Security

Current storage model

InvoiceMaker.org currently keeps invoice, estimate, quote, proforma invoice, credit note, purchase order, and receipt drafts in browser local storage. This avoids server-side document databases, but it also means document safety and retention depend on the user's device, browser profile, backup habits, and screen-lock practices.

Recommended user practices

• Use a trusted device with a lock screen.
• Do not save invoices on shared or public computers.
• Download or print records that must be kept for legal, tax, or accounting purposes.
• Delete saved invoices after downloading or sending them if the device is shared.
• Remember that clearing browser cache, site data, or local storage can remove saved documents.
• Use HTTPS when the site is deployed publicly.
• Do not enter unnecessary sensitive information into invoice notes.

If cloud storage is added later

Cloud accounts or server invoice storage would require a stronger compliance setup before launch: authentication, encrypted transport, access controls, backups, deletion rights, breach response, data processing terms, retention limits, and jurisdiction-specific privacy review.