Privacy Policy

Information We Collect

Personal Information

We collect information that you voluntarily provide when using our services. This includes your name, email address, phone number, and business details when you create an account or contact us. We also gather information about your company's financial needs and analysis requirements to better serve your specific situation.

Financial Data

When you upload financial statements or documents for analysis, we temporarily process this information to provide our services. We understand how sensitive financial data can be — it's the foundation of your business decisions. That's why we've implemented multiple layers of security to ensure this information remains confidential and is only used for the specific analysis you've requested.

Automatically Collected Information

Our platform automatically collects certain technical information to ensure optimal performance and security. This includes your IP address, browser type, device information, and how you navigate through our platform. We use this data to identify potential security threats, optimize our platform's performance, and understand how users interact with our features. This information helps us make improvements and ensure our services work seamlessly across different devices and browsers.

How We Use Your Information

Your information serves several important purposes within our platform. Primarily, we use it to provide the financial analysis services you've requested. This means processing your financial documents, generating reports, and delivering insights that help you make informed business decisions. We also use your contact information to communicate with you about your account, send important updates about our services, and provide customer support when needed.

Service Delivery

The core purpose of data collection is to deliver our financial statement analysis services effectively. When you upload documents, our systems process this information to generate comprehensive reports, identify trends, and provide actionable insights. We maintain detailed logs of analysis requests to ensure accuracy and enable you to access historical reports when needed.

Platform Improvement

We analyze usage patterns and user feedback to continuously enhance our platform. This involves studying how different features are used, identifying areas where users might struggle, and developing new tools that address common financial analysis needs. All of this analysis is conducted on aggregated, anonymized data that doesn't identify individual users or their specific business information.

Security and Fraud Prevention

Protecting your data requires constant vigilance. We monitor access patterns, login attempts, and unusual activity to prevent unauthorized access to your account. This security monitoring helps us detect potential threats early and take appropriate action to protect your information. We also use this data to improve our security measures and stay ahead of emerging threats in the financial technology space.

Data Sharing and Disclosure

We maintain strict policies regarding data sharing and only disclose information in specific, limited circumstances. Generally, we don't share your personal or financial information with third parties. However, there are certain situations where disclosure may be necessary or legally required, and we believe it's important to be completely transparent about these circumstances.

Third-Party Service Providers

Like most technology platforms, we work with carefully selected third-party service providers to help deliver our services. These might include cloud hosting providers, email service providers, and security monitoring services. All of these partners are bound by strict confidentiality agreements and are only permitted to use your data for the specific services they provide to us. We regularly audit these relationships to ensure they maintain the same high standards of data protection that we do.

Legal Requirements

There are circumstances where we may be legally obligated to disclose information. This could include court orders, subpoenas, or regulatory investigations. We take these situations seriously and will always review such requests carefully to ensure they're legitimate and properly authorized. When possible, we'll notify affected users about such requests, unless we're legally prohibited from doing so.

Data Security and Protection

Security isn't just a feature of our platform — it's fundamental to everything we do. We've implemented comprehensive security measures that protect your data at every stage, from the moment it enters our systems until it's securely deleted. Our security approach includes both technical safeguards and operational procedures designed to prevent unauthorized access, data breaches, and other security incidents.

Technical Safeguards

All data transmitted to and from our platform is protected using industry-standard encryption protocols. We use SSL/TLS encryption for data in transit and AES-256 encryption for data at rest. Our servers are hosted in secure data centers with physical security controls, redundant power systems, and environmental monitoring. We also implement regular security updates and patches to protect against newly discovered vulnerabilities.

Access Controls

We maintain strict access controls to ensure that only authorized personnel can access user data, and only when necessary for providing services or resolving support issues. Our team members undergo background checks and receive regular security training. All access to user data is logged and monitored, and we conduct regular audits to ensure these controls are working effectively.

Regular Security Audits

We conduct regular security assessments and penetration testing to identify potential vulnerabilities before they can be exploited. These audits are performed by both internal security teams and independent third-party security firms. We also maintain certifications and compliance with relevant industry standards to ensure our security practices meet the highest professional standards.

Your Privacy Rights and Choices

You have significant control over your personal information and how it's used within our platform. We believe that privacy rights are fundamental, and we've designed our systems to make it easy for you to exercise these rights. Whether you want to access your data, correct inaccuracies, or delete your information entirely, we provide clear processes for managing your privacy preferences.

Access and Portability

You can request a complete copy of all personal data we hold about you. This includes your account information, uploaded documents, analysis reports, and communication history. We'll provide this information in a structured, commonly used format that allows you to easily transfer it to another service if desired. Most account information can be accessed directly through your account dashboard, while additional data can be requested through our support team.

Correction and Updates

If you notice any inaccuracies in your personal information, you can update most details directly through your account settings. For more significant changes or corrections to historical data, you can contact our support team who will help ensure your information is accurate and up-to-date. We encourage users to review their account information periodically to ensure everything remains current.

Account Deletion

If you decide to stop using our services, you can request complete deletion of your account and all associated data. This process typically takes 30 days to complete, during which time your account will be deactivated but recoverable if you change your mind. After this period, all your personal information, uploaded documents, and analysis reports will be permanently deleted from our systems. Some information may be retained for legal or regulatory purposes, but this will be clearly explained during the deletion process.

Data Retention and Deletion

We don't keep your data indefinitely. Our retention policies are designed to balance your need for ongoing access to historical information with privacy principles that limit how long personal data is stored. Different types of data have different retention periods based on their purpose and legal requirements, and we've structured these policies to be as transparent as possible.

Financial Documents and Reports

Financial statements and analysis reports are typically retained for seven years from the date of upload, which aligns with standard business record-keeping practices. However, you can request deletion of specific documents at any time if they're no longer needed. We understand that business circumstances change, and some documents may become irrelevant or sensitive over time.

Account Information

Basic account information is retained for as long as your account remains active, plus an additional three years after account closure. This allows us to reactivate accounts if needed and helps prevent unauthorized account creation using the same credentials. Communication records with our support team are retained for five years to help us improve our services and resolve any future issues that might arise.

Automated Deletion Processes

We've implemented automated systems that regularly review stored data and delete information that has exceeded its retention period. These processes run monthly and include multiple verification steps to ensure that only appropriate data is deleted. Before any significant deletion occurs, we send notifications to account holders giving them the opportunity to export or backup any information they wish to retain independently.

International Data Transfers

As an Australian-based company serving clients across different regions, we occasionally need to transfer data internationally for service delivery and support purposes. All international transfers are conducted with appropriate safeguards to ensure your data receives the same level of protection regardless of where it's processed. We maintain detailed records of these transfers and ensure they comply with relevant privacy regulations.

Cross-Border Service Delivery

Some of our technical infrastructure and service providers operate in different countries, which means your data might be processed outside Australia. When this occurs, we ensure that appropriate data protection agreements are in place and that the receiving country has adequate privacy protections. We regularly review these arrangements to ensure they continue to meet high privacy standards.

Data Protection Safeguards

For any international data transfers, we implement additional contractual safeguards, including standard contractual clauses approved by privacy regulators. These contracts ensure that foreign service providers maintain the same privacy protections that would apply if the data remained in Australia. We also conduct regular audits of international partners to verify compliance with these requirements.

Children's Privacy

Our platform is designed for business use and is not intended for individuals under 18 years of age. We don't knowingly collect personal information from minors, and our terms of service require users to be at least 18 years old or the age of majority in their jurisdiction. If we become aware that we've inadvertently collected information from someone under 18, we'll take immediate steps to delete that information from our systems.

Parents or guardians who believe their child has provided personal information to our platform should contact us immediately. We take these situations seriously and will work quickly to investigate and resolve any concerns. Our commitment to protecting children's privacy extends beyond legal requirements — it's part of our broader responsibility to handle all personal information with appropriate care and respect.

Changes to This Privacy Policy

Privacy regulations and our business practices evolve over time, which means this privacy policy may need to be updated periodically. When we make changes, we'll notify users through multiple channels including email notifications and prominent notices on our platform. Significant changes will be communicated at least 30 days before they take effect, giving you time to review the updates and make any necessary adjustments to your account settings.

We encourage users to review this privacy policy periodically to stay informed about how we protect and handle personal information. The "Last Updated" date at the top of this document indicates when the most recent changes were made. If you have questions about any updates or how they might affect your use of our services, our support team is always available to provide clarification and assistance.