Privacy Policy

Introduction

LedgerDock ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our financial reporting and analysis platform.

As a financial technology platform handling business financial data, we adhere to strict data protection standards including compliance with the Gramm-Leach-Bliley Act (GLBA), applicable state privacy laws, and industry best practices for financial data security.

Information We Collect

Account Information

When you create an account, we collect:

• Email address
• Name (first and last)
• Phone number (optional)
• Company information and role

Financial Data

To provide our financial reporting services, we process:

• Company financial records and transactions
• Chart of accounts data
• Balance sheet and income statement information
• Cash flow data
• Tax return information (when provided)

Usage Information

We automatically collect information about how you use our platform:

• Log data and access times
• IP addresses and device information
• Browser type and operating system
• Pages visited and features used

How We Use Your Information

We use your information to:

• Provide financial reporting and analysis services
• Generate profit & loss statements, balance sheets, and cash flow reports
• Maintain and improve our platform
• Ensure security and prevent unauthorized access
• Comply with legal and regulatory requirements
• Communicate with you about your account and our services
• Provide customer support

AI-Powered Features

LedgerDock includes AI-powered features to enhance your financial reporting experience. Our AI system may analyze your financial data to:

• Generate automated insights and notes
• Suggest account categorizations
• Identify potential data entry errors
• Provide trend analysis and recommendations

All AI processing is performed securely within our systems. Your data is never shared with third-party AI services or used to train external models.

Data Security

We implement industry-standard security measures to protect your financial data:

• Encryption: All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption
• Access Controls: Multi-factor authentication and role-based access controls
• Database Security: Encrypted PostgreSQL databases with secure connection protocols
• Regular Audits: Ongoing security assessments and vulnerability testing
• Compliance: GLBA compliance and SOC 2 preparation standards

Data Sharing and Disclosure

We do not sell, trade, or rent your personal or financial information to third parties. We may disclose your information only in the following circumstances:

• With Your Consent: When you explicitly authorize us to share your data
• Service Providers: To trusted third-party service providers who assist in operating our platform (under strict confidentiality agreements)
• Legal Requirements: When required by law, regulation, or court order
• Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users)
• Protection of Rights: To protect our rights, property, or safety, or that of our users

Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

• Account Data: Retained while your account is active and for 30 days after account closure
• Financial Records: Retained for seven (7) years to comply with financial record-keeping requirements
• Transaction Logs: Retained for security and audit purposes for up to two (2) years
• Communication Records: Customer support communications retained for one (1) year

Your Rights and Choices

You have the following rights regarding your personal information:

• Access: Request a copy of the personal information we have about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal retention requirements)
• Data Portability: Request your data in a portable format
• Opt-out: Unsubscribe from marketing communications
• Account Closure: Delete your account and associated data

To exercise these rights, please contact us using the information provided in the "Contact Us" section below.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to improve your experience on our platform:

• Essential Cookies: Required for basic platform functionality and security
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand how you use our platform

You can control cookie settings through your browser preferences. Note that disabling certain cookies may limit platform functionality.

Third-Party Services

Our platform may integrate with third-party services for enhanced functionality. These integrations are optional and require your explicit consent:

• Cloud Storage: For data backup and synchronization
• Authentication Services: For secure login options
• Analytics Tools: For platform improvement (anonymized data only)

Each third-party integration operates under its own privacy policy. We recommend reviewing these policies before enabling integrations.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international data transfers, including:

• Standard contractual clauses for data protection
• Adequacy decisions by relevant regulatory authorities
• Certification under recognized data protection frameworks

Children's Privacy

LedgerDock is designed for business use and is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by:

• Posting the updated policy on our website
• Sending an email notification to your registered email address
• Displaying a prominent notice on our platform

Your continued use of our services after the effective date of the updated policy constitutes acceptance of the changes.