Privacy Policy
This Privacy Policy describes what data Pipedrive × FreshBooks (the "App") collects, why, and how it's handled. The App is developed and operated by [FILL IN — your legal company name] ("we", "us"). It connects your Pipedrive account to your FreshBooks account to create invoices/estimates from deals and keep payment status in sync, and requires both accounts to function.
1. What we collect and store
| Data | Why | Where |
|---|---|---|
| Pipedrive OAuth access & refresh tokens | To act on your behalf in Pipedrive (read deals/organizations/products, write the invoice-status custom field, move deal stages) | oauth_tokens |
| Your Pipedrive account id, company id, and display name | To identify your tenant and attribute Activity log entries to you | oauth_tokens |
| FreshBooks OAuth access & refresh tokens, and account id | To act on your behalf in FreshBooks (create/read invoices, estimates, clients, items) | oauth_tokens |
| Organization ↔ client mappings (ids and cached names) | To know which FreshBooks client an invoice/estimate belongs to | client_mappings |
| Product ↔ item mappings (ids, cached names, prices, descriptions) | To prefill invoice/estimate line items | product_mappings, item_cache, tax_cache |
| Links between FreshBooks invoices/estimates and the deal that created them | To show a deal's invoices and push payment status back to the right deal | invoice_deal_links |
| A log of actions the App has taken, and who triggered them | Visibility into what the App has done, in the Activity tab | activity_log |
| Your configured settings (due days, auto-send, paid stage) | To apply your preferences when creating invoices and pushing status | settings |
| Webhook subscription metadata | To receive and verify FreshBooks payment/invoice notifications | webhook_subscriptions |
We do not collect or store credit card numbers, bank details, or other payment instrument data (all payments happen inside FreshBooks itself); passwords (authentication is OAuth 2.0 only); or any data beyond what's listed above.
2. How we use your data
To perform the actions you or your team take in the App, to display the Activity tab, mapping tables, and sync status, and to keep OAuth tokens refreshed so the connection keeps working. We do not sell your data, use it for advertising, or share it with third parties except Pipedrive and FreshBooks themselves (the entire purpose of the App), service providers strictly necessary to run the App, or if required by law.
3. Data retention
OAuth tokens, mappings, and settings are kept for as long as your account is connected. Disconnecting the App or uninstalling it from the Pipedrive Marketplace deletes your OAuth tokens, mappings, sync state, and Activity log immediately. [FILL IN if backups are retained beyond this.]
4. Security
All data in transit is encrypted via HTTPS/TLS. Access to Pipedrive and FreshBooks is via OAuth 2.0; we never request or store your account passwords. [FILL IN — describe at-rest encryption / access controls actually in place; don't claim measures that aren't implemented.]
5. Your rights
Depending on your jurisdiction (e.g. GDPR, CCPA), you may have the right to access, correct, export, or delete your data. Disconnecting the App already deletes your stored data (§3); for anything else, contact us at [FILL IN — support/privacy email].
6. Children's privacy
The App is a business tool intended for use by adults in a professional context and is not directed at children.
7. International data transfers
[FILL IN — hosting region and, if applicable, transfer mechanism such as Standard Contractual Clauses.]
8. Changes to this policy
We may update this Privacy Policy as the App's functionality changes. Material changes will be reflected by updating the "Last updated" date above.
9. Contact
Questions about this Privacy Policy: [FILL IN — support/privacy email].