AccountScope — Financial Analysis Platform

Privacy Policy

Last updated: February 28, 2026

1. Introduction

AccountScope ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our Service.

Controller: AccountScope is the data controller responsible for your personal data.

2. Data We Collect

2.1 Account Information

  • Name, email address, company/firm name
  • Phone number (optional)
  • Billing information (processed securely via Stripe)

2.2 Uploaded Data

You upload bank statements and financial documents to our platform. This may include:

  • Transaction data (dates, amounts, counterparties, descriptions)
  • Account information (which we automatically redact before storage)
  • Personal identifiable information (PII) that we detect and strip before storage

2.3 Usage Data

  • Login times, IP addresses, browser type, device information
  • Actions taken in the platform (for audit trail and security)
  • Error logs and performance metrics

3. How We Use Your Data

  • Provide the Service: To process your bank statements, generate reports, and enable platform features
  • Account Management: To manage your subscription, billing, and support requests
  • Security & Compliance: To maintain audit trails, detect fraud, and meet legal obligations
  • Service Improvement: To analyze usage patterns and improve features (aggregated, anonymized data only)
  • Communication: To send service updates, security alerts, and respond to inquiries

We do not: Sell your data, use it for advertising, or share it with third parties for marketing purposes.

4. Data Security

We implement industry-standard security measures:

  • Encryption: 256-bit AES encryption at rest, TLS 1.3 in transit
  • Tenant Isolation: Your data is logically isolated from other firms using row-level security
  • Automatic Redaction: PII (account numbers, sort codes, addresses) is stripped before storage
  • Access Controls: Role-based permissions and multi-factor authentication
  • Audit Logging: All access and actions are logged with user ID, timestamp, and IP address
  • Regular Backups: Encrypted backups with point-in-time recovery

5. Data Retention

  • Active Accounts: Data is retained as long as your account is active
  • After Cancellation: You have 30 days to export your data. After 30 days, data is permanently deleted
  • Legal Requirements: We may retain certain data longer if required by law (e.g., for tax or compliance purposes)

6. Data Sharing

We only share your data with:

  • Service Providers: Hosting (Vercel, Supabase), payment processing (Stripe), email (SendGrid). All processors are GDPR-compliant.
  • Legal Obligations: If required by law, court order, or to protect our rights
  • With Your Consent: We will never share data with third parties without your explicit permission

7. Your Rights (GDPR & UK GDPR)

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Export your data in a machine-readable format
  • Restriction: Limit how we process your data
  • Objection: Object to certain types of processing
  • Withdraw Consent: Where processing is based on consent, you can withdraw it at any time

To exercise these rights, contact us at admin@accountscope.app.

8. Cookies and Tracking

We use cookies for:

  • Authentication: To keep you logged in securely
  • Preferences: To remember your settings
  • Analytics: To understand how the Service is used (anonymized)

You can disable cookies in your browser, but some features may not work properly.

9. International Data Transfers

Your data is primarily stored in the UK and EU. If data is transferred outside the EEA, we ensure adequate safeguards (e.g., Standard Contractual Clauses) are in place.

10. Children's Privacy

AccountScope is not intended for use by individuals under 18. We do not knowingly collect data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or in-app notification. The "Last updated" date at the top will reflect the latest revision.

12. Contact & Complaints

For privacy-related questions or to exercise your rights:

Email: admin@accountscope.app

Subject Line: "Privacy Request"

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.