Privacy Policy

Last updated: December 06, 2025

1. Introduction

Greenstamp ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Mexican electronic invoicing platform and related services.

By using Greenstamp, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

Account Information

When you create an account, we collect:

  • Name and email address
  • Company name and business information
  • Password (stored in encrypted form)

Business Information

To provide our invoicing services, we collect:

  • RFC (Registro Federal de Contribuyentes) tax identification numbers
  • Business addresses and fiscal information
  • CSD (Certificado de Sello Digital) certificates for invoice signing
  • Customer and vendor information you enter
  • Invoice data including amounts, descriptions, and tax information

Technical Information

We automatically collect:

  • IP address and browser type
  • Device information and operating system
  • Usage data and access times
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain our invoicing services
  • Generate and submit CFDI invoices to SAT on your behalf
  • Process transactions and send related information
  • Send administrative communications about your account
  • Respond to your comments, questions, and support requests
  • Monitor and analyze usage patterns to improve our services
  • Detect, prevent, and address technical issues and fraud
  • Comply with legal obligations and regulatory requirements

4. Data Sharing and Disclosure

We may share your information in the following circumstances:

Service Providers

We share data with third-party service providers who assist in operating our platform, including:

  • PAC (Proveedor Autorizado de Certificación) providers for invoice stamping
  • Cloud hosting and infrastructure providers
  • Payment processors
  • Analytics and monitoring services

Legal Requirements

We may disclose your information if required by law, including:

  • To comply with SAT (Servicio de Administración Tributaria) requirements
  • In response to lawful requests by public authorities
  • To protect our rights, privacy, safety, or property

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5. Data Security

We implement industry-standard security measures to protect your data:

  • AES-256 encryption for sensitive data at rest
  • TLS 1.3 encryption for data in transit
  • Secure storage of CSD certificates with access controls
  • Regular security audits and vulnerability assessments
  • Employee access controls and security training

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services. We also retain data as necessary to:

  • Comply with Mexican tax law requirements (invoices must be retained for 5 years)
  • Resolve disputes and enforce agreements
  • Meet legal and regulatory obligations

You may request deletion of your account, subject to legal retention requirements.

7. Your Rights

Depending on your location, you may have rights regarding your personal data:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data (subject to legal requirements)
  • Portability: Request transfer of your data in a machine-readable format
  • Objection: Object to certain processing of your data

To exercise these rights, contact us at info@greenstamp.io.

8. Cookies

We use cookies and similar technologies to:

  • Keep you signed in to your account
  • Remember your preferences
  • Understand how you use our services
  • Improve our platform based on usage patterns

You can control cookies through your browser settings, though disabling cookies may affect functionality.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. We ensure appropriate safeguards are in place for such transfers.

10. Children's Privacy

Our services are not intended for individuals under 18. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy, please contact us:

  • Email: info@greenstamp.io
  • Address: 2093 Philadelphia Pike #6970, Claymont, DE 19703, United States