Billero
Billero
Last updated: June 2026
Billero is a local-first invoicing application. Your business data (invoices, clients, invoice images) is stored only on your device and is never uploaded to our servers. This policy describes the limited data that is processed for app stability and subscription functionality.
The following data is stored exclusively on your device in a local database (SQLite) and never transmitted to any server operated by us:
If you uninstall the app, this data is permanently deleted from your device. We have no copy.
To keep the app stable and to validate purchases, a limited amount of technical data is processed by the following services:
We use Firebase Crashlytics to automatically detect and diagnose app crashes. When the app crashes, the following data is sent to Google:
This data is not linked to your identity and is not used for advertising. Google's privacy policy applies: https://policies.google.com/privacy
When you purchase a Billero subscription via Apple App Store or Google Play, the purchase receipt is sent to our secure Cloudflare Worker to validate the transaction with Apple or Google. The Worker stores:
This is required by Apple and Google to prevent subscription fraud. Data is retained only as long as your subscription is active plus a 24-month tax-compliance window. Cloudflare's privacy policy: https://www.cloudflare.com/privacypolicy/
The AI/OCR invoice scanning feature is optional and runs only at your explicit request. When you scan an invoice, the image or PDF is sent to the AI provider Anthropic PBC (Claude model) in the United States, which extracts data from the document (supplier/buyer, number, date, amount). These documents may contain personal and financial data. Anthropic does not retain this data long-term and does not use it to train models. If you do not use the feature, nothing is sent. Anthropic policy: anthropic.com/legal/privacy
Subscription purchases are processed by Apple or Google. They handle your payment method, billing address, and Apple ID / Google account information. We do not receive or store this data.
These permissions are used solely for the described purposes. We do not run any third-party advertising SDKs.
The app allows you to create encrypted backup ZIP files of your data. Backups are AES-256 encrypted and saved to a location you choose. We never have access to your backups. If you share a backup via the system share sheet, that destination (e.g. email, cloud drive) is solely under your control and its provider's policies apply.
Because your business data stays on your device, you have full control: you can view, edit, export, or delete it at any time directly in the app.
For data processed by Firebase Crashlytics or our Cloudflare Worker (subscription receipts), you may request access, correction, or deletion by contacting info@billero.app. Identify yourself by providing the original purchase order ID from your App Store or Google Play receipt.
Billero is a business tool intended for users aged 18 and older. We do not knowingly collect data from children under 13.
Firebase Crashlytics (Google), Cloudflare, and Anthropic (AI scanning) may process data on servers located in the European Union, the United States, or other jurisdictions. These providers are certified under the EU-US Data Privacy Framework or use equivalent safeguards (Standard Contractual Clauses).
Data on your device is protected by the operating system's security mechanisms (Android, iOS). You may add an optional Face ID / Touch ID lock. Subscription receipts in transit to our Worker are encrypted with HTTPS / TLS 1.3.
If we materially change this policy, we will update this page and the "Last updated" date above. Continued use of the app after a material change constitutes acceptance.
Privacy questions or data subject requests: info@billero.app
Data Controller: B-DataFit, Matej Leban s.p., Slovenia.