HomePrivacy Policy
Legal Document · Last Updated 1 March 2025
Privacy PolicyYour data, your rights.
This policy explains what data Finova collects, how we use it, and your rights as a user. We are committed to transparency and your privacy is taken seriously.
📋
Section 01
Information We Collect
Account & Identity Data
When you register, we collect your name, email address, phone number, company name, and business type. This information is necessary to create and manage your account.
Financial & Business Data
All accounting records, invoices, ledger entries, inventory data, payroll records, and financial reports you enter into the platform are stored securely and are owned entirely by you.
Usage & Technical Data
We collect IP addresses, browser type, device identifiers, pages visited, and session timestamps to operate the platform, detect fraud, and improve performance. This data is never sold.
Communications
If you contact our support team, we retain those communications to provide assistance and improve our service quality.
âš™ï¸
Section 02
How We Use Your Information
Service Delivery
Your data is used solely to operate Finova — to process transactions, generate reports, send notifications, and maintain your account.
Security & Fraud Prevention
We analyze usage patterns to detect unauthorized access, suspicious activity, and potential abuse of the platform.
Product Improvement
Aggregated, anonymized usage statistics help us understand how features are used and where to invest development effort. Individual records are never used for this purpose.
Legal Compliance
We may process your data when required to comply with applicable laws, court orders, or regulatory obligations.
🔗
Section 03
Data Sharing & Third Parties
We Never Sell Your Data
Your financial data, customer lists, and business records are never sold, licensed, or shared with advertisers or data brokers. Period.
Service Providers
We engage trusted infrastructure providers (cloud hosting, email delivery, payment processing) under strict data processing agreements. They may only process your data as directed by us.
Legal Requirements
We may disclose data if compelled by valid legal process, court order, or to protect the rights, property, or safety of our users and the platform.
Business Transfers
In the event of a merger or acquisition, your data may be transferred to the successor entity, which will be bound by this privacy policy.
🔒
Section 04
Data Security
Encryption
All data in transit is protected by TLS 1.3. All data at rest is encrypted using AES-256. Encryption keys are stored separately from the data they protect.
Access Controls
We enforce role-based access controls internally. Only authorized personnel can access production systems, and all access is logged and audited.
Infrastructure
Our platform runs on enterprise-grade cloud infrastructure with redundant availability zones, daily automated backups, and 24/7 monitoring.
Incident Response
In the event of a data breach affecting your information, we will notify you within 72 hours of discovery, as required by applicable law.
🗂ï¸
Section 05
Data Retention
Active Accounts
We retain your data for as long as your account is active and as necessary to provide services. Financial records may be retained longer to comply with applicable tax and accounting regulations.
Account Deletion
Upon account deletion request, we will purge your personal data within 30 days. Anonymized, aggregated data derived from your usage may be retained for analytical purposes.
Backups
Backup copies of your data are retained for up to 30 days and are subject to the same security protections as live data.
✋
Section 06
Your Rights
Access & Portability
You may request a full export of your data at any time in standard formats (CSV, Excel, PDF). We will fulfill your request within 14 business days.
Correction
You may update or correct your personal information at any time through your account settings or by contacting our support team.
Deletion
You have the right to request deletion of your account and all associated personal data. We will confirm deletion in writing within 30 days.
Objection & Restriction
You may object to or request restriction of certain types of processing. Contact our privacy team to exercise these rights.
ðŸ“
Section 08
Changes to This Policy
Notification
We will notify you of material changes to this privacy policy via email and in-app notification at least 14 days before the changes take effect.
Continued Use
Your continued use of Finova after the effective date of any changes constitutes your acceptance of the updated policy.
Note: This is a placeholder privacy policy. It should be reviewed and finalized by a qualified legal professional before the platform goes live in production. Laws vary by jurisdiction and your specific use case may require additional clauses.