Plain English summary: We collect only what we need to run our business and serve you. We do not sell your personal information. We do not share it with third parties except as required to deliver our services or comply with law. Your financial data belongs to you.
1. Who we are
Finsightic ("Finsightic," "we," "us," or "our") provides outsourced accounting, bookkeeping, controller, and fractional CFO services to businesses. Our registered address is in Buffalo, NY, and we operate at finsightic.com.
Finsightic is not a licensed public accounting firm and does not provide audit, attest, or licensed accounting services. Services we provide are back-office consulting and financial support services.
This Privacy Policy applies to information collected through our website (finsightic.com), any tools or resources we make available, and any communications between you and Finsightic. It does not govern information you share with us under a signed client services agreement, which is subject to the confidentiality terms of that agreement.
2. What information we collect
2.1 Information you give us directly
When you contact us, submit a form, use our tools, or engage our services, we may collect:
- Name, business name, job title
- Email address and phone number
- Company information (industry, revenue stage, software used)
- Messages and notes you share with us
- Information entered into our free calculators and tools (processed locally in your browser - we only receive it if you explicitly request an emailed report)
2.2 Information collected automatically
When you visit our website, we and our service providers may automatically collect:
- IP address and approximate geographic location (country/state level)
- Browser type, operating system, device type
- Pages visited, time spent, referral source
- Form interactions and button clicks (for improving user experience)
2.3 Financial and business information (clients only)
For clients who engage our services, we access financial data - including bank statements, transaction records, payroll data, and accounting system data - solely for the purpose of delivering the agreed services. This data is governed by your client services agreement and treated as strictly confidential.
3. How we use your information
We use the information we collect to:
- Respond to inquiries - answer questions submitted through our contact form or email
- Deliver services - perform bookkeeping, accounting, controller, and CFO services for clients
- Send requested reports - email calculator results when you explicitly request them via our tools page
- Manage our CRM - track leads and follow up on service inquiries through our practice management system
- Improve our website - analyze usage patterns to enhance content and functionality
- Communicate service updates - notify clients of changes to scope, pricing, or delivery
- Comply with legal obligations - retain records as required by applicable law
- Protect our business - detect and prevent fraud, abuse, or security incidents
We do not use your personal information for targeted advertising. We do not sell your information to data brokers. We do not share your financial data with any party outside of what is required to deliver your services.
4. How we share your information
We do not sell, rent, or trade your personal information. We share it only in the following limited circumstances:
4.1 Service providers
We use trusted third-party tools to operate our business. These include:
- CRM and practice management - Heffl (lead and client tracking)
- Accounting software - QuickBooks Online, Xero (as applicable per engagement)
- Communication - Google Workspace (email, documents)
- Payment processing - Stripe (for tool purchases, if applicable)
- Website hosting - Hostinger
Each of these providers processes your data only as needed to perform their service and is bound by data protection agreements. We do not authorize them to use your data for their own marketing purposes.
4.2 Professional advisors
We may share information with attorneys, accountants, or insurance providers under confidentiality obligations when required to operate our business.
4.3 Legal requirements
We may disclose your information when required by law, court order, subpoena, or regulatory authority, or when we believe in good faith that disclosure is necessary to protect the safety, rights, or property of Finsightic, our clients, or others.
4.4 Business transfers
If Finsightic is acquired, merged with another company, or transfers substantially all of its assets, your information may be transferred as part of that transaction. We will notify you of any such change and any material differences in how your information is handled.
4.5 With your consent
We will share your information with third parties in any other circumstances only with your explicit prior consent.
5. Data retention
We retain your information for as long as is necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, and reporting obligations.
- Prospect/lead data - retained for up to 3 years from last contact, or until you request deletion
- Client engagement data - retained for a minimum of 7 years from engagement close, consistent with standard accounting practice and IRS record-keeping guidance
- Financial records accessed during engagements - returned to client or destroyed upon engagement close, unless retention is required by law
- Website analytics data - retained for up to 26 months
When data is no longer needed, we delete or anonymize it securely.
6. Data security
We take the security of your information seriously and implement appropriate technical and organizational measures, including:
- HTTPS encryption on all pages of our website
- Access controls limiting financial data to team members directly involved in your engagement
- Use of password-managed, role-based access on all cloud systems
- Secure, cloud-based accounting platforms with their own SOC 2 or equivalent certifications
- Regular review of third-party service providers' security practices
Important: No method of transmission over the internet or electronic storage is completely secure. While we use commercially reasonable measures to protect your information, we cannot guarantee absolute security. If you believe your information has been compromised, please contact us immediately at hello@finsightic.com.
7. Your rights
Depending on your location, you may have the following rights with respect to your personal information:
- Access - request a copy of the personal information we hold about you
- Correction - request that we correct inaccurate or incomplete information
- Deletion - request that we delete your personal information, subject to legal retention requirements
- Portability - request your data in a structured, machine-readable format
- Objection - object to our processing of your data in certain circumstances
- Withdrawal of consent - where processing is based on consent, withdraw that consent at any time
To exercise any of these rights, contact us at hello@finsightic.com. We will respond within 30 days. We may need to verify your identity before processing your request.
We will not discriminate against you for exercising your privacy rights.
8. Cookies and tracking
Our website uses minimal tracking. Specifically:
- Strictly necessary: Session data required for the website to function correctly
- Analytics: We may use anonymized analytics tools to understand how visitors use our site. These do not track you across other websites
- No advertising cookies: We do not use advertising or retargeting cookies. We do not allow third-party advertisers to place tracking technologies on our site
You can control cookies through your browser settings. Disabling cookies may affect some website functionality but will not prevent you from accessing our content.
9. Third-party services and links
Our website may contain links to third-party websites and embeds from third-party services (such as our client portal at apps.finsightic.com). This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party services you access through links on our site.
Our embedded contact forms are powered by Heffl. Submissions through those forms are subject to Heffl's privacy policy in addition to ours.
10. Children's privacy
Our website and services are directed to businesses and business professionals. We do not knowingly collect personal information from anyone under the age of 18. If you believe we have inadvertently collected information from a minor, please contact us at hello@finsightic.com and we will promptly delete it.
11. California residents (CCPA / CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
- Right to know - the categories and specific pieces of personal information we have collected about you
- Right to delete - request deletion of personal information we have collected, subject to exceptions
- Right to correct - request correction of inaccurate personal information
- Right to opt out of sale or sharing - we do not sell or share personal information for cross-context behavioral advertising
- Right to limit use of sensitive personal information - we do not use sensitive personal information beyond what is necessary to provide our services
- Right to non-discrimination - we will not discriminate against you for exercising your CCPA rights
To submit a California privacy rights request, contact us at hello@finsightic.com or call 929-251-6788. We will respond within 45 days as required by law.
Shine the Light: California Civil Code Section 1798.83 permits California residents to request information about personal information disclosed to third parties for direct marketing purposes. We do not disclose personal information to third parties for their direct marketing purposes.
12. Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page. For significant changes, we may also notify existing clients directly by email.
Your continued use of our website or services after any update constitutes your acceptance of the revised policy. We encourage you to review this page periodically.