Privacy Policy

mybalancingIQ — How We Collect, Use and Protect Your Data

Last updated: April 2026

IMPORTANT: This document contains legally material terms including limitations on liability, AI accuracy disclaimers, and your rights as a user. Please read carefully.

1. Introduction

mybalancingIQ ("we", "us", "our") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, share, and protect information when you use our website, platform, and services ("Service").

By using the Service, you agree to the collection and use of information as described in this Policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

  • Account registration details: name, email address, password, company name
  • Business profile information you choose to enter
  • Communications with us: support requests, feedback, contact form submissions

2.2 Financial Data from Integrations

When you connect accounting software (such as QuickBooks or Xero), we access only the financial data required to provide the Service, including:

  • Transaction records, invoices, expenses, and account balances
  • Profit and loss data, balance sheet items, and cash flow information
  • Customer and supplier summary information (where relevant to analytics)

We access this data in read-only mode. We do not modify your accounting records.

2.3 Usage Data

  • Log data: IP address, browser type, device type, pages visited, time and date of access
  • Feature usage data: which tools and dashboards you use
  • Performance and error data for debugging and improvement

2.4 AI Interaction Data

Important — AI Conversations

Queries and responses within Invara (our AI Advisor) may be logged for service improvement, safety monitoring, and debugging purposes. Do not include sensitive personal data such as passwords, full financial account numbers, or tax identification numbers in Invara conversations.

3. How We Use Your Information

  • Provide and operate the Service, including generating insights and analytics
  • Process and display your financial data through the platform features
  • Improve and develop the Service, including AI model refinement using aggregated, de-identified data only (never your identifiable business data)
  • Communicate with you about the Service, updates, and support
  • Monitor security and investigate suspected violations or fraud
  • Comply with legal obligations

Our commitments to you:

  • ✗ We do NOT use your identifiable financial data to train AI models
  • ✗ We do NOT sell your personal or business data to third parties
  • ✗ We do NOT allow third-party advertising on our platform

4. AI and Data Processing

Our AI features process your financial data to generate insights, scores, and recommendations. Important limitations:

  • AI processing is automated and does not involve human review of your individual financial data in ordinary operations
  • AI outputs are generated by machine learning models that can produce inaccurate results
  • We do not use your individual business data to train AI models that serve other customers
  • Aggregated, de-identified statistical patterns may inform model improvements

For more information on AI accuracy limitations, please see our Terms of Service.

5. Data Sharing

5.1 Service Providers

We share data with trusted service providers who assist in operating the Service, including: cloud hosting providers, authentication services, logging and monitoring services, and payment processors. All service providers are bound by confidentiality obligations and may only use your data to perform services for us.

5.2 Legal Requirements

We may disclose your information if required by law, regulation, court order, or governmental authority, or to protect the rights, property, or safety of mybalancingIQ, our users, or others.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will provide notice of any such transfer.

5.4 No Sale of Data

We do not sell, rent, or trade your personal or business data to third parties for their own commercial purposes.

6. Data Security

We implement industry-standard security measures including:

  • Encryption of data in transit (TLS) and at rest (AES-256)
  • Role-based access controls limiting internal access to authorised personnel only
  • Multi-factor authentication options for user accounts
  • Continuous security monitoring and logging
  • Regular security reviews and vulnerability assessments

Security Limitation

No internet-based service can guarantee absolute security. While we take significant precautions, we cannot guarantee that unauthorised access, hacking, data loss, or breaches will never occur. In the event of a breach affecting your data, we will notify you in accordance with applicable legal requirements.

7. Your Rights

Subject to applicable law, you have the right to:

  • Access: request a copy of the personal data we hold about you
  • Correction: request correction of inaccurate personal data
  • Deletion: request deletion of your personal data ("right to be forgotten")
  • Portability: request your data in a machine-readable format
  • Objection: object to certain processing activities
  • Withdrawal of consent: where processing is based on consent, you may withdraw it

To exercise any of these rights, contact us at dev@mybalancing.com. We will respond within 30 days. We may need to verify your identity before processing your request.

8. Regional Compliance

8.1 United States

We process data as a service provider to you. We do not sell or share personal information for cross-context behavioural advertising. California residents have additional rights under CCPA/CPRA.

8.2 United Kingdom

We comply with UK GDPR requirements. Our lawful basis for processing is primarily contractual necessity (to provide the Service) and legitimate interests. The UK ICO may be contacted with concerns: ico.org.uk.

8.3 Canada

We comply with PIPEDA and applicable provincial privacy legislation.

8.4 Australia

We comply with the Privacy Act 1988 (Cth) and the Australian Privacy Principles to the extent applicable.

9. Data Retention

We retain your data for as long as your account is active and as necessary to provide the Service. Upon account closure or deletion request:

  • Active copies of your data are deleted within 30 days
  • Backup copies are deleted within 90 days
  • We may retain certain data longer where required by law or for fraud prevention purposes
  • Anonymised, aggregated statistical data may be retained indefinitely

10. Cookies

We use cookies and similar tracking technologies as described in our Cookie Policy. By using the Service, you consent to our use of cookies in accordance with that Policy.

11. Children's Privacy

The Service is not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If we discover we have collected data from a child, we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email or in-app notification. The "Last Updated" date at the top of this page indicates when changes were made. Continued use of the Service after changes constitutes acceptance.

13. Contact

Data privacy enquiries: dev@mybalancing.com

mybalancingIQ | mybalancingiq.com

Last updated: April 2026