1. Scope and responsible organization
This Privacy Policy applies to the Global CFO client portal, related communications, and integrations we make available through the portal. Global CFO Accounting Consulting LLC is responsible for the information described in this policy. A separate engagement letter or service agreement may contain additional privacy and confidentiality terms.
2. Information we collect
Depending on how you use the portal, we may collect:
- account and profile details, including name, email address, company, and role;
- financial, accounting, tax, payroll, billing, transaction, and business information you or an authorized advisor supplies;
- documents, messages, tasks, appointments, reports, survey feedback, and support communications;
- integration data from services you authorize, including QuickBooks Online company information, customers, vendors, invoices, and financial reports;
- technical and usage information such as browser type, device information, IP address, authentication events, and portal activity.
3. QuickBooks Online data
When you connect QuickBooks Online, Intuit asks you to authorize access to a specific company. We receive an OAuth access token and refresh token; we do not receive your QuickBooks password. Tokens are encrypted at rest and are used server-side to retrieve the accounting information needed to provide portal financial statements and reports.
You may disconnect QuickBooks from the portal. Disconnecting revokes the Intuit token and removes the portal's stored QuickBooks connection, synchronized QuickBooks snapshots, and automatically generated QuickBooks reports. Records independently supplied or retained under a separate professional-services obligation may be handled under that obligation.
4. Zoom meetings
When you schedule or join a Zoom video appointment through the portal, we use Zoom Video Communications, Inc. to create and provide the meeting. We send Zoom the configured host identifier, a meeting topic derived from the appointment title, scheduled date and time, duration, timezone, and meeting settings. When an authorized user joins, the user's display name and email address, meeting number and password, and short-lived Meeting SDK authorization are sent to Zoom. Authorized staff hosts also use a short-lived host authorization token.
We store the Zoom meeting number, meeting password, host identifier, and creation timestamp with the appointment in our access-controlled database. The portal disables automatic Zoom recording and does not collect or store meeting audio, video, transcripts, or in-meeting chat. Real-time meeting communications are handled directly by Zoom and are subject to Zoom's privacy practices. Short-lived Zoom access tokens, Meeting SDK signatures, and host authorization tokens are not retained by our application.
Zoom meeting metadata is retained with the appointment record for the periods described in this policy and may remain after a meeting is ended or cancelled. You may contact us using the details below to request deletion of eligible information, subject to legal and professional recordkeeping obligations.
5. How we use information
We use information to:
- provide accounting, bookkeeping, tax, advisory, and financial-reporting services;
- operate, secure, authenticate, maintain, and improve the portal;
- prepare reports, track work, communicate with you, and respond to requests;
- detect fraud, misuse, security incidents, and technical problems;
- comply with law, professional obligations, and enforceable legal requests.
6. AI-assisted features
If you choose to use an AI-assisted portal feature, relevant information may be sent to an AI service provider to generate the requested response or draft. AI output can be incomplete or inaccurate and must be reviewed by an appropriate professional before it is relied upon. Do not submit information to an AI feature unless you are authorized to do so.
7. How information is shared
We may share information with personnel and professional advisors who need it to serve your account; infrastructure, authentication, storage, communications, analytics, AI, and other vendors acting for us; Intuit when you connect or disconnect QuickBooks; and government or legal authorities when required by law. We may also disclose information in connection with a business reorganization or with your direction or consent.
We do not sell personal information for money.
8. Retention and deletion
We retain information while needed to provide services, maintain business and professional records, resolve disputes, secure the portal, and meet legal, tax, accounting, and regulatory obligations. Retention periods vary by record type and engagement. You may ask us to close your portal account or delete eligible information by contacting us. Some records may be retained where law or professional obligations require it.
9. Security
We use administrative, technical, and organizational safeguards intended to protect information, including access controls, encrypted connections, and encryption of stored integration credentials. No method of transmission or storage is completely secure, so we cannot guarantee absolute security. You are responsible for protecting your login credentials and promptly reporting suspected unauthorized access.
10. Your choices and rights
You may update certain account information in the portal, disconnect supported integrations, and contact us to request access, correction, or deletion. Applicable law may provide additional rights and exceptions. We may need to verify your identity and authority before completing a request.
11. Cookies, children, and external services
The portal uses essential browser storage and similar technologies for authentication, security, and application functionality. The portal is intended for business users and is not directed to children under 13. Links and integrations operated by other companies are governed by their own terms and privacy policies.
12. Changes and contact
We may update this policy as our services or legal obligations change. The updated version will be posted here with a revised effective date. Questions and privacy requests may be sent to info@globalcfoaccountingconsulting.com or mailed to 25415 Southfield Rd, Southfield, MI 48075.
