1. What we collect
- Account information you give us — name, email, business name, role.
- Financial data you connect or upload — transactions, receipts, invoices, bank account numbers (read-only access).
- Usage data — how you navigate Cache, which features you use, device and browser info.
- Correspondence — support tickets, emails you send us, forms you submit.
2. How we use it
- To operate and improve the service.
- To send you account, billing, and product notifications you opted in to.
- To detect and prevent fraud, abuse, and security incidents.
- We do not sell, rent, or share your data with advertisers. Ever.
3. Who we share it with
- Sub-processors that help us operate the service (AWS, Stripe, Plaid, Intercom). Full list at cacheapps.io/subprocessors.
- Law enforcement, only when required by valid legal process.
- With your explicit consent — e.g. when you invite your accountant.
4. Your rights
- Export: download all your data anytime from Settings → Export.
- Delete: request permanent deletion at hello@cacheapps.io. Completed within 30 days.
- Access: see every bit of data we hold on you from your Privacy dashboard.
- Correct: update anything inaccurate from your account settings.
5. How long we keep it
- Active account data: for as long as your account is open.
- Closed account data: 90 days, then permanently deleted.
- Financial records: 7 years (required by tax law in most jurisdictions).
- Backups: purged within 35 days of deletion.
6. International transfers
- We store data in AWS regions in Canada and the US.
- EU customers can opt into EU-only data residency on the Business plan.
- Standard contractual clauses in place for cross-border transfers.
7. Contact
Questions? Reach out to hello@cacheapps.io. Our Data Protection Officer answers within 2 business days.