Privacy Policy
This policy explains how IxaPro collects, uses, and protects data when you use the website, platform, invoicing, integration, and automation services.
Data we collect
We may collect account and authorized-user data, contact information, company and branch details, invoice and accounting documents, supplier and customer records uploaded by users, integration settings for accounting systems, subscription and billing identifiers, support messages, and usage and security logs needed to operate the service.
How we use data
We use data to create and administer accounts, operate invoice processing and AI features, synchronize data with systems connected by the customer, provide support, process subscriptions and payments, improve reliability and user experience, prevent misuse, and meet applicable contractual and legal obligations.
Invoice processing and AI
When AI features are used, uploaded documents and fields may be processed to extract data, classify information, suggest matches, or highlight exceptions. AI outputs are operational aids, and users remain responsible for reviewing and approving results before using them for accounting or posting them to any connected system.
External integrations
When an integration is enabled, IxaPro exchanges customer-authorized data with the accounting, ERP, invoicing, or connected services selected by the customer. The customer is responsible for integration permissions, access credentials, and compliance with the terms of those external systems.
Data retention
We retain data for as long as needed to provide the service, administer accounts, subscriptions, support, security, and accounting or legal obligations. When it is no longer needed, data may be deleted, anonymized, or retained in a restricted form where required by law or agreement.
Data protection
We apply appropriate technical and organizational controls, such as access restrictions, permission management, encryption where appropriate, backups, monitoring, and audit logs, to reduce the risk of loss, unauthorized use, or unlawful modification.
Data subject rights
Under applicable data protection laws, including the Saudi Personal Data Protection Law where relevant, data subjects may request information about processing purposes, access their data, correct it, request deletion where legally available, or withdraw consent when processing is based on consent.
Processing locations and transfers
Data may be processed in Saudi Arabia or by service providers operating in other countries depending on the service architecture and hosting location. Where external processing or transfer occurs, we work to apply appropriate safeguards in line with applicable requirements.
Privacy requests and contact
For privacy questions or requests, contact support@ixapro.com. We may request additional information to verify the requester's identity and authority before fulfilling requests related to an account or company data.