We keep as little of your data as the work requires, we don’t copy your books when we don’t have to, and we never train AI on it, sell it, or use it for advertising. This is the plain-English version of how we treat your information; the binding legal version lives in our Privacy Policy.
Five commitments we hold to.
Your data belongs to you. You retain all rights to your financial data. We hold a limited license to process it solely to provide and improve your service — nothing more. When our engagement ends, we return or delete the work product we hold.
We keep only what the work requires. Data minimization is a design choice, not an afterthought. Wherever possible we read your live financials on demand from your system of record — your accounting platform — rather than copying them into our own database. What we do store is the work product: the projections, forecasts, categorizations, and analysis we build for you. Your raw transaction ledger stays where it lives.
We never train AI on your data, sell it, or use it for ads. Full stop. When we use AI to speed up our work, it operates on the specific task in front of it, never on your financial data as training material. (For example, an optional profile-lookup feature sends only a company’s public name and website to research public details for an analyst to review — never any financial data.)
We work with a short, named list of trusted providers. The infrastructure behind our Hub runs on a small set of established, security-vetted providers, each under a written agreement. You’ll find them named in our Privacy Policy, and we don’t share your data beyond that list without your explicit, documented consent.
Everything is encrypted and access-controlled. Data is encrypted in transit and at rest. Access is role-based — team members see only what their role requires — and credentials live in secured vaults, never in spreadsheets or messages.
When we need your permission.
Delivering your own reports and analysis is covered by our service agreement. Anything beyond that requires a documented yes from you — in writing, not a verbal okay:
- Using your data, even anonymized, in a demo or marketing material
- Using your setup as a reference or template for another client
- Any secondary use beyond delivering your service
- Sharing data with anyone outside our named list of providers
“Anonymized” doesn’t lower this bar. If it isn’t written down, we don’t treat it as consent.
Straight talk on incidents.
On a confirmed security incident affecting your data, we notify you within 72 hours of confirming it — with what we know at the time, and updates as we learn more.
What this looks like in the Hub.
Our client Hub is the practical expression of these principles. It brings data from your accounting, time-tracking, project-management, and CRM systems into one secure place — a single, coherent view of your business instead of a scatter of disconnected logins. Because we read most of that data live rather than warehousing it, you get better visibility without us becoming one more copy of your books to worry about.
Trust is the foundation.
Numbers only matter if you can trust the people holding them. These commitments are how we earn that — and the formal, binding terms are always available in our Privacy Policy.
