Data Privacy Policy

Last Modified: April 1, 2026

This Data Privacy Policy (“Policy”) explains how Aviy (“Aviy.ai,” “we,” “our,” or “us”), collects, uses, stores, shares, and protects your personal information when you access or use our website, software, cloud storage services, hosted invoice pages, payment pages, AI-powered tools, and related services (collectively, the “Services”).

This Policy also explains your rights and choices regarding your personal information.

1. Who We Are

Aviy.ai is a software platform that helps users create, manage, send, store, and access invoices, estimates, payment requests, and related business documents. Some Services may be used without creating an account, while others, including Aviy Cloud, Android and IOS Apps, require registration or subscription.

2. Scope of This Policy

This Policy applies to:

  • https://aviy.ai/ and its subdomains
  • Aviy.ai web applications
  • Hosted invoice and payment pages
  • Aviy Cloud storage services
  • AI-powered invoicing and business document tools
  • Customer support, communications, and related services

This Policy does not apply to third-party websites, services, or platforms that may integrate with or be linked from our Services.

3. Our Relationship to You

Depending on how you use Aviy.ai, our role may differ:

Customers

“Customers” are individuals or businesses who use Aviy.ai to create, send, manage, store, or process invoices, estimates, documents, or subscriptions. For Customers, Aviy.ai generally acts as a data controller for account, billing, and platform usage data.

Users

“Users” are individuals or businesses who receive, view, approve, or pay invoices, estimates, or payment requests created by a Customer through Aviy.ai. For this information, Aviy.ai generally acts as a data processor on behalf of the Customer.

Visitors

“Visitors” are people who browse our website, submit forms, request demos, join waitlists, contact support, or otherwise interact with our website without necessarily becoming Customers. For Visitors, Aviy.ai generally acts as a data controller.

4. Information We Collect

We may collect the following categories of personal information.

Contact Data

Such as:

  • full name
  • business name
  • email address
  • phone number
  • address
  • job title

Account and Profile Data

Such as:

  • username
  • password or login credentials
  • account preferences
  • business profile details
  • business logo
  • tax or VAT details
  • subscription plan details

User Data

Such as information about a Customer’s clients or customers, including:

  • client name
  • client email
  • phone number
  • billing address
  • shipping address

Invoice and Document Data

Such as:

  • invoice numbers
  • item descriptions
  • pricing
  • tax amounts
  • discounts
  • due dates
  • payment status
  • notes
  • attachments
  • custom fields
  • estimates, receipts, quotes, and related business document content

Billing Data

Such as:

  • billing name
  • billing address
  • subscription status
  • payment transaction metadata
  • partial card details provided by payment processors

We generally do not store full payment card details ourselves.

Support and Communication Data

Such as information you provide when you:

  • contact support
  • email us
  • submit a form
  • chat with us
  • respond to surveys
  • request a demo
  • join a waitlist

Device and Technical Data

Such as:

  • IP address
  • browser type
  • operating system
  • device identifiers
  • language preferences
  • time zone
  • usage logs
  • crash or diagnostic data

Cookies and Similar Technologies

We may use cookies, pixels, tags, analytics tools, and similar technologies to operate and improve the Services.

AI Input and Output Data

When you use our AI-powered tools, we may process:

  • prompts
  • instructions
  • uploaded text
  • invoice descriptions
  • generated outputs

This may include personal or business information that you choose to enter.

5. How We Collect Information

We collect personal information:

  • directly from you
  • from forms you complete
  • when you create or use an account
  • when you use invoice, payment, cloud, or AI features
  • automatically through cookies and technical tools
  • from payment providers and integration partners
  • from communications with support or sales

6. How We Use Your Information

We may use your personal information to:

  • provide and operate the Services
  • create, send, store, and display invoices and related documents
  • enable Aviy Cloud storage and syncing
  • authenticate users and manage accounts
  • process subscriptions and billing
  • support payment workflows and hosted payment pages
  • provide customer support
  • personalize your experience
  • improve our platform, features, and user experience
  • power AI-assisted features you request
  • monitor usage, maintain security, and prevent fraud
  • comply with legal obligations
  • enforce our terms and policies
  • send product, support, service, or marketing communications where permitted by law

7. No-Account Use

Some parts of Aviy.ai may allow you to generate or preview invoices without creating an account.

If you use these no-account features:

  • we may process the information you enter temporarily
  • your data may not be stored for long-term retrieval
  • you are responsible for downloading or saving your documents unless you subscribe to Aviy Cloud or otherwise save them

8. Aviy Cloud Storage

If you subscribe to Aviy Cloud, we may store your invoices, estimates, documents, and related account data so you can:

  • access them later
  • sync across devices
  • organize and manage your records
  • retrieve and export documents over time

Stored content remains subject to this Policy, our retention practices, and applicable law.

9. AI-Powered Features

If you use AI features, we may process the content you submit to generate invoice drafts, summaries, suggestions, descriptions, or other outputs.

You are responsible for reviewing and validating AI-generated results before using, sending, or relying on them. AI outputs may not always be accurate, complete, or suitable for legal, tax, accounting, or financial purposes.

10. Legal Bases for Processing

Where required by applicable law, including UK GDPR and EU GDPR, we rely on one or more of the following legal bases:

  • performance of a contract
  • taking steps before entering into a contract
  • our legitimate interests in operating, securing, and improving the Services
  • compliance with legal obligations
  • your consent, where required

11. How We Share Information

We may share personal information with:

Service Providers

Third parties that help us operate the Services, such as:

  • cloud hosting providers
  • analytics providers
  • authentication providers
  • email and messaging providers
  • customer support tools
  • security and fraud prevention vendors
  • AI infrastructure providers
  • payment processors

Customers

If you are a User interacting with an invoice, payment page, or estimate created by a Customer, the relevant Customer may receive information relating to your interaction, payment, or form submission.

Integration Partners

If you connect Aviy.ai to third-party software or services, we may share relevant data with those integrations as necessary to provide the requested functionality.

Corporate Transactions

Your information may be disclosed as part of a merger, acquisition, restructuring, financing, sale of assets, or similar transaction.

Legal and Regulatory Disclosures

We may disclose information where required by law or where reasonably necessary to:

  • comply with legal obligations
  • respond to lawful requests
  • protect our rights or property
  • investigate fraud, abuse, or security issues
  • enforce our agreements

We do not sell your personal information for money.

12. International Transfers

Your personal information may be transferred to, stored in, or processed in countries outside your country of residence, including where our service providers operate.

Where required by law, we use appropriate safeguards for international data transfers.

13. Data Retention

We retain personal information for as long as reasonably necessary to:

  • provide the Services
  • maintain Aviy Cloud accounts
  • comply with legal and regulatory requirements
  • resolve disputes
  • prevent fraud
  • enforce agreements
  • maintain backups and security records

Retention periods may vary depending on the type of data and the reason it was collected.

If you close your account or request deletion, we may still retain certain information where necessary for legal, tax, accounting, security, backup, or legitimate business reasons.

14. Your Rights

Depending on your location and applicable law, you may have rights including:

  • the right to access your personal information
  • the right to correct inaccurate information
  • the right to request deletion
  • the right to restrict processing
  • the right to object to certain processing
  • the right to withdraw consent where processing is based on consent
  • the right to data portability
  • the right to lodge a complaint with a supervisory authority

If we process your information on behalf of a Customer, you may need to contact that Customer directly to exercise certain rights.

To exercise your rights, contact us using the details below.

15. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • keep the website functioning
  • remember preferences
  • improve performance
  • understand usage patterns
  • support analytics
  • enhance security
  • provide marketing or remarketing where permitted

You can manage cookies through your browser settings and, where available, our cookie controls.

16. Marketing Communications

We may send you service-related and transactional communications as necessary to operate your account and provide the Services.

Where permitted by law, we may also send you product updates, newsletters, offers, and promotional communications. You can opt out of marketing communications at any time by using the unsubscribe link or contacting us directly.

17. Data Security

We implement reasonable technical and organizational measures designed to protect personal information, including measures such as:

  • encryption in transit
  • access controls
  • authentication safeguards
  • secure hosting infrastructure
  • monitoring and fraud prevention
  • backups and system protections

However, no method of storage or transmission is completely secure, and we cannot guarantee absolute security.

18. Children and Minors

Our Services are not directed to, and are not intended for direct use by, individuals under 18 or the age of majority in their jurisdiction. We do not knowingly collect personal information from children.

19. Third-Party Services

Our Services may contain links to or integrations with third-party websites, platforms, and services. Their privacy practices are governed by their own policies, not this Policy. We encourage you to review their privacy notices before providing them with personal information.

20. Changes to This Policy

We may update this Policy from time to time. Any changes will be posted on this page with an updated “Last Modified” date. Your continued use of the Services after changes become effective means you accept the revised Policy.

21. Contact Us

If you have questions, concerns, or requests about this Data Privacy Policy or our data practices, please contact us at:

[email protected]