Skip to main content
FinAcct360®

Privacy Policy

Last Updated: March 12, 2026

FinAcct360, Inc. ("we," "us," "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our professional accounting services and platform.

By using our services, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our services.

1. Information We Collect

1.1 Information You Provide

We collect information you provide directly to us, including:

  • Account Information: Name, email address, phone number, business name, business address
  • Business Information: Number of locations, POS system, accounting software, restaurant type and details
  • Financial Information: Bank account data, credit card information (processed securely via Stripe), transaction history
  • Accounting Data: Sales data, expense records, payroll information, vendor details, employee information
  • Communications: Messages sent through our chat feature, emails, support tickets, phone call records

1.2 Information Collected Automatically

When you access our platform, we automatically collect:

  • Device Information: IP address, browser type and version, operating system, device type and identifiers
  • Usage Data: Pages viewed, time spent on pages, features used, click patterns, navigation paths
  • Log Data: Access times, error logs, referring/exit pages
  • Cookies and Similar Technologies: Session cookies, preference cookies, analytics cookies (see Section 5)

1.3 Information from Third Parties

We receive information when you connect third-party services:

  • Accounting Software: QuickBooks Online, Xero, Wave (financial transactions, account balances, chart of accounts)
  • Banks: Transaction data, account balances (via secure bank feeds through Plaid or similar services)
  • POS Systems: Toast, Clover, Square, and others (sales data, product information, customer counts)
  • Payment Processors: Stripe provides payment and billing information necessary to process your subscription

2. How We Use Your Information

We use your information for the following purposes:

Provide Services

  • Process and reconcile your financial transactions
  • Generate financial reports, statements, and KPI dashboards
  • Provide accounting advice, insights, and recommendations
  • Manage your subscription and process billing

Communicate With You

  • Send service notifications, updates, and alerts
  • Respond to your questions, requests, and support inquiries
  • Send weekly financial summaries, insights, and CFO commentary
  • Notify you of important account or service changes

Improve Our Services

  • Analyze usage patterns to enhance features and user experience
  • Debug technical issues and improve platform performance
  • Develop new features, services, and capabilities
  • Train our team and improve service accuracy and quality

Security & Compliance

  • Prevent fraud, unauthorized access, and other malicious activities
  • Comply with legal and regulatory requirements
  • Enforce our Service Agreement and other policies
  • Monitor for suspicious activity and protect our users

3. How We Share Your Information

We share your information only in the following limited circumstances:

3.1 Service Providers

We share data with trusted third-party service providers who help us operate our business:

  • Stripe: Payment processing (PCI DSS Level 1 compliant)
  • Vercel/AWS: Cloud hosting, computing, and data storage
  • Supabase: Database services and authentication
  • Resend: Transactional emails and notifications
  • Sentry: Error monitoring and application performance
  • Google: Analytics and reCAPTCHA for form protection

All service providers are contractually obligated to protect your data and use it only for the services they provide to us.

3.2 Legal Requirements

We may disclose your information if required or permitted by law, including:

  • In response to subpoenas, court orders, or valid legal process
  • To comply with tax, regulatory, or governmental reporting requirements
  • To protect our rights, property, safety, or the rights, property, or safety of others
  • To prevent fraud, illegal activity, or violations of our terms
  • In connection with investigations of suspected or actual illegal activity

3.3 Business Transfers

If FinAcct360, Inc. is involved in a merger, acquisition, sale of assets, financing, reorganization, bankruptcy, or similar transaction, your information may be transferred or disclosed as part of that transaction. We will notify you via email and/or a prominent notice on our website before your information is transferred and becomes subject to a different privacy policy.

3.4 With Your Consent

We may share your information for any other purpose disclosed to you at the time of collection and with your explicit consent.

WE NEVER:

  • Sell your personal or financial information to third parties
  • Share your data with advertisers or marketing companies
  • Use your data for unrelated marketing purposes
  • Provide your information to competitors
  • Share your data without a legitimate business purpose

4. Data Security

We implement industry-standard security measures to protect your information:

🔒 Encryption

  • • AES-256 encryption for data at rest
  • • TLS 1.3 encryption for all data in transit
  • • Encrypted database backups

🔐 Access Control

  • • Role-based access controls with four distinct permission levels
  • • Secure authentication via industry-standard OAuth 2.0
  • • No storage of third-party passwords (QuickBooks, Xero, banks)

🛡️ Infrastructure

  • • Enterprise cloud hosting with automatic security updates (Vercel, Supabase)
  • • DDoS protection included with hosting infrastructure
  • • Secure payment processing via Stripe (PCI DSS Level 1 compliant)

👁️ Monitoring

  • • Application error monitoring and alerting
  • • Database query logging
  • • Secure access to third-party integrations via official APIs

While we implement strong security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data but we are committed to protecting it using industry best practices.

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your use of our platform:

  • Essential Cookies: Required for basic platform functionality (authentication, security, preferences)
  • Analytics Cookies: Help us understand how users interact with our platform (Google Analytics)
  • Preference Cookies: Remember your settings and preferences

Google reCAPTCHA: We use Google reCAPTCHA on certain forms to protect against spam and abuse. Use of reCAPTCHA is governed by the Google Privacy Policy and Terms of Service.

Most browsers allow you to refuse cookies or alert you when cookies are being sent. Note that disabling cookies may affect the functionality of our platform. You can manage your cookie preferences through your browser settings.

6. Your Rights & Choices

6.1 Access & Correction

You can access and update your account information at any time through your dashboard settings. For data access requests or to request a copy of your personal data, contact us at hello@finacct360.io.

6.2 Data Portability

You have the right to export your financial data at any time. Reports and data can be downloaded in PDF, Excel, or CSV formats directly from your dashboard.

6.3 Account Deletion

You can request account deletion by contacting hello@finacct360.io. Upon deletion:

  • Your data will be retained for 90 days for potential account reactivation
  • After 90 days, all personal data will be permanently deleted from our active systems
  • Some data may be retained longer if required by law (e.g., tax records for 7 years per IRS requirements)
  • Backup copies may persist for up to 30 additional days before being overwritten

6.4 Marketing Communications

You can opt out of marketing emails by clicking "unsubscribe" in any marketing email or updating your preferences in your dashboard. Note: You cannot opt out of essential service-related communications (invoices, security alerts, service updates, etc.).

7. Data Retention

We retain your information according to the following schedule:

  • Active Accounts: Data is retained while your account remains active
  • Cancelled Accounts: 90-day retention period for potential reactivation, then permanent deletion
  • Financial Records: Up to 7 years as required by IRS record retention requirements
  • Backups: Retained for 30 days, then automatically overwritten
  • Anonymized Analytics: May be retained indefinitely in aggregate, non-identifiable form

8. Children's Privacy

Our services are intended for business use and are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If you believe we have collected information from a child under 18, please contact us immediately at hello@finacct360.io and we will take steps to delete such information.

9. International Data Transfers

Our services are provided from the United States. If you access our services from outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States, where our servers and central database are located.

By using our services, you consent to the transfer of your information to the United States and acknowledge that U.S. data protection laws may differ from those of your country of residence.

10. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: Request information about the categories and specific pieces of personal information we have collected, the sources, the purposes, and the categories of third parties with whom we share it
  • Right to Delete: Request deletion of your personal information, subject to certain exceptions
  • Right to Correct: Request correction of inaccurate personal information
  • Right to Opt-Out: Opt out of the sale or sharing of your personal information (we do not sell personal information)
  • Right to Limit: Limit the use and disclosure of sensitive personal information
  • Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights

To exercise these rights, please contact us at hello@finacct360.io. We will respond to your request within 45 days as required by law.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes:

  • We will notify you by email at the address associated with your account
  • We will post a prominent notice in your dashboard
  • We will update the "Last Updated" date at the top of this policy
  • For significant changes, we will provide at least 30 days' notice before the changes take effect

Your continued use of our services after the effective date of any changes constitutes your acceptance of the updated Privacy Policy.

Contact Us

If you have questions about this Privacy Policy, our data practices, or wish to exercise your privacy rights, please contact us:

Privacy Team
FinAcct360, Inc.
1341 W Mockingbird Lane, Ste 600
Dallas, Texas 75247

Email: hello@finacct360.io
General Support: hello@finacct360.io
Phone: (945) 216-9711

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Last Updated: March 12, 2026

Effective Date: March 12, 2026

© 2026 FinAcct360, Inc. All rights reserved.

A Delaware Corporation

← Back to homepage