Privacy Policy

1. Introduction

At Modial Inc. ("Modial", "we", "us", or "our"), we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our invoicing and billing platform ("Service").

By using Modial, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide when using our Service:

• Account Information: Name, email address, password, company name, phone number
• Business Information: Business address, tax ID, industry, business size
• Payment Information: Credit card details, bank account information (processed securely through our payment processors)
• Customer Data: Information about your clients including names, email addresses, billing details
• Invoice Data: Invoice content, products/services, pricing, payment terms
• Communications: Messages, support tickets, feedback you send to us

2.2 Information Collected Automatically

When you access our Service, we automatically collect:

• Device Information: IP address, browser type, operating system, device type
• Usage Data: Pages viewed, features used, time spent, click patterns
• Location Data: General geographic location based on IP address
• Cookies and Tracking: Data collected through cookies, pixels, and similar technologies
• Log Data: Server logs, error reports, performance data

2.3 Information from Third Parties

We may receive information from:

• Payment Processors: Transaction details, payment status
• Analytics Providers: Usage statistics, demographics
• Social Media: Public profile information if you connect social accounts
• Business Partners: Referral information, integration data

3. How We Use Your Information

We use collected information for the following purposes:

3.1 Service Delivery

• Provide, maintain, and improve our Service
• Process invoices and payments
• Send transactional emails (invoices, receipts, reminders)
• Manage your account and subscriptions
• Provide customer support

3.2 Communication

• Send service updates and announcements
• Respond to your inquiries and requests
• Send marketing communications (with your consent)
• Conduct surveys and collect feedback

3.3 Analytics and Improvement

• Analyze usage patterns and trends
• Develop new features and functionality
• Improve user experience and performance
• Conduct research and testing

3.4 Security and Compliance

• Detect and prevent fraud, abuse, and security incidents
• Comply with legal obligations and regulations
• Enforce our Terms of Service
• Protect our rights and property

4. How We Share Your Information

We may share your information in the following circumstances:

4.1 Service Providers

We share information with third-party vendors who perform services on our behalf:

• Payment processors (Stripe, PayPal, Square)
• Cloud hosting providers (AWS, Google Cloud)
• Email service providers
• Analytics services (Google Analytics)
• Customer support tools

4.2 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred. We will provide notice before your information is transferred and becomes subject to a different Privacy Policy.

4.3 Legal Requirements

We may disclose your information if required to do so by law or in response to:

• Legal process, subpoenas, or court orders
• Government or regulatory requests
• Investigations of potential violations
• Protection of rights, property, or safety

4.4 With Your Consent

We may share your information for any other purpose with your explicit consent.

4.5 Aggregated Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you.

5. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: TLS/SSL encryption for data in transit, AES-256 encryption for data at rest
• Access Controls: Role-based access, multi-factor authentication
• Monitoring: 24/7 security monitoring and incident response
• Regular Audits: Security assessments and penetration testing
• Secure Infrastructure: SOC 2 Type II certified data centers
• Employee Training: Regular security awareness training for all staff

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to provide our Service and comply with legal obligations:

• Active Accounts: Data retained while your account is active
• Closed Accounts: Data retained for 30 days after closure for recovery purposes
• Financial Records: Retained for 7 years to comply with tax and accounting regulations
• Legal Holds: Data preserved as required by law or pending litigation
• Aggregated Data: May be retained indefinitely after de-identification

7. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

7.1 General Rights

• Access: Request a copy of your personal information
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal information
• Portability: Receive your data in a structured, machine-readable format
• Objection: Object to processing of your personal information
• Restriction: Request restriction of processing

7.2 GDPR Rights (EU Users)

If you are in the European Economic Area, you have additional rights under GDPR, including the right to lodge a complaint with a supervisory authority.

7.3 CCPA Rights (California Users)

California residents have the right to:

• Know what personal information is collected, used, shared, or sold
• Delete personal information
• Opt-out of the sale of personal information (we do not sell your data)
• Non-discrimination for exercising your rights

7.4 Exercising Your Rights

To exercise any of these rights, please contact us at privacy@modial.co. We will respond to your request within 30 days.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to improve your experience:

8.1 Types of Cookies

• Essential Cookies: Required for the Service to function (authentication, security)
• Performance Cookies: Help us understand how you use the Service
• Functional Cookies: Remember your preferences and settings
• Marketing Cookies: Used to show relevant advertisements

8.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling cookies may affect Service functionality. See our Cookie Policy for more details.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:

• Standard Contractual Clauses approved by the European Commission
• Privacy Shield certification (where applicable)
• Adequacy decisions by relevant authorities
• Your explicit consent when required

10. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

11. Third-Party Links

Our Service may contain links to third-party websites and services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

12. Marketing Communications

You may opt-out of marketing emails by:

• Clicking the "unsubscribe" link in any marketing email
• Adjusting your notification preferences in account settings
• Contacting us at privacy@modial.co

Note: You cannot opt-out of transactional emails related to your account or Service use.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the updated policy on this page
• Updating the "Last Updated" date
• Sending you an email notification
• Displaying a prominent notice on our Service

Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact: