Privacy Policy

Last updated: 2026-04-25

This policy explains what information Interest Calculator Pro (“we”, “our”, “the service”) collects when you visit interestpro.app or use the application at login.interestpro.app, why we collect it, who we share it with, and what choices you have.

Contents

Information we collect
How we use your information
Legal bases for processing
Who we share information with
Cookies and similar technologies
How long we keep your information
Security
Your rights and choices
Children
International users
Changes to this policy
Contact us

1. Information we collect

Information you provide

Account details — name, email address, password (stored as a one-way hash — we never see the plain text), and an optional profile photo.
Sign-in via Google — if you use “Sign in with Google,” we receive your name, email and Google profile photo from Google. We do not receive your Google password or any other Google account data.
Calculations and notes — the inputs, results and any notes or tags you save inside the app.
Client directory — contact information you choose to enter for your own clients (name, company, email, phone, notes).
Uploaded documents — files you upload to your “My Documents” area.
Letterhead / branding — company name, address, phone, email and logo if you supply them for PDF exports.
Support & contact messages — the content of any message you send through the contact form, support form, or directly by email.
Payment details — if you subscribe to a paid plan, your payment is handled by Stripe or PayPal. We do not receive or store your full credit card number, CVV, or bank account details. We do receive a subscription identifier, the plan you chose, and the billing email returned by Stripe/PayPal so we can apply the right plan to your account.

Information collected automatically

Login & activity logs — the date, time, IP address and browser user-agent string for sign-ins, password resets, calculation runs, document uploads, subscription changes and certain other security-relevant actions.
Active sessions — a hashed session identifier, last-active timestamp, IP and user-agent for each device you stay signed in on, so you can see and revoke them on your Profile page.
Email login codes — if you use the passwordless email login, we generate a six-digit code, store a one-way hash of it, and remove it shortly after use or expiry.
Cookies — see section 5.
Webhook events — we keep a copy of subscription-related webhook payloads from Stripe and PayPal so we can debug billing issues.

2. How we use your information

To provide the service: authenticate you, store your calculations and clients, render PDFs with your letterhead, and send the emails you request.
To process subscriptions and payments through Stripe and PayPal, and to apply the correct plan to your account.
To secure the service: detect suspicious sign-in attempts, throttle abuse, let you review and revoke active sessions, and enforce plan limits.
To respond to support requests, fix bugs and improve the product.
To send transactional email (account confirmations, password resets, login codes, billing notices, support replies, team invitations).
To comply with legal obligations and enforce our terms of service.

We do not sell your personal information. We do not use your saved calculations or client data to train artificial-intelligence models or share them with advertisers.

3. Legal bases for processing (EU/UK users)

If you are in the European Economic Area or the United Kingdom, we process your information on the following legal bases:

Contract — to provide the service you signed up for.
Legitimate interests — to keep the service secure, prevent fraud, and improve features.
Consent — for any optional communications, where required.
Legal obligation — to comply with applicable laws (e.g. tax records).

We share information only with the following categories of service providers, and only to the extent necessary for them to perform their function:

Stripe and PayPal — to process subscription payments. Their privacy policies apply to information you provide to them directly.
SendGrid (Twilio) — to deliver transactional email such as login codes, password resets, billing notices and support replies.
Google — only if you use “Sign in with Google.” We exchange the minimum tokens needed to verify your identity.
Cloudflare — provides CDN, DDoS protection and TLS for the service. Cloudflare may temporarily process IP addresses and request metadata as part of routing your traffic.
Our hosting provider — the database and uploaded files reside on infrastructure operated by our hosting partner.

If you are part of a team in the app, your account name, email and certain activity are visible to the team owner and other team members within that team.

We may disclose information if required to do so by law, valid legal process, or to protect our rights, property and safety or that of our users.

5. Cookies and similar technologies

We use a small number of strictly-functional cookies. None are used for advertising or third-party tracking.

Session cookie (e.g. PHPSESSID) — keeps you signed in for the current browser session.
Remember-me cookie (remember_token) — if you choose to stay signed in, keeps you logged in for up to 365 days. The token in the cookie is matched against a one-way hash on our server.
CSRF token — a security token used to prevent cross-site request forgery on form submissions.

You can clear or block cookies in your browser settings, but doing so will sign you out and may break parts of the application.

6. How long we keep your information

Account data, calculations, clients, documents and settings — kept for as long as your account exists, plus a short period after deletion to handle backups and any disputes.
Audit / activity log — automatically purged after 120 days.
Email login codes — expire shortly after use or after a few minutes if unused.
Trashed documents — automatically purged after roughly 30 days.
Webhook event logs — retained as needed to investigate billing issues and then periodically pruned.
Billing records — retained as long as required by applicable accounting and tax law.

7. Security

We use HTTPS for all traffic, hash passwords with industry-standard algorithms, hash session and remember-me tokens server-side, and apply per-session revocation so you can sign other devices out at any time. No internet-facing service is 100% secure, however, and we cannot guarantee absolute security. If you suspect your account has been compromised, please contact us immediately.

8. Your rights and choices

Depending on where you live, you may have the right to:

Access a copy of the personal information we hold about you.
Correct information that is inaccurate or incomplete.
Delete your account and the data associated with it. You can request account deletion from the Settings page in the app or by emailing the address below.
Object to or restrict certain processing.
Export your saved calculations as PDF or CSV using the in-app Export feature.
Withdraw consent for any processing based on consent.
Lodge a complaint with your local data-protection authority.

To exercise any of these rights, contact us at [email protected]. We will respond within a reasonable time, normally within 30 days.

9. Children

The service is intended for business and professional use by adults. It is not directed at children under 13 (or under 16 in the EEA/UK), and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.

10. International users

If you access the service from outside the country where our infrastructure is located, your information will be transferred to and processed in that country. By using the service you consent to that transfer.

11. Changes to this policy

We may update this policy from time to time. When we do, we will revise the “Last updated” date at the top of the page. Material changes will be communicated by email or by a notice in the app before they take effect. Continued use of the service after a change constitutes acceptance of the revised policy.

12. Contact us

Questions, requests or complaints about this policy or your personal information:

Interest Calculator Pro
Email: [email protected]
Web: interestpro.app