Legal

Privacy Policy

Effective: July 14, 2026 · Contact: hello@duebell.co

1. Scope

This policy explains what Duebell ("we", "us") collects, why, and what your choices are. It covers the waitlist and website today, and the application once it launches. We collect the minimum needed to run a payment-reminder tool — nothing is sold to advertisers, ever.

2. What we collect

Payment card details are collected and processed by Paddle, our merchant of record — we never see or store your full card number.

3. How we use it

To operate the Service: drafting reminder text, sending emails you approve, pausing on replies, showing you what was sent and what was recovered; to send essential transactional email about your account; and to improve the product in aggregate. AI drafting means the invoice context you enter is sent to our AI provider to generate the draft text; it is used to produce your draft, not to build advertising profiles.

4. Service providers (subprocessors)

Each provider processes data only to deliver its function to us. Some providers are located outside your country; where required, transfers rely on recognized safeguards such as standard contractual clauses.

5. Your clients (email recipients)

If you received an email through Duebell, it was written and approved by the business that invoiced you — replies go directly to them. If you would like your address suppressed from future reminders sent through our system, email hello@duebell.co and we will honor it.

6. Retention and deletion

Waitlist emails are kept until launch invitations conclude or you unsubscribe. Account and invoice data are kept while your account is active; delete your account and we remove associated personal data within 30 days, except minimal records we must keep for legal, tax, or security reasons.

7. Your rights

Depending on where you live (including under GDPR and similar laws), you may request access, correction, export, or deletion of your personal data, or object to certain processing. Email hello@duebell.co and we will respond within 30 days.

8. Security

Data is encrypted in transit, access is limited to what operating the Service requires, and application data is isolated per account. No system is perfectly secure; we will notify affected users of any breach as required by law.

9. Changes

We will post updates here and note the new effective date; material changes will be announced by email.