SmoothCSV

Privacy Policy

Effective Date: May 10, 2026

At SmoothCSV (“we,” “us,” or “our”), we are committed to protecting your privacy. This Privacy Policy explains how we handle information when you use our desktop application, SmoothCSV (the “App”), and our website at https://smoothcsv.com.

1. Desktop Application

The App operates entirely on your local device. We do not collect, access, store, or transmit any of the data you work with in the App. All file processing occurs locally.

2. SmoothCSV License Purchase

When you purchase a SmoothCSV License, your order is sold by Paddle.com Market Limited (“Paddle”), which acts as the Merchant of Record and seller for the purchase. SmoothCSV provides the software and license support. Paddle handles your payment in accordance with their Privacy Policy.

We receive from Paddle:

  • Your email address
  • Country code
  • Transaction details (amount, currency, transaction ID)
  • For team purchases, the Admin Email, Organization Name, Number of Seats, and a temporary identifier used to link the purchase confirmation page to the order

We do not receive or store your payment card details or billing address from purchases made through our website.

If your organization purchases licenses on a business-invoice basis, you may send us by email:

  • organization name and billing address
  • VAT ID (if applicable)
  • purchase order number (if you use one)
  • the name and email of a contact person

We use this information to issue the invoice through Paddle, deliver your license keys, and handle related queries or disputes; the relevant information is also processed by Paddle as the Merchant of Record. We may retain related correspondence as part of our business records, in line with Section 10. We do not sell it or use it for marketing. We share it with the service providers listed in Section 7, and we may also disclose it where necessary to professional advisers (such as accountants and legal counsel), tax or other regulatory authorities, or courts.

3. How We Use Your Information

We use the information received from Paddle, or sent to us directly by email for business invoice purchases (see Section 2), solely for:

  • Generating and delivering your license key
  • Sending your purchase confirmation email
  • Resending your license key if you request it via our restore page
  • Linking the purchase confirmation page to the corresponding order using a temporary identifier
  • Issuing and administering invoices for business / institutional license purchases
  • Complying with applicable accounting, tax, and audit obligations (including retaining invoices and related correspondence)

We do not use your information for marketing, advertising, or any other purpose.

If you are in the European Economic Area (EEA) or United Kingdom, we process your personal data on the following legal bases:

  • Contract performance: For purchases made through our website, generating and delivering your license key, sending purchase confirmation emails, and restoring your license key upon request.
  • Legitimate interests:
    • Service reliability: Error monitoring and debugging via Sentry to maintain and improve service reliability.
    • Business invoice administration: Administering business or institutional invoice purchases, including issuing invoices through Paddle, communicating with the organization’s contact persons, retaining invoice and related correspondence records in line with our accounting, tax, and audit practices, and handling related queries or disputes.

5. Data Storage

Purchase records and license information are stored on Cloudflare’s infrastructure (Cloudflare D1). We store the order metadata needed to deliver and restore licenses, including your email address, Admin Email, Organization Name, Number of Seats, a temporary identifier used to link the purchase confirmation page to the order, transaction ID, currency, amount, and license key. This temporary identifier is used only as a lookup key to match the purchase confirmation page with the order created from the webhook.

Where we receive business invoice information directly by email (see Section 2), the related correspondence and invoice records are stored in Gmail.

6. Email Communications

We send emails only in direct response to your actions:

  • A purchase confirmation email containing your license key, sent to the relevant contact address
  • A license key recovery email, sent only when you request it
  • Emails related to invoice issuance, follow-up, and any related queries or disputes for business or institutional license purchases (see Section 2)

We do not send marketing emails, newsletters, or promotional communications.

7. Third-Party Services

We use the following third-party services:

  • Paddle (payment processing): Privacy Policy
  • Resend (email delivery): Privacy Policy
  • Cloudflare (hosting and data storage): Privacy Policy
  • Sentry (error monitoring): Privacy Policy — When errors occur on our website or server, technical information such as error details, browser type, and IP address may be collected for debugging purposes.
  • Gmail (email sending, reception, and business correspondence storage): Privacy Policy — Used to send, receive, and retain business invoice correspondence as described in Section 2.

8. International Data Transfers

Your information may be transferred to and processed in countries outside your country of residence, including the United States. Our third-party service providers (Paddle, Resend, Cloudflare, Sentry, Gmail) may process data in various countries. These transfers are protected by the service providers’ data protection measures, including Standard Contractual Clauses where applicable.

9. Cookies and Similar Technologies

Our website may use cookies set by Cloudflare for security and performance purposes. We do not use cookies for advertising or behavioral tracking.

10. Data Retention

We retain purchase records and license information indefinitely to support license key recovery. Where we receive business invoice information directly by email (see Section 2), we retain the related correspondence and invoice records for as long as needed to administer the purchase, satisfy our accounting, tax, and audit obligations, and handle any related queries or disputes. You may request deletion of your data by contacting us.

11. Your Rights

You may request access to, correction of, or deletion of your personal data by contacting us at [email protected]. We may retain information that we are required or permitted to keep for legal, accounting, tax, audit, or dispute-handling purposes (see Section 10).

If you are in the EEA or UK, you also have the right to lodge a complaint with your local data protection supervisory authority.

12. Updates and Changes

We may update this Privacy Policy from time to time. Changes will be posted on this page. Your continued use of the App or website after changes constitutes acceptance of the updated Privacy Policy.

13. Governing Law

This Privacy Policy is governed by the laws of Japan.

14. Contact Information

If you have any questions about this Privacy Policy, please contact us at [email protected].