Privacy Policy
Effective date: June 1, 2026 · Last updated: June 1, 2026
This Privacy Policy applies specifically to the DunDial product operated at dundial.app and describes how we handle your Stripe account data. The AVSaaS company-wide Privacy Policy also applies and governs any areas not specifically addressed here.
1. What Data DunDial Accesses from Stripe
DunDial connects to your Stripe account via Stripe Connect Standard OAuth with read_write scope on connected accounts. DunDial accesses: failed invoice events (via webhook), invoice details required to classify decline codes and schedule retries, and subscription status required to update subscriptions after a successful retry.
DunDial stores: your connected Stripe account identifier, the Stripe OAuth credentials for your account (encrypted at rest), webhook event identifiers (for idempotency), retry schedule configurations you set, and retry attempt outcomes (success, failure, decline code). DunDial does not store your customers' full card numbers or CVV data.
2. Customer Update Portal
When a customer clicks a Customer Update Portal link, they are redirected to a DunDial-hosted page that collects an updated payment method via Stripe's secure payment elements. The updated card data is transmitted directly to Stripe — DunDial does not receive or store raw card data. DunDial stores only the portal session token (used to associate the update with the correct invoice) and the session outcome.
3. Data Residency
Your account data is stored in the region you select at signup: EU-Central (Frankfurt) or US-East (Virginia). Data does not replicate across regions.
4. Stripe OAuth Permissions
DunDial requests read_write scope on connected accounts to retry failed invoices and update subscription state. DunDial does not access or modify products, prices, customers, or any object not directly involved in the retry flow. The specific operations DunDial performs are: read invoice, retry invoice payment, update subscription status.
5. Retention and Deletion
Retry attempt records are retained for 90 days on a rolling basis. When you disconnect a Stripe account, all data for that account is deleted within 30 days. When you cancel your DunDial subscription, all account data is deleted within 30 days of account closure.
6. Dunning Email Data
To deliver dunning emails, DunDial stores your customer email addresses (received via Stripe webhook payloads) only for the duration of the dunning sequence. Email addresses are deleted when the dunning sequence concludes (payment recovered, subscription cancelled, or sequence exhausted).
7. Contact
Data privacy questions for DunDial: [email protected]