// legal

Privacy Policy

Last updated April 20, 2026

SuiteCollector (“we”, “our”, or “us”) is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your information when you use our platform.

Information We Collect

Account Information

When you create an account, we collect your name, email address, and password. If you create or join a team, we also store your team membership and role information.

NetSuite Integration Data

When you connect your NetSuite instance, SuiteCollector syncs the following data:

  • Customer records (name, contact information, billing details)
  • Open invoices and credit memos
  • Payment history and transaction records
  • Customer addresses

This data is used exclusively to power your collections workflows, generate reports, and calculate risk scores.

NetSuite Credentials

To connect to your NetSuite instance via OAuth 2.0, we store your Client ID, Client Secret, and the access and refresh tokens issued by NetSuite. These credentials are encrypted at rest using per-team encryption keys derived through a key derivation function. Your NetSuite password is never stored or transmitted through SuiteCollector.

Usage Data

We collect standard usage data including pages visited, features used, and actions taken within the platform. This helps us improve the product and troubleshoot issues.

How We Use Your Information

We use the information we collect to:

  • Provide and maintain the SuiteCollector platform
  • Sync data between your NetSuite instance and SuiteCollector
  • Execute dunning workflows and send collection communications on your behalf
  • Generate reports, analytics, and customer risk scores
  • Send you account-related notifications and product updates
  • Respond to your support requests
  • Improve our product and develop new features

Data Isolation

SuiteCollector uses a team-based multi-tenancy architecture. Each team’s data — including customers, invoices, workflows, and credentials — is completely isolated from other teams. Users can only access data belonging to teams they are members of.

Per-Team Encryption

Your NetSuite credentials are encrypted using team-specific keys. Even in the unlikely event of a breach affecting one team, other teams’ credentials remain protected by independent encryption keys.

Third-Party Services

We use the following third-party services to operate SuiteCollector:

  • Email delivery — For sending dunning emails on your behalf and transactional notifications
  • Cloud infrastructure — For hosting, database, and file storage
  • Payment processing — For subscription billing (we do not store your full credit card number)

We do not sell, rent, or share your data with third parties for marketing purposes.

Data Retention

  • Active accounts — Your data is retained as long as your account is active.
  • Cancelled subscriptions — Data is retained for 30 days after cancellation to allow for reactivation, then permanently deleted.
  • Deletion requests — You can request immediate deletion of your data at any time by contacting support@suitecollector.com.

Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Withdraw consent for optional data processing

To exercise any of these rights, contact us at support@suitecollector.com.

Cookies

SuiteCollector uses essential cookies required for authentication and session management. We do not use third-party advertising or tracking cookies.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the “Last updated” date.

Contact Us

If you have questions about this privacy policy or our data practices, please contact us at support@suitecollector.com.