Privacy Policy

Última Actualización: January 15, 2025

Introduction

This Privacy Policy describes how Accounting System MVP ("we", "our", or "us") collects, uses, and protects your personal information when you use our accounting software application. We are committed to protecting your privacy and ensuring transparency about our data practices.

By using our service, you agree to the collection and use of information in accordance with this policy.

Data We Collect

Information You Provide

  • Account Information: When you create an account, we collect your email address, password (encrypted), and full name.
  • Business Data: You may enter financial data including invoices, bills, payments, transactions, accounts, and parties (customers/vendors).
  • Organization Data: Information about your organization, including organization name and settings.
  • Educational Data: Learning progress, preferences, and interactions with educational features (if applicable).

Information Collected Automatically

  • Usage Data: We collect information about how you interact with our application, including pages visited, features used, and time spent.
  • Device Information: Browser type, operating system, device identifiers, and IP address.
  • Log Data: Server logs including timestamps, request types, and error information.

Third-Party Services

We use Supabase for authentication and database services. Supabase may collect additional information as described in their privacy policy.

How We Use Data

We use the collected data for the following purposes:

  • Service Provision: To provide, maintain, and improve our accounting software service.
  • Authentication: To authenticate users and manage access to accounts.
  • Data Processing: To process and store your financial data, transactions, and business records.
  • Communication: To send you important updates, security notifications, and service-related communications.
  • Support: To provide customer support and respond to your inquiries.
  • Analytics: To understand how users interact with our service and improve user experience.
  • Legal Compliance: To comply with legal obligations and protect our rights.

Data Storage

Location

Your data is stored in secure databases hosted by Supabase. Data is stored in the United States, though Supabase may use servers in other regions. We ensure that data storage complies with applicable data protection regulations.

Security

We implement industry-standard security measures to protect your data:

  • Encryption: Data is encrypted in transit (HTTPS) and at rest.
  • Authentication: Secure password hashing and authentication protocols.
  • Access Controls: Row-level security (RLS) policies ensure data isolation between organizations.
  • Regular Updates: We regularly update our systems and dependencies to address security vulnerabilities.

Retention

We retain your data for as long as your account is active or as needed to provide services. You may request deletion of your account and data at any time.

Data Security

We take data security seriously and implement multiple layers of protection:

  • Encryption: All data transmitted between your device and our servers is encrypted using HTTPS/TLS.
  • Password Security: Passwords are hashed using secure algorithms and never stored in plain text.
  • Database Security: Database access is restricted and protected by authentication and authorization controls.
  • Row-Level Security: Database policies ensure that users can only access data belonging to their organization.
  • Regular Security Audits: We regularly review and update our security practices.

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Access

You have the right to access the personal data we hold about you. You can view most of your data directly in the application.

Correction

You can update your account information and business data directly in the application.

Deletion

You have the right to request deletion of your account and associated data. To request deletion, please contact us using the contact information provided below.

Portability

You can export your data from the application. Contact us if you need assistance with data export.

Objection

You have the right to object to certain processing of your data. Please contact us to exercise this right.

Withdrawal of Consent

If processing is based on consent, you have the right to withdraw consent at any time.

To exercise any of these rights, please contact us using the contact information provided in this policy.

Cookies

We use cookies and similar tracking technologies to track activity on our service and store certain information. Cookies are small files stored on your device.

Types of Cookies

  • Essential Cookies: Required for the service to function properly (authentication, session management).
  • Analytics Cookies: Help us understand how users interact with our service (optional, with consent).

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our service.

Third-Party Services

We use the following third-party services that may collect information:

Supabase

We use Supabase for authentication and database services. Supabase's privacy practices are governed by their privacy policy. We recommend reviewing Supabase's privacy policy for more information.

Other Services

We may use additional third-party services for analytics, error tracking, or other purposes. These services will be disclosed in updates to this policy.

Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share your data only in the following circumstances:

  • Service Providers: With trusted service providers who assist us in operating our service (e.g., Supabase), subject to confidentiality agreements.
  • Legal Requirements: When required by law, court order, or government regulation.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users).
  • Protection of Rights: To protect our rights, property, or safety, or that of our users.

Children's Privacy

Our service is not intended for users under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

International Data Transfers

Your data may be transferred to and stored in countries other than your country of residence. We ensure that appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Sending you an email notification (for material changes)

You are advised to review this Privacy Policy periodically for any changes. Changes are effective when posted on this page.

Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

  • Email: support@accountingmvp.com
  • Contact Page: /contact

We will respond to your inquiry within a reasonable timeframe.

Note: This Privacy Policy is a template and should be reviewed by legal counsel before production use. Some sections may need customization based on your specific data practices and legal requirements.