Last updated: January 1, 2025
This Privacy Policy describes how AuditPulsar, Inc. ("AuditPulsar," "we," "us," or "our") collects, uses, stores, and shares information about you when you use our website at auditpulsar.com, our software platform, and related services (collectively, the "Services"). AuditPulsar is headquartered at 200 Clarendon Street, Boston, MA 02116.
By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy. If you are using our Services on behalf of an accounting firm or other organization, you represent that you have the authority to bind that organization to this Policy. This Policy applies to all users of our Services, including website visitors, trial users, and paid subscribers.
This Privacy Policy addresses our practices with respect to personal data about individuals ("Personal Data"). It does not address our handling of client financial data processed through the AuditPulsar platform on behalf of our accounting firm customers — that data is governed by the Data Processing Agreement entered into between AuditPulsar and each accounting firm customer, and by AuditPulsar's security architecture, which is described separately in our Security Documentation.
We collect information in the following categories:
Account registration information. When you create an AuditPulsar account, we collect your name, professional email address, job title, accounting firm name, phone number, and billing information. Billing information (credit card numbers, billing address) is processed by our payment processor, Stripe, Inc., and is not stored on AuditPulsar servers in full; we retain only the last four digits and card type for display purposes.
Contact form submissions. When you submit a contact form, request a demo, or communicate with us via email at hello@auditpulsar.com, we collect the information you include in that communication, including your name, email address, firm name, and the content of your message.
Support communications. If you contact our support team, we collect information you provide in those communications, including technical details, account information, and any attachments you share with us for troubleshooting purposes.
Survey and feedback responses. When you respond to surveys or provide product feedback, we collect the information you provide in those responses.
Log data. When you access our website or platform, our servers automatically record information including your IP address, browser type and version, operating system, pages visited, time and date of your visit, the referring URL, and session duration. This information is stored in server logs for up to 90 days.
Cookie and tracking data. We use cookies and similar tracking technologies as described in our Cookie Policy. These technologies may collect information about your device, browser, and how you interact with our website. You can manage cookie preferences through our cookie consent tool.
Platform usage data. When you use the AuditPulsar platform (as distinct from the marketing website), we collect data about your use of platform features, including the features accessed, configuration settings applied, scan initiation events, workpaper exports generated, and system performance metrics. This usage data does not include the content of client financial data processed through the platform.
Device information. We collect information about the device you use to access our Services, including device type, operating system, unique device identifiers, and network information.
Business contact databases. We may receive information about potential customers from business contact databases and data enrichment services, including company name, contact information, and professional role. We use this information for sales and marketing purposes.
Integration partners. If you connect third-party services to your AuditPulsar account (such as ERP connectors), we receive information from those services necessary to authenticate and maintain the connection.
We use the information we collect for the following purposes:
We use account information and platform usage data to operate the AuditPulsar platform, authenticate users, process transactions, provide customer support, and improve the functionality and performance of the Services. We analyze aggregated, de-identified usage data to understand how users interact with the platform and to inform product development decisions.
We use your contact information to send you transactional communications (account confirmations, password resets, billing receipts, subscription renewal notices), service announcements (maintenance windows, feature releases, security notifications), and marketing communications (product updates, educational content, webinar invitations). You may opt out of marketing communications at any time by clicking the unsubscribe link in any marketing email or by emailing hello@auditpulsar.com. Transactional and service communications cannot be opted out of as long as you maintain an active account.
We use information as necessary to comply with applicable legal obligations, respond to lawful requests from government authorities, enforce our Terms of Service, protect the rights and safety of AuditPulsar, our customers, and the public, and detect and prevent fraud and abuse.
We use information for internal business operations including financial accounting, auditing our own operations, fraud prevention, and business analytics. We may use anonymized and aggregated data for internal research and benchmarking purposes.
If you are located in the European Economic Area, the United Kingdom, or Switzerland, we process your Personal Data under the following legal bases as provided by the General Data Protection Regulation (GDPR) and applicable national law:
Contract performance. Processing necessary to perform the contract we have entered into with you or your organization, including providing account access and platform functionality.
Legitimate interests. Processing for our legitimate business interests, including improving our Services, marketing to prospective customers, detecting fraud, and maintaining the security of our systems, where these interests are not overridden by your data protection rights.
Legal obligation. Processing required to comply with our legal obligations, including tax, financial reporting, and regulatory requirements.
Consent. For processing activities that are not covered by the above bases, including certain marketing communications and non-essential cookies, we rely on your consent, which you may withdraw at any time.
If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), provides you with specific rights regarding your Personal Information.
Right to know. You have the right to request that we disclose what Personal Information we collect, use, disclose, or sell about you, and the purposes for which we use it.
Right to delete. You have the right to request that we delete Personal Information we have collected from you, subject to certain exceptions.
Right to correct. You have the right to request correction of inaccurate Personal Information we maintain about you.
Right to opt out of sale or sharing. AuditPulsar does not sell Personal Information within the meaning of the CCPA. We do not share Personal Information for cross-context behavioral advertising.
Right to non-discrimination. We will not discriminate against you for exercising your California privacy rights.
To exercise your California privacy rights, submit a request to hello@auditpulsar.com with "California Privacy Request" in the subject line. We will respond within 45 days of receiving a verifiable consumer request.
We do not sell your Personal Data. We may share your information in the following circumstances:
We share information with third-party vendors and service providers that support our operations, including:
Amazon Web Services, Inc. — Cloud infrastructure hosting for our website and authentication services. Relevant data centers are located in the United States (us-east-1 region).
Stripe, Inc. — Payment processing for subscriptions and billing transactions. Stripe processes payment card information under its own privacy policy and PCI DSS compliance program.
Intercom, Inc. — Customer support and in-product messaging. Name, email, and usage data may be shared with Intercom for support ticket management.
Mailchimp (Intuit, Inc.) — Email marketing platform for newsletters and marketing communications. Name and email addresses of subscribers are stored on Mailchimp servers.
Google Analytics (Google LLC) — Website traffic analysis. See our Cookie Policy for details on the data collected by Google Analytics and how to opt out.
All service providers are contractually required to protect your information and use it only for the purposes we specify.
If AuditPulsar is acquired, merges with another company, or sells all or substantially all of its assets, your information may be transferred to the acquiring entity as part of that transaction. We will notify users of any such transfer and any resulting change to this Privacy Policy.
We may disclose your information when required to do so by law, including in response to subpoenas, court orders, government regulations, or legal process. We will attempt to notify you of such requirements to the extent permitted by law.
We may disclose your information when we believe disclosure is necessary to protect the rights, property, or safety of AuditPulsar, our customers, or others, including to prevent fraud, abuse, or illegal activity.
We retain Personal Data for the following periods:
Account information. Retained for the duration of your account plus 3 years after account closure, to comply with tax and financial recordkeeping obligations and to handle any post-closure inquiries or disputes.
Billing records. Retained for 7 years after the relevant transaction, as required by US tax and accounting regulations.
Support communications. Retained for 2 years after the support case is closed.
Marketing communications records. Unsubscribe records are retained indefinitely to ensure we honor opt-out requests.
Server logs. Retained for 90 days.
Website analytics data. Retained for 26 months, as configured in our Google Analytics settings.
After the applicable retention period, data is deleted or anonymized. You may request earlier deletion of your data by contacting hello@auditpulsar.com, subject to our legal retention obligations.
AuditPulsar is SOC 2 Type II certified for security, availability, and confidentiality controls covering our authentication and license management infrastructure. We implement technical and organizational measures appropriate to the sensitivity of the information we handle, including:
Encryption of data in transit using TLS 1.2 or higher. Encryption of Personal Data at rest using AES-256. Access controls limiting data access to personnel who require it for their job functions. Regular access reviews conducted on a quarterly basis. Penetration testing conducted annually by third-party security firms. Employee security training conducted at hire and annually thereafter.
No security measure is perfect. In the event of a data breach affecting Personal Data, we will notify affected users and relevant regulatory authorities as required by applicable law.
AuditPulsar is headquartered in the United States. If you are located outside the United States, your Personal Data will be transferred to and processed in the United States. The United States may not provide the same level of data protection as your home country.
For transfers of data from the European Economic Area, United Kingdom, or Switzerland to the United States, we rely on Standard Contractual Clauses approved by the European Commission as the transfer mechanism, or other appropriate transfer mechanisms as applicable.
Depending on your location and applicable law, you may have the following rights regarding your Personal Data:
Access. Request access to the Personal Data we hold about you, including information about how it is being used.
Correction. Request correction of inaccurate or incomplete Personal Data.
Deletion. Request deletion of your Personal Data, subject to our legal retention obligations.
Portability. Request a copy of your Personal Data in a structured, machine-readable format.
Restriction. Request that we restrict processing of your Personal Data in certain circumstances.
Objection. Object to processing of your Personal Data based on legitimate interests.
Withdrawal of consent. Where processing is based on consent, withdraw that consent at any time.
To exercise any of these rights, contact us at hello@auditpulsar.com. We will respond within the timeframe required by applicable law (typically 30 days under GDPR, 45 days under CCPA).
The AuditPulsar Services are designed for use by accounting professionals and are not directed at individuals under the age of 18. We do not knowingly collect Personal Data from children under 18. If we become aware that we have collected Personal Data from a child under 18, we will delete that information promptly. If you believe we have collected information from a child under 18, contact us at hello@auditpulsar.com.
Our website and platform may contain links to third-party websites and services. This Privacy Policy does not apply to those third-party sites. We encourage you to review the privacy policies of any third-party sites you visit. We have no control over and assume no responsibility for the content, privacy practices, or data handling of any third-party sites.
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or other factors. We will notify you of material changes by posting the updated Policy on our website with a new "Last updated" date and, for significant changes, by sending an email notification to registered users. Your continued use of our Services after the effective date of any change constitutes your acceptance of the updated Policy.
For questions, concerns, or requests regarding this Privacy Policy or our data practices, contact us:
AuditPulsar, Inc.
Attn: Privacy Team
200 Clarendon Street, Boston, MA 02116
Email: hello@auditpulsar.com
Phone: +1 (617) 482-7136
For users in the European Economic Area, AuditPulsar, Inc. serves as the data controller for the purposes described in this Policy. You have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.