Who I am
Joio is the trading name of Rhys O'Shea, a sole trader operating in the UK. Throughout these terms “I” and “me” mean Joio; “you” means the person or business using the app.
You can reach me at byjoio.dev@gmail.com.
The service
byjoio invoicing is a web app that helps you track clients, log time, and generate branded PDF invoices. After payment I provision a dedicated Supabase database for you — one database per paying customer — and the app reads and writes your business data there. Your data is isolated from every other customer at the database level, not just at the application level.
Account & eligibility
- +You must be 18 or older to buy a licence.
- +Give me real sign-up details — at minimum a working email so I can reach you for support and password resets.
- +One licence is for one business. You can let your own staff or appointed agents (e.g. a bookkeeper) log in on your behalf — you're still responsible for what they do with the account. Don't share your login outside your business.
- +You're responsible for keeping your password safe.
The one-time payment
The app is sold for a single up-front fee — there are no recurring charges, no card on file, no auto-renewal. Two tiers:
- +Standard (£300) — access to the full invoicing app at
invoicing.byjoio.co.uk, all current features, and all future updates I ship to the standard product. - +Custom domain (+£50) — everything in standard, plus me setting the app up on a domain of your choosing (e.g.
invoicing.yourbusiness.co.uk).
Payment is taken through Stripe. The licence activates as soon as Stripe confirms the payment.
Your data, your dedicated database
Your business data — clients, time entries, invoices — lives in a dedicated Supabase database I provision for you on payment. Your data is never co-mingled with any other customer's; each customer gets their own database.
You remain the data controller for any personal data your invoices contain (your clients' names, addresses, etc.); I act as your data processor for that data and only access it when the app needs to in order to fulfil a request you've made (loading a page, generating a PDF).
The credentials needed to connect to your database are encrypted at rest. If you cancel I remove your credentials and tear down your dedicated database — ask first if you'd like a CSV export of your data.
Data processing agreement
This section is the written data processing agreement required by Article 28 of UK GDPR, covering how I process personal data on your behalf (your clients' names, addresses, and any other personal data your invoices contain).
- +I will only process your clients’ personal data on your documented instructions — meaning I access it solely to fulfil requests you initiate through the app (loading a page, generating a PDF). I will not process it for any other purpose.
- +Anyone with access to the systems involved in running the app is under a duty of confidentiality.
- +I take reasonable technical and organisational measures to keep your data secure: your database credentials are encrypted at rest, your data is isolated in its own dedicated database, and access to that database requires those encrypted credentials.
- +I use the following sub-processors to deliver the service: Supabase (database hosting and authentication infrastructure), Vercel (app hosting). I will not add further sub-processors that handle your client data without telling you first.
- +If I become aware of a personal data breach affecting your clients’ data, I will notify you without undue delay so you can meet your own 72-hour reporting obligation to the ICO.
- +I will assist you (at no extra cost) if you receive a data subject rights request — access, rectification, erasure, portability, restriction, or objection — that requires data I hold on your behalf.
- +On cancellation or deletion of your account, I will delete your dedicated database and all client data within it. On request I will provide a CSV export first.
- +I will make available to you any information you reasonably need to demonstrate that I am meeting my obligations under this agreement.
Acceptable use
While using the app, you agree not to:
- +Use it to process personal data you don't have legal authority to handle.
- +Resell, sublicense, or repackage the app or any part of it.
- +Use it to produce invoices for unlawful goods or services, or to commit fraud.
- +Probe, scrape, or otherwise try to access other users' accounts or data.
- +Interfere with the app's normal operation — load testing, scraping at volume, attempts to bypass authentication.
Intellectual property
You own the content you put into the app — your clients, your time entries, your invoices, the wording on them. I own the platform code, the brand, and the UI.
Your licence gives you the right to use the app for your own business purposes. It doesn't give you the right to copy, redistribute, or reverse-engineer the platform itself.
No warranty beyond your statutory rights
The app is provided “as is.” I work hard to keep it stable and accurate, but I can't promise it'll always be available, error-free, or fit every business's exact needs. Your statutory rights as a consumer (where they apply) are not affected by this clause.
Limitation of liability
To the extent allowed by law, my total liability to you for anything connected to the app is capped at the amount you paid for your licence. I'm not liable for indirect or consequential losses — lost business, lost data you could have backed up, lost time, and so on.
Nothing in these terms limits liability for death or personal injury caused by negligence, for fraud, or for anything else that can't be limited under UK law.
Termination
You can delete your account at any time from the dashboard, or by emailing me. Doing so removes your profile data, wipes your stored database credentials, and tears down your dedicated invoicing database. Ask first if you'd like a CSV export of your data.
I can suspend or close an account that breaches these terms (for example, abuse, fraud, or use against the acceptable-use list above). Where the breach is fixable, I'll give you reasonable notice and a chance to put it right first. Termination for breach is non-refundable.
If I close or discontinue the service for reasons unrelated to your conduct — for example, if I stop running the product — I'll give you at least 30 days' notice, refund a fair portion of your fee, and help you export your data before tearing things down.
Refunds
The full refund position is on its own page — refund policy → — but in short: 14 days from purchase, waived once you generate your first PDF or connect a live database.
Governing law
These terms are governed by the law of England & Wales. Disputes go to the UK courts. If you're a consumer based elsewhere in the UK, you keep the right to bring proceedings in your local courts.
Changes
If I change anything material, I'll email registered users and update the “last updated” date at the top of this page. Continuing to use the app after a change means you accept it.