What we collect
- Telegram user ID (numeric, not your username)
- Invoice data you create (amounts, descriptions, Lightning addresses)
- Usage analytics (event counts, timestamps)
What we do NOT do
- We do NOT custody funds - payments go directly to YOUR Lightning Address
- We do NOT track your clients beyond what you enter
- We do NOT sell your data to anyone
- We do NOT use third-party analytics (no Google Analytics, no tracking pixels)
Data security
Sensitive data (Lightning addresses, client names) is encrypted at rest using Fernet encryption. Invoice URLs use random UUIDs to prevent enumeration.
Your rights
- Delete all your data anytime:
/deleteaccount in the bot
- Export all your data:
/export in the bot
Data retention
Analytics are anonymized after 90 days. Invoices expire based on your settings (default 72 hours).