Decorative floating bubble Decorative floating bubble Decorative floating bubble

Privacy Policy

At Fairly Good (“Fairly Good”, “we”, “our”, or “us”), we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you use our website, plugin, and related services (collectively, the “Service”).

If you are located in the European Union, United Kingdom, or other regions with similar data protection laws, this Privacy Policy also describes your rights and obligations under the General Data Protection Regulation (GDPR) and similar frameworks.

1. Who We Are

Fairly Good provides a website that integrates with Xero to help users manage overdue invoices and send late fee notices manually.

For the purposes of the GDPR, we are the data controller of your personal data in connection with the use of our Service.

2. What Data We Collect

We may collect and process the following types of data:

a. Information You Provide

  • Full name, email address, company name
  • Contact details and billing information
  • Messages or support requests sent to us

b. Data from Xero (via user-authorized API access)

  • Invoice metadata (e.g. status, contact, due date, amount)
  • Organization and contact names
  • Other accounting data required to render the core functionality of our plugin

c. Automatically Collected Data

  • Log data (IP address, browser type, timestamps)
  • Cookie data (see Section 8)

3. Legal Bases for Processing (GDPR Article 6)

We process your data based on one or more of the following lawful grounds:

  • Contractual necessity – to provide you the Service you’ve requested
  • Legitimate interest – to improve our product and communicate relevant updates
  • Consent – when you explicitly authorize certain processing (e.g. marketing emails)
  • Legal obligation – where required to comply with law (e.g. tax compliance)

4. How We Use Your Data

We use your data to:

  • Authenticate your account
  • Access your Xero data when you connect your account
  • Display overdue invoices and assist with late fee workflows
  • Respond to your requests or support tickets
  • Improve the Service through analytics and feedback

We do not use your data for automated decision-making or profiling.

5. How We Share Your Data

We do not sell your personal data.

We may share data:

  • With trusted subprocessors and service providers (e.g. hosting, analytics)
  • With Xero, based on your explicit API authorization
  • If required by law, regulation, or legal process
  • In the event of a merger, acquisition, or business transfer (you’ll be notified)

6. International Data Transfers

Your data may be stored in Australia, New Zealand, the United States, and the European Union. Due to the nature of our software, your data may be distributed to servers in countries closest to your point of presence while you are accessing the website.

For users in the EU, EEA, or UK:

  • We rely on Standard Contractual Clauses (SCCs) approved by the European Commission as the legal mechanism for transferring data outside the EEA.
  • We ensure our subprocessors provide equivalent data protection safeguards.
  • You can request a copy of applicable safeguards by contacting us at: privacy@fairlygood.app

7. Data Retention

We retain personal data only as long as necessary to:

  • Provide the Service;
  • Fulfill our legal obligations;
  • Resolve disputes or enforce agreements.

You may request deletion of your data at any time (see Section 9).

8. Cookies and Tracking

We may use essential and functional cookies to:

  • Authenticate your session
  • Remember preferences
  • Analyze usage anonymously

We do not use third-party advertising cookies.

You may disable cookies in your browser settings, though some features may not function correctly.

9. Your Rights (EU/UK Residents)

Under the GDPR, you have the following rights:

  • Access – Request a copy of your personal data
  • Rectification – Correct inaccurate or incomplete data
  • Erasure – Request deletion of your data (“right to be forgotten”)
  • Restriction – Limit processing in certain cases
  • Portability – Request data in a structured, commonly used format
  • Objection – Object to processing based on legitimate interests
  • Withdraw Consent – Where processing is based on your consent

To exercise any of these rights, email: privacy@fairlygood.app

You also have the right to lodge a complaint with your local data protection authority.

10. Children’s Privacy

Our Service is not intended for children under 18. We do not knowingly collect data from minors.

11. Data Security

We implement industry-standard technical and organizational measures to protect your data:

  • Encrypted data transmission (TLS)
  • Secure storage and access controls
  • OAuth 2.0 integration with Xero

However, no system is 100% secure.

12. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we’ll notify you by email or via the Service.

13. Contact Us

Data Controller: Fairly Good

Email: privacy@fairlygood.app

Last updated: July 22, 2025