Effective Date: November 27, 2025
Entity: Billio B.V., Amsterdam, Netherlands
Contact: apps@ariqt.com
Introduction
Billio B.V. we value your trust and privacy. This Privacy Policy describes how we collect, use, share, and protect personal information in compliance with the EU General Data Protection Regulation (GDPR), the Dutch GDPR Implementation Act, and other applicable data laws. Billio provides digital receipt processing, e-invoicing, and bookkeeping automation services to individuals, businesses, and merchants across the EU. By using the Billio App, you consent to the practices described below.
2. Data We Collect
We collect only data necessary to provide services efficiently, securely, and lawfully:
- Account & Identity Data: Name, email address, phone number, company details, billing information.
- Transactional & Financial Data: Receipts, invoices, merchant IDs, payment references, VAT numbers, and total amounts.
- Device & Technical Data: Device model, OS, app version, unique identifiers, crash reports, and log files.
- Usage Data: App interactions, session duration, error logs, and clicked actions—only for performance optimization.
- Security & Authentication: Login tokens, access logs.
- Optional Data: GPS (for merchant matching), OCR data, and photos uploaded voluntarily by users.
- Cookies & Trackers: Functional and analytics cookies (never for ads).
3. How We Use Your Data
Billio processes data solely for clear, lawful purposes:
Legal Bases for Processing
- Operating receipt scanning, OCR recognition, and e-invoicing workflows.
- Ensuring 7-year archiving compliance under Dutch tax law.
- Delivering user support and technical assistance.
- Fraud detection, system diagnostics, and service improvements.
- Secure authentication and preventing unauthorized access.
- Legal compliance, including responding to lawful requests.
We do not sell, rent, or profile user data for advertising or unrelated purposes.
4. Legal Bases for Processing
All processing is grounded in one of the following GDPR bases:
- Consent: Explicit user actions, e.g., camera use or third-party sync; revocable anytime.
- Contractual Necessity: To deliver Billio’s core features.
- Legitimate Interest: Security monitoring, anonymized analytics, and fraud prevention.
- Legal Obligation: Compliance with tax, anti-fraud, and audit retention duties.
5. Data Sharing & International Transfers
We share data only under strict data protection safeguards:
- Trusted service providers (cloud hosting, OCR, analytics, and authentication) operating under EU Standard Contractual Clauses (SCCs).
- Regulatory or judicial authorities, if required by law.
- Cloud storage hosted in the European Economic Area (EEA); non-EEA transfers follow adequacy decisions or SCCs.
6. Data Retention
Data is stored only as long as necessary for legal and operational needs:
- Receipts and invoices: up to 7 years (or 10 for immovable property) per Dutch taxation law.
- Account data: retained until user deletion request or inactivity beyond 24 months.
- Logs: anonymized within 12 months.
Once retention expires, data is securely deleted or anonymized beyond re-identification.
7. Your Rights under GDPR
You have full GDPR rights, including the ability to:
- Access, download, or request deletion of your personal data.
- Rectify incorrect details.
- Restrict or object to processing (when legitimate).
- Withdraw consent at any time.
- Request data portability (machine-readable format).
- File complaints with your local data authority (Autoriteit Persoonsgegevens in NL).
Requests may be submitted via in-app settings or at apps@ariqt.com.
8. Data Security
Billio applies layered safeguards:
- Role-based access controls, audit logging, and regular penetration testing.
- Continuous monitoring and incident response protocols in compliance with ISO/IEC 27001.
9. Cookies and Tracking
Billio uses minimal cookies:
- Essential: for login, authentication, and session continuity.
- Analytics: aggregated usage tracking for service improvements.
User Control: you can adjust cookie preferences via device or in-app settings.
10. Children’s Privacy
Billio does not knowingly collect data from individuals under 16. Accounts for minors require guardian consent.
11. Changes to This Policy
We may update this Privacy Policy to reflect regulatory changes or feature enhancements. Material updates will be communicated via in-app notifications or email. Effective date is stated at the top.