Privacy Policy

Legal

QuoPro Privacy Policy

Effective Date
June 7, 2026
Last Updated
June 7, 2026
Contact
info@quopro.org

Please read this Privacy Policy carefully before using the QuoPro mobile application. By creating an account or using the app, you acknowledge that you have read, understood, and agree to the practices described in this Policy.

1. Introduction

QuoPro helps small business owners, freelancers, and professionals create, manage, and send professional quotes, proposals, and invoices. This policy explains what information we collect, how we use and protect it, who may process it on our behalf, and your rights regarding your data.

We may update this policy when required by law, feature updates, or operational changes. For material changes, we provide at least 14 days notice through in-app notification or email.

2. Information We Collect

2.1 Account and Authentication Data

  • Email address
  • Password (hashed and encrypted, never plaintext)
  • OAuth tokens when using third-party sign in (such as Apple or Google)
  • Display or profile name
  • Account creation date and timestamp

2.2 Quote and Customer Data

  • Customer names and business names
  • Customer email addresses, phone numbers, and mailing addresses
  • Line item descriptions, quantities, and unit prices
  • Pricing, tax rates, discounts, and totals
  • Quote or proposal status (Draft, Sent, Accepted, Declined)
  • Notes and terms you add to quotes

2.3 Usage and App Data

  • Feature usage patterns
  • Crash and error logs
  • Diagnostic telemetry used to improve reliability

2.4 Device and Technical Data

  • Device type and model
  • Operating system version and app version
  • IDFV on iOS or equivalent anonymous identifier on Android
  • Push notification tokens (if enabled)

2.5 User-Uploaded Files

  • Company logos, branding images, and letterheads
  • Signature images and templates
  • Attachment or reference documents

2.6 Inventory Transaction and Movement Data

  • Item names, SKUs, descriptions, units of measure
  • Transaction types (additions, deductions, adjustments, transfers, restocks)
  • Quantities, unit pricing, timestamps, notes, and stock snapshots

2.7 CRM Data

  • Customer profiles and contact information
  • Interaction notes and activity history
  • Pipeline or deal stage data
  • Follow-up reminders and task associations

2.8 PDF Generation Data

Quote and invoice content may be processed ephemerally to generate PDFs. Unless you explicitly save PDFs to cloud storage you control, QuoPro does not retain generated PDFs beyond processing.

3. How We Use Your Information

  • Provide, operate, and maintain QuoPro services
  • Authenticate users and secure accounts
  • Generate, preview, and export quotes and invoices
  • Store and sync your data across devices
  • Send transactional notifications when opted in
  • Improve app stability and product quality
  • Comply with legal and regulatory obligations
  • Communicate service, security, and policy updates
We do not sell personal data. We do not use personal data for advertising and do not share personal data with ad networks or data brokers.

4. Legal Basis for Processing (GDPR)

  • Performance of contract
  • Legitimate interests (security, fraud prevention, reliability)
  • Consent (for optional features like push notifications)
  • Legal obligation

5. Third-Party Services and Data Processors

5.1 Supabase (Database and Backend Infrastructure)

QuoPro uses Supabase for database, authentication, and storage infrastructure on AWS under a Data Processing Agreement.

  • Supabase privacy policy: supabase.com/privacy
  • Supabase DPA: supabase.com/dpa

5.2 PDF Generation

If server-side rendering is used, document data is processed over encrypted channels and not retained after generation.

5.3 App Store and Play Store

Apple and Google may collect platform-level analytics under their own policies.

5.4 Push Notifications

APNs (iOS) and FCM (Android) may be used to deliver notifications. Only device push tokens are shared for delivery.

5.5 No Advertising Networks

QuoPro does not integrate advertising SDKs or broker services.

5.6 User-Uploaded Documents

Uploaded files are stored in Supabase Storage (AWS S3), associated to your account, protected by access rules and row-level controls, and deletable by you at any time.

5.7 Inventory Transactions and Movement Records

Inventory history is stored for your account usage and protected by account-level access controls.

5.8 CRM Data

CRM data is stored securely and isolated to your authenticated account.

6. Data Storage and Security

  • Encryption in transit with TLS 1.2+
  • Encryption at rest (AES-256)
  • Hashed password storage via secure auth systems
  • Database row-level security for account data isolation
  • Regular internal security reviews and best-practice controls

7. Data Retention

  • Account data retained during active account lifecycle
  • Quote and customer data retained until deleted or account closure
  • Inventory and CRM records retained for account life unless deleted
  • PDF processing data retained ephemerally
  • Anonymized diagnostics may be retained up to 24 months
  • Backups may retain data up to 90 days after deletion events

8. Data Sharing and Disclosure

  • Trusted processors under data processing agreements
  • Legal disclosures when required by law
  • Business transfer disclosures during merger or acquisition events
  • No sale, rental, or trade of personal information

9. Your Privacy Rights

Depending on jurisdiction, you may request access, correction, deletion, portability, processing restriction, objection, and withdrawal of consent.

California (CCPA / CPRA)

California residents may exercise rights to know, delete, correct, and non-discrimination. QuoPro does not sell or share data for cross-context behavioral advertising.

10. Children's Privacy (COPPA)

QuoPro is intended for adults and business professionals and is not directed to children under 13. If we become aware of a child account under 13, we will remove it promptly.

11. Mobile-Specific Tracking and Local Storage

  • Local secure storage for app preferences, tokens, and cached data
  • No browser cookie tracking in the native mobile app
  • Use of IDFV or anonymous device IDs for diagnostics only
  • No IDFA usage
  • Push notifications can be disabled in device settings

12. International Data Transfers

Data may be processed in the United States or other regions through cloud infrastructure providers. For EEA and UK users, transfers rely on Standard Contractual Clauses and equivalent safeguards.

13. Changes to This Privacy Policy

We may modify this policy over time. Material changes are communicated with advance notice via app messaging or email.

14. Contact Us

If you have privacy requests or data concerns, contact our privacy team at info@quopro.org with the subject line Privacy Request - [Your Name].

  • Email: info@quopro.org
  • Response time: within 30 days (45 days for certain CCPA requests)

QuoPro | Privacy Policy | Last updated June 7, 2026.

Back to Main Page