Skip to main content
DoneAndBilled

Privacy & Compliance

Your Data Stays in Europe

Every byte of your data – invoices, clients, activities – is stored exclusively on EU servers. EU servers only. Full control over your data.

Start free – no credit card View all features
DoneAndBilled GDPR compliance overview

EU Servers Only

DoneAndBilled is hosted entirely on infrastructure located within the European Union. Your data never leaves the EU – not for processing, not for storage, not for backups.

This is not a checkbox on a compliance form. It is a core architectural decision that was made before the first line of code was written.

  • All data stored on EU-based servers
  • Data stays within EU jurisdiction
  • Backups and processing remain in the EU

GDPR by Design

GDPR compliance is not an afterthought – it is built into the foundation of DoneAndBilled. Data collection is minimal, purpose-limited, and clearly documented.

You are always in control of your data and your clients' data.

  • Minimal data collection, no surplus tracking
  • Purpose-limited data use
  • Compliant with GDPR requirements out of the box

All Data Stays in the EU

DoneAndBilled stores all user data exclusively on servers within the EU. Analytics are self-hosted on EU infrastructure using Matomo. Your data is never shared with third parties.

When you use DoneAndBilled, you always know exactly where your data is and who has access to it.

  • All user data stored on EU servers
  • Self-hosted analytics – no third-party tracking
  • Clean data boundaries for you and your clients

Full Control Over Your Data

You can download a full export of your account data at any time from your profile. If you decide to close your account, all associated data is deleted.

Note: Invoice records are retained as required by law (Austrian tax law, BAO §132 – 7-year retention requirement), but all other personal data is removed.

  • Download a full data export at any time
  • Account deletion removes all personal data
  • Invoices retained per legal requirements only

Protected from Day One

Security is not something you configure later. DoneAndBilled enforces HTTPS, uses secure session handling, and follows security best practices from the ground up.

Your login, your data, and your clients' information are protected by default.

  • HTTPS enforced across the entire application
  • Secure session and authentication handling
  • Security-first development approach

Frequently Asked Questions

All data is stored on servers located within the European Union. Every part of the infrastructure that handles your data is based in the EU.
All user data is stored and processed on servers within the European Union. Payment processing is handled by Stripe Payments Europe (Ireland) under an EU data processing agreement.
Yes. You can download a full export of your account data from your profile page at any time. You can also delete your account, which removes all personal data – except invoice records that must be retained by law.
Yes. DoneAndBilled is built from the ground up with GDPR compliance in mind. Data is collected minimally, stored in the EU, and you have full control over it. Our privacy policy documents all data processing.
DoneAndBilled stores only the data you provide: your name and email address, your company and client information, your activity logs, and your invoices. We do not collect behavioral data or sell your information.

Still have questions?

Can't find what you're looking for? Drop us a message.

Thanks! We received your message and will get back to you soon.
Something went wrong. Please try again later.

Keep your data in Europe, stay compliant.

No credit card required. Free plan available. GDPR-compliant from day one.

Start free →