How RecoverKit handles payment recovery data.

RecoverKit helps SaaS merchants recover failed Stripe payments by receiving Stripe account events, creating recovery cases, sending recovery emails, and routing customers back to Stripe-hosted invoice or payment pages.

RecoverKit is designed to process only the data needed for failed-payment recovery. Stripe remains the payment processor and handles card entry, authentication, and hosted payment collection.

• Merchant account identifiers, installation state, app permissions, and setup settings.
• Invoice, subscription, customer, payment intent, and event identifiers received from Stripe.
• Customer contact context needed for recovery, such as email address and name when provided by Stripe.
• Failed-payment reason, invoice amount, currency, status, hosted invoice URL, and recovery case timeline.
• Recovery email delivery metadata, recovery link status, click timestamp, and completion timestamp.
• Operational diagnostics such as webhook status, queued events, and safe error messages.

• RecoverKit does not collect or store full card numbers, CVC codes, or bank credentials.
• RecoverKit does not ask customers to enter payment details on RecoverKit pages.
• RecoverKit does not expose raw recovery tokens, raw Stripe OAuth tokens, or webhook payloads in the embedded app UI.

• To detect failed payments that may require customer action.
• To show recovery status, case detail, and diagnostics in Stripe Dashboard.
• To send configured recovery emails and provide secure recovery links.
• To route customers to Stripe-hosted invoice or payment update pages.
• To stop or mark recovery sequences when invoices are paid, voided, uncollectible, or subscriptions are canceled.
• To troubleshoot delivery, webhook, and worker processing issues.

RecoverKit may use infrastructure, database, email, and observability providers to operate the service. Current MVP infrastructure is hosted on Google Cloud Run with MongoDB storage. Email delivery may use the configured transactional email provider for the merchant environment.

Recovery records are retained while needed to operate the recovery workflow, provide diagnostics, and support merchant review. A merchant can request deletion or deactivation of RecoverKit data for their account by contacting support. Some operational records may be retained where required for security, audit, or service integrity.

For privacy questions, data requests, or deactivation requests, contact the RecoverKit operator through the support contact provided in the Stripe App listing or merchant onboarding materials.