Privacy Policy

Last updated: December 2024

Reconcilr ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our accounting application.

1. Information We Collect

We collect information you provide directly to us, including:

• Account Information: Name, email address, and password when you create an account
• Business Information: Business name, tax registration numbers, and address for tax compliance purposes
• Financial Data: Invoices, expenses, receipts, and transaction data you upload or enter
• Bank Data: If you connect your bank account via Open Banking, we access transaction history and account balances with your explicit consent

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our accounting services
• Process and reconcile your financial transactions
• Generate tax reports and assist with VAT/PAYE compliance
• Send you service-related notifications
• Respond to your requests and support inquiries

3. Open Banking and Third-Party Services

When you connect your bank account through Open Banking:

• We use PSD2-compliant aggregation services to securely access your bank data
• We only access data you explicitly authorize (account balances, transaction history)
• We do not store your bank login credentials
• You can disconnect your bank account at any time

4. Data Storage and Security

Your data is stored securely using industry-standard encryption:

• All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
• We use Supabase (hosted in EU) for database and authentication
• Access to production systems is restricted and logged
• We perform regular security assessments

5. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Financial records are retained for the period required by Cyprus tax law (minimum 6 years). You may request deletion of your account and associated data at any time, subject to legal retention requirements.

6. Your Rights (GDPR)

As a user in the European Union, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data ("right to be forgotten")
• Portability: Receive your data in a machine-readable format
• Object: Object to processing of your data
• Withdraw Consent: Withdraw consent for data processing at any time

To exercise these rights, contact us at privacy@reconcilr.app.

7. Data Sharing

We do not sell your personal data. We may share data with:

• Service Providers: Third parties that help us operate our service (hosting, payment processing)
• Legal Requirements: When required by law or to protect our rights
• With Your Consent: When you explicitly authorize sharing (e.g., with your accountant)

8. Cookies

We use essential cookies for authentication and session management. We do not use tracking or advertising cookies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Email: privacy@reconcilr.app
Reconcilr
Cyprus