanisms for international data. We rely on Standard Contractual Clauses where required for lawful transfers under GDPR.
If you believe our processing of your data based on legitimate interest is not justified in your specific situation, you have the right to object. Contact support@invoiceproof.io and we will review your objection and respond within 30 days. Where your objection is valid, we will cease the relevant processing.
InvoiceProof is an early-stage product. While we have made reasonable efforts to align our practices with GDPR principles, we have not yet completed a formal GDPR compliance audit or obtained Data Processing Agreements with all sub-processors. If you are operating a business that serves EU customers at scale and requires full GDPR compliance documentation, please contact us before using the Service.
If you are a California resident, you have specific rights under the California Consumer Privacy Act regarding your personal information.
You have the right to know what personal information we collect about you and how it is used. You have the right to request deletion of your personal information, subject to certain exceptions. You have the right to opt out of the sale of your personal information. You have the right not to be discriminated against for exercising your privacy rights.
InvoiceProof does not sell, rent, or trade your personal information to third parties for their own commercial purposes. The third-party providers we use (Stripe, SendGrid, Railway) receive your data only to perform services on our behalf and are contractually prohibited from using it for other purposes.
To submit a California privacy rights request, email support@invoiceproof.io with the subject line "California Privacy Request." We will verify your identity and respond within 45 days as required by law. You may designate an authorized agent to make requests on your behalf by providing written authorization.
Questions about these policies?
support@invoiceproof.ioA note on ongoing compliance
InvoiceProof is a growing product. These policies reflect our current practices and our best-faith effort to be transparent about how we operate. As the product grows, we are committed to obtaining formal legal review, executing Data Processing Agreements with all sub-processors, and maintaining compliance with applicable privacy law. Last reviewed by the InvoiceProof team: March 15, 2026.