Inv9x

Privacy Policy

Last updated: May 9, 2026

1. Who we are

Inv9x is operated by Vinn AI Tech Solutions LLC, a Delaware limited liability company ("Inv9x," "we," "us"). This policy explains how we collect, use, and protect personal and financial data when you use our service.

2. What we collect

  • Account data: name, email, firm name, OAuth identifier when you sign in with Google.
  • Invoice data: PDFs and images you upload, plus the structured data we extract from them.
  • Usage data: log entries showing what actions you took, when, from which IP — used for security and audit trails.
  • Billing data: handled by Stripe; we never see or store full card numbers.

3. How we use it

Solely to provide, secure, and improve the service. We do not sell or rent your data. We do not use your invoice data to train shared AI models.

4. Subprocessors

We use a small set of vetted vendors to deliver the product:

  • AWS — hosting, storage, compute, and the Bedrock-hosted Claude models we use for invoice extraction (US regions).
  • Stripe — payment processing.
  • Google — OAuth sign-in.

5. Retention & deletion

Active accounts: data retained while you remain a customer. After cancellation, we retain your data for 60 days then permanently delete unless legally required to keep it longer (e.g., tax records). You can request export or deletion at any time at privacy@inv9x.com.

6. Security

Data is encrypted in transit (TLS 1.3) and at rest (AES-256). Access is restricted to authorized personnel and audited. We're working toward SOC 2 Type II certification.

7. Your rights

Depending on your jurisdiction (GDPR, CCPA, etc.) you may have rights to access, correct, delete, or export your data. Email privacy@inv9x.com and we'll respond within 30 days.

8. Contact

Vinn AI Tech Solutions LLC
privacy@inv9x.com