1. Introduction / Scope

qbsimplify Inc. ("qbsimplify," "we," "us," or "our") is a Delaware-incorporated company operating https://qbsimplify.com (the "Site") and providing bookkeeping, QuickBooks setup, MSP and consulting services (the "Services"). This Privacy Policy describes how we collect, use, disclose, and protect personal information when you visit our Site or use our Services. It also explains rights available to residents of specific jurisdictions (California, EU/EEA) and how to exercise them. By using the Site or Services you agree to the terms of this Privacy Policy.

2. Business Disclaimer / Third-Party References

We may reference or link to third-party products and services (for example: QuickBooks, Intuit, Twilio, Google Analytics, payment processors). These references are for identification and informational purposes only. qbsimplify Inc. is not affiliated with, endorsed by, or sponsored by Intuit QuickBooks, Intuit, or other third parties unless explicitly stated. If you submit information directly to a third-party site (for example, filling a form hosted by QuickBooks or a payment gateway), that submission is governed by that third party’s privacy policy. If we share data with any third party as a processor, we will use a written Data Processing Agreement (DPA) where required by law.

3. Information We Collect

We collect personal and non-personal information that you provide and that we automatically collect when you interact with our Site or Services. Examples include:

• Personal Information: name, email address, phone number, billing/shipping address, company name, job title, payment details (tokenized by payment processor), IP address, device identifiers.
• Sensitive categories: We do not intentionally collect special-category data (e.g., health, racial information) except if you voluntarily submit it for a support reason. If we ever need such data, we will obtain explicit consent as required by law.
• Automatically collected / technical data: cookies, usage logs, browser and device information, referring URLs, and analytics data.
• Third-party sources: We may receive data from third-party providers (for example, analytics providers, lead providers). We document categories and sources in our data inventory and update our notices accordingly.

4. Categories of Personal Information Collected (CCPA framing)

In the last 12 months we may have collected categories including, but not limited to:

• Identifiers (name, email, phone, postal address).
• Payment information and transactional data (payment provider tokens, invoice history).
• Internet/network activity (IP address, pages visited, cookies).
• Professional information (company name, job title).
• Inferences and profiling for marketing and service personalization.

5. How We Use Personal Information (Purposes)

We use personal information to:

• Provide, operate, and improve the Services and to fulfill contractual obligations (onboarding, billing, support).
• Process payments and send invoices.
• Communicate with you about service-related matters, news, or updates (with consent where required).
• Improve the Site, run analytics and advertising, and prevent fraud or abuse.
• Comply with legal obligations (tax, lawful requests from authorities).
• Enforce our Terms of Service, and protect the rights, property, or safety of qbsimplify and others.

6. Legal Bases for Processing (GDPR)

For EU/EEA data subjects, our legal bases include:

• Performance of a contract: where processing is necessary to deliver Services or process payments.
• Legal compliance: to comply with legal obligations.
• Legitimate interests: for fraud prevention, product improvement, and internal business operations (we balance interests against individual rights).
• Consent: where we rely on consent (e.g., marketing cookies). You may withdraw consent at any time.

7. Data Sharing and Third-Party Processors

We do not sell personal data for monetary gain. We share data with service providers who perform services on our behalf (processors), including but not limited to: payment processors, cloud hosting, analytics, email/marketing platforms, telephony providers (e.g., Twilio), and professional advisors. Where required, we maintain contracts (DPAs) that require processors to protect personal data and only use it per our instructions. If we are required to disclose information by law, we will do so only as required.

8. Cookies, Tracking & Advertising

We use cookies, web beacons, and similar technologies to operate the Site and for analytics and advertising purposes. You can manage cookie preferences via the cookie consent banner or your browser settings; however, disabling cookies may limit functionality. For data subject consent management and platform requirements we follow applicable guidelines.

9. International Transfers & Storage

If you are located outside the United States, your personal data may be transferred to, processed, and stored in the U.S. or other countries. We implement appropriate safeguards (such as standard contractual clauses, where applicable) to protect international transfers and will comply with applicable transfer rules.

10. Data Retention

We retain personal data only as long as necessary to provide Services, comply with obligations (tax/accounting), resolve disputes, and meet legal requirements. Retention periods differ by data type—for example: transactional records for billing are retained for the period required by tax laws (typically 7 years for U.S. tax recordkeeping), while marketing consent metadata is retained until consent is withdrawn. When data is no longer needed we securely delete or anonymize it.

11. Security Practices

We use administrative, technical, and physical safeguards (access controls, encryption of backups, secure providers) to protect data. While we use industry-standard measures, no system is completely secure; in the event of a security incident we will respond in accordance with applicable law, notify affected individuals where required, and cooperate with regulators.

12. Children’s Privacy

Our Site and Services are not directed to children under 13. We do not knowingly collect personal information from children under 13. If we discover we have collected such data without parental consent, we will promptly delete it.

13. Links & Third-Party Sites

Our Site may contain links to third-party websites. This Privacy Policy does not apply to those third parties; please review their privacy notices before sharing data with them. We are not responsible for their practices or content.

14. California Residents — CCPA / CPRA Notice & Rights (short form)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), where applicable:

• Right to know: request categories of personal information we have collected, disclosed, or sold in the last 12 months and the purposes for which we used it.
• Right to delete: request deletion of personal information we collected from you (with exceptions).
• Right to opt-out: opt out of sale or sharing of personal information. If we ever sell or share data we will provide a clear "Do Not Sell or Share My Personal Information" link.
• Right to non-discrimination: for exercising privacy rights.
• Right to correct & limit: request correction and to limit use of sensitive personal information.

How to submit a request: Email: privacy@qbsimplify.com or Phone: (850) 842-6767. We will verify requests as required by law and respond within the statutory timeframe.

15. EU / EEA Residents — GDPR Rights & Contact

If you are in the EU/EEA you have the following rights under the GDPR (subject to legal conditions): access, rectification, deletion (right to be forgotten), restriction of processing, data portability, and objection. You also have the right to withdraw consent where consent is the lawful basis and the right to lodge a complaint with a supervisory authority. To exercise GDPR rights, contact: privacy@qbsimplify.com. We may require reasonable verification before fulfilling a request.

16. Marketing Communications & Consent

We will only send marketing emails if you consented or where we have a legitimate interest and you have not opted out. You may opt out of marketing emails by using the unsubscribe link in emails or by contacting privacy@qbsimplify.com.

17. Sales, Sharing & “Do Not Sell”

We do not knowingly sell personal information for profit. If our practices change and we engage in "sale" or "sharing" as defined under CCPA/CPRA, we will provide an easy, conspicuous mechanism to opt out (for example, a "Do Not Sell or Share My Personal Information" link on the Site).

18. Law Enforcement, Legal Requests, and Mergers

We may disclose personal information to comply with legal obligations, protect our rights, or in connection with a merger, acquisition, or sale of assets (we will notify users where required by law).

19. International, Sectoral & Emerging Laws

Privacy law is evolving worldwide. We monitor legal developments (GDPR, CCPA/CPRA, ePrivacy, emerging Indian data law updates) and update this policy as required. Combining GDPR and CCPA disclosures into one policy is common and permitted so long as the policy contains the specific, required disclosures for each law — but many companies keep a separate California notice and an EU/GDPR notice for clarity and easier compliance.

20. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated policy on this page and update the "Last updated" date. When changes are material, we will provide a more prominent notice (e.g., email to users).

21. Contact Us / How to Exercise Rights

Questions, concerns, or requests to exercise privacy rights may be sent to:
Email: privacy@qbsimplify.com
Phone: (850) 842-6767
Address: 651 N Broad St, Suite 201, Middletown, DE 19709

22. Disclaimers & Governing Law

This policy is for informational purposes and does not constitute legal advice. The policy and qbsimplify’s privacy practices are governed by the laws of the State of Delaware, U.S.A. Any disputes will be subject to the exclusive jurisdiction of Delaware courts. Consult local counsel for jurisdictional questions and binding legal advice.