Privacy Policy

AuditEasy is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal information, as well as your rights under applicable privacy laws, including GDPR and CCPA.

1. Information We Collect

• Account Information: Name, email address, company details, and other information you provide during sign-up and account management.
• Audit Data: Documents, reports, findings, and other audit-related content you upload or create within our platform.
• Usage Data: IP address, browser type, device information, and interaction data with our services.
• Technical Data: Cookies, analytics, and other tracking technologies to improve our services and security.

2. How We Use Your Information

• Provide and maintain our audit management services
• Personalize your experience and improve platform functionality
• Communicate service updates, security alerts, and account notifications
• Analyze usage patterns to improve our platform and user experience
• Ensure platform security and prevent fraud
• Comply with legal obligations and regulatory requirements

3. Legal Basis for Processing (GDPR)

• Consent: When you explicitly agree to our terms and privacy policy
• Contract: To fulfill our audit management services to you
• Legitimate Interest: For improving and securing our services
• Legal Obligation: To comply with applicable laws and audit regulations

4. Your Rights (GDPR & CCPA)

• Access and receive a copy of your data
• Correct inaccurate personal information
• Request deletion of your data (subject to legal requirements)
• Restrict or object to data processing
• Data portability - export your audit data
• Withdraw consent at any time

5. Data Security

We implement industry-standard security measures to protect your personal information and audit data, including:

• Encryption of data in transit and at rest
• Regular security assessments and penetration testing
• Access controls and multi-factor authentication
• Continuous monitoring for potential security breaches
• Secure data centers with redundant systems
• Regular security training for our team

6. Data Retention

We retain your information only as long as necessary to provide our services and comply with legal obligations. Audit data may be retained longer to meet regulatory requirements. When data is no longer needed, it is securely deleted or anonymized.

7. Data Sharing

We do not share your personal information or audit data with third parties except:

• With your explicit consent
• To comply with legal requirements or court orders
• To protect our rights, property, or safety
• With service providers who assist in platform operations (under strict confidentiality agreements)

8. International Data Transfers

Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with applicable privacy laws.

9. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of any material changes through our website or via email. Continued use of our services after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or your data rights, please contact us at: