Privacy Policy

1. Introduction

Devi AI LLC ("we", "us", or "our"), the developer of Bookeeping.ai, is committed to protecting the privacy of our users ("you" or "your"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered bookkeeping service.

Please note that this Privacy Policy applies specifically to Bookeeping.ai. Devi AI LLC may produce other products or services that are governed by separate privacy policies.

Beta Status Disclaimer

Please note that Bookeeping.ai is currently in beta. While we strive for accuracy and reliability, we are not responsible for any errors that may occur during this phase. Users should use the service with this understanding.

2. Information We Collect

Information You Provide:

• Account information (name, email, business details)
• Financial data (transactions, invoices, receipts)
• Communication data (emails, support inquiries)

Information Automatically Collected:

• Usage data (features used, interaction with the service)
• Device information (IP address, browser type, device type)
• Cookies and similar tracking technologies for authentication and personalized services.

3. How We Use Your Information

We use your information for purposes including:

• Providing and maintaining our service
• Improving and personalizing user experience
• Processing transactions and sending related information
• Responding to your requests and inquiries
• Sending administrative and marketing communications
• Detecting and preventing fraudulent or illegal activities

4. Data Storage and Security

4.1. Data Storage

We store user data in secure SOC2 Certified MongoDB servers, with data residency options:

• United States – Data stored in the US for US-based users by default unless choosen else
• European Union – Data stored in Belgium for the EU users by default unless choosen else
• Canada – Data stored in Canada for Canadians by default unless choosen else
• Global users – Can select any location.

User Choice: Regardless of region, users may select their preferred data residency (US, Belgium, or Canada) when they are signing up for our services. Enterprise customers may request custom storage locations subject to availability.

4.2. Data Security:

We employ robust 5 advanced security measures to protect your data. For full details of our security practices, please visit https://bookeeping.ai/en/security.

4.3. Data Breach Notification:

In the event of a data breach that affects personal data, we will notify affected users and relevant authorities within 72 hours, as required by applicable laws.

5. Data Sharing and Disclosure

We may share your information in the following situations:

• With your consent
• To comply with legal obligations
• To protect our rights, privacy, safety, or property
• In connection with a business transfer or acquisition
• With service providers who assist in our operations (subject to confidentiality agreements)

We do not share user data with third-party services without explicit consent, except where necessary to provide core functionality (e.g., bank integrations via Plaid).

6. Your Data Protection Rights

Depending on your location, you may have rights regarding your personal data, including:

• Access to your personal data
• Correction of inaccurate or incomplete data
• Erasure of your personal data
• Restriction of processing of your personal data
• Data portability (ability to obtain a machine-readable copy of your data)
• Objection to processing of your personal data
• Withdrawal of consent (where processing is based on consent)

To exercise these rights, please contact us using the information provided at the end of this policy.

7. Data Retention and Deletion

We retain personal data as follows:

• Account Activity
  Retained as long as the account remains active.

• Financial Data (transactions, receipts, invoices)
  Users may delete their financial data at any time from Settings → Company Settings. If no deletion request is made and the account becomes inactive, we may retain financial data for up to 7 years to comply with financial record-keeping laws and to allow users to return and continue bookkeeping from where they left off.

• Documents, Files, and Emails (files you upload, drive storage, or emails sent through our system)
  Retained until you choose to delete them. Users can delete stored content at any time from Settings → Company Settings.

• Deletion Requests
  When you delete your data or request deletion, the data is placed in a 7-day recovery window before being permanently erased. After this period, the data cannot be recovered.

8. AI Usage and Automated Decision-Making

Our service utilizes AI for various tasks. While we continually work to improve our AI systems, we cannot guarantee 100% accuracy. Users should use AI-generated results with caution and verify important information.

If an automated decision made by our AI affects financial reporting or bookkeeping results:

• Users have the right to request human intervention and review.
• AI-generated outputs are not legally binding and should not be treated as official accounting or legal advice.

9. Third-Party Services

Our service uses third-party APIs and services to offer features and functionality. We encourage you to read the privacy policies of any third-party services you use.

MongoDB

• We use SOC 2 Certified MongoDB Atlas for secure data storage.
• Your data is stored in the region corresponding to your selected data residency option during signup (US, Belgium, or Canada).
• Users outside of the USA, Canada and the EU are default to Belgium data storage but may choose an alternative during signup
• MongoDB implements various security measures, including encryption at rest and in transit.
• See MongoDB Privacy Policy.

Plaid API for Bank Connections

• We use SOC2 Certified Plaid API to enable secure bank account connections.
• Plaid is only available for users in the United States and Canada.
• We obtain transaction data through Plaid with read-only access only.
• We cannot make changes to your bank accounts or initiate transactions.
• Any issues with transactions should be addressed directly with your bank.
• See Plaid Privacy Policy.

AI-Powered Text Analysis

• We use OpenAI and Claude AI models to analyze text data.
• No user-identifying information is sent to these services.
• The data sent for analysis is limited to bookkeeping-related content.
• We do not store any user data with OpenAI.
• For more information, refer to OpenAI’s and Claude’s privacy policies.
• The files you upload are sent to process the content.

Google OCR for Receipt Processing

• We utilize Google’s Optical Character Recognition (OCR) technology to process receipt data.
• Receipt, invoices images with information are sent to Google OCR for processing temporarily.
• Extracted text is used solely for bookkeeping purposes.
• For more information, refer to Google’s privacy policy.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies for authentication, personalization, and analytics.

Users can manage or disable cookies in their browser settings. Certain features may not function properly if cookies are disabled.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

• Devi AI LLC
• 1309 Coffeen Avenue, STE 1200, Sheridan, WY 82801
• Email: [email protected]
• Live Chat: Available 24/7 on our (Contact Page)[https://bookeeping.ai/en/contact]

By using Bookeeping.ai, you confirm that you have read and understood this Privacy Policy and agree to its terms.