PayFix
Connect Stripe

Legal

Privacy Policy

Last updated: May 27, 2026

PayFix ("PayFix", "we", "us") provides failed-payment recovery automation for Stripe-connected businesses. This Privacy Policy explains what information we collect, how we use it, and the choices you have.

By using PayFix you agree to this policy. If you do not agree, please do not use the service.

1. What we collect

From you (the account owner)

  • Name, email address, and login credentials.
  • Organization name and billing information for PayFix itself.
  • Dunning template content and notification preferences you configure.

From your connected Stripe account

  • Customer email, name, currency, subscription IDs, invoice IDs, and failed-payment metadata required to run dunning sequences.
  • Stripe event payloads delivered to our webhook endpoint (e.g. invoice.payment_failed).

We never see, request, or store raw payment card data.All card information stays inside Stripe's PCI-compliant environment. PayFix only handles metadata and identifiers.

2. How we use it

  • Run dunning sequences and recover failed payments on your behalf.
  • Display recovery metrics and analytics inside your PayFix dashboard and inside the Stripe Dashboard via our App extension.
  • Send transactional emails to your customers using the templates you configure.
  • Operate, secure, and improve the service.
  • Bill you for PayFix and provide customer support.

We do not sell your data. We do not use customer data for advertising. We do not train AI models on your data.

3. Subprocessors

We rely on a small number of vetted providers:

  • Vercel — application hosting.
  • Supabase — database, authentication, file storage.
  • Stripe — payment processing and webhook events.
  • Resend — transactional email delivery.

4. Data retention

We retain account, organization, and payment-recovery records for as long as your account is active and for up to 12 months after cancellation for legal and accounting purposes. Webhook event logs are kept for 90 days for debugging and audit.

You can request export or deletion of your data at any time by emailing support@payfixapp.com.

5. Your rights (GDPR / CCPA)

  • Access the personal data we hold about you.
  • Request correction or deletion.
  • Object to or restrict certain processing.
  • Request portability of your data.
  • Withdraw consent at any time.

Customers of PayFix users (end-users whose failed payments are being recovered) should direct requests to the merchant. We will cooperate with merchants to fulfill them.

6. Security

We use TLS for data in transit, encrypted storage at rest, signed webhook verification, scoped Stripe API keys, and least-privilege access controls. No system is perfectly secure — if we become aware of a breach affecting your data, we will notify you within 72 hours.

7. International transfers

PayFix infrastructure is hosted in the United States and the European Union. By using the service you consent to your data being processed in these regions.

8. Children

PayFix is not intended for users under 16. We do not knowingly collect data from children.

9. Changes

We may update this Privacy Policy. Material changes will be announced via email or in-app notice at least 14 days before they take effect.

10. Contact

Questions about this policy? support@payfixapp.com

See also: Terms of Service · Support