Security

Secure & encrypted

You trust us with your sales data and the keys to your marketplaces. We take that seriously. From encryption at rest to strict data isolation per customer - security is built into the foundation of Marketplace Invoice.

Start for freeAll features

Our measures

How we protect your data

AES-256 encryption of your API credentials

The keys we use to connect to your marketplaces are stored encrypted with AES-256, the standard used in the financial sector too. At rest, your sensitive data is therefore unreadable without the right keys.

Strong password requirements

Accounts require a password of at least 12 characters. We encourage unique, strong passwords and never store them in readable form - only as a secure, irreversible hash.

Email verification

At sign-up we verify your email address before the account becomes active. That way we're sure only the rightful owner gets access and we keep unwanted accounts out.

Data minimisation & retention periods

We collect only what's needed to create and upload your invoices. We keep personal data (PII) no longer than necessary and delete it by default after 180 days, unless a legal retention obligation requires otherwise.

Encrypted connections

All traffic to and from Marketplace Invoice runs over encrypted HTTPS connections. Communication with the marketplaces' APIs is encrypted in transit too, so data can't be intercepted.

Isolated tenants per customer

Every customer has a logically isolated environment. Your orders, invoices and connections are strictly separated from those of other users - no one can reach your data and you can't reach anyone else's.

Backups

Your records are backed up securely on a regular basis, so your invoices and data are preserved in the event of unexpected outages. Recovery is part of our procedures.

No sharing data with third parties

We don't sell your data and we don't share it with third parties for marketing. Data is used solely to deliver the service you signed up for.

Transparent

Your data, your control

You decide what happens with your data. You can export your invoices at any time, break connections and - if you want - have your account and personal data fully deleted. We process only what's necessary, and we do so in line with the GDPR.

  • View and export your invoices at any time as PDF or UBL.
  • Disconnect a marketplace in one click; the associated keys are deleted.
  • Delete your account and the related personal data whenever you want.
  • Insight into which data we process about you, in line with the GDPR.

Frequently asked questions

About security

Where are my API keys stored?+

Encrypted, with AES-256. We keep them solely to create and upload invoices on your behalf at your marketplaces. Disconnect a channel and we delete the associated keys.

How long do you keep my data?+

No longer than necessary. We delete personal data by default after 180 days, unless a legal retention obligation (such as for bookkeeping) requires a longer period.

Can another customer access my data?+

No. Every customer sits in a logically separated tenant with strict data isolation. Your orders, invoices and connections are accessible to you alone.

Start with peace of mind

Encrypted, isolated and respectful of your data. Connect your shop and leave the invoicing to us.

Start for free