Privacy Policy

This Policy covers two broad categories of individuals:

• Customers and users — the professionals, firms, and their authorised team members who register for and use AuditGlide ("you").
• Client and third-party data subjects — individuals whose personal or financial information you, as our customer, upload or process through the Services in the course of your audit, tax, or compliance work.

For data you upload about your own clients, you are the Data Fiduciary / Data Controller and AuditGlide acts as a Data Processor on your behalf, processing that data only on your documented instructions. Your handling of that data is governed by the agreement between you and us and by applicable law.

Information you provide

• Account and profile information: name, email address, phone number, firm name, designation, and billing address.
• Payment information: where you pay online (for example, by UPI or through a payment provider), payment is handled by that provider; we do not store card details on our servers.
• Content and uploaded data: documents, financial statements, ledgers, working papers, client records, spreadsheets, and any other material you choose to upload or generate within the Services.
• Communications: messages, support tickets, and feedback you send us.

Information collected automatically

• Usage and log data: IP address, browser type, device identifiers, pages visited, features used, timestamps, and actions taken within the platform.
• Cookies and similar technologies: used for authentication, preferences, and security (see Section 9).

Information from third parties

• Integration partners you connect to AuditGlide (for example, the GST portal and other government or accounting systems), where you have authorised such access.

We use information to:

• Provide, operate, maintain, and improve the Services.
• Authenticate users and secure accounts.
• Process subscriptions, billing, and payments.
• Provide customer support and respond to your requests.
• Send service-related communications (for example, updates, security alerts, billing notices).
• Monitor for fraud, abuse, and security threats.
• Comply with legal, regulatory, and professional obligations.
• With your consent, send product news or marketing (you may opt out at any time).

We process uploaded client data only to provide the Services to you and strictly on your instructions. We do not use your client data to train AI models or for any purpose unrelated to delivering the Services, except as required by law.

Where applicable law requires a legal basis, we rely on one or more of the following: performance of a contract with you; your consent; compliance with a legal obligation; and our legitimate interests in operating and securing the Services, provided those interests are not overridden by your rights.

Some features use artificial intelligence to help you, such as an assistant that answers questions about your own data and helps you navigate the app. Where these features are used:

• To interpret your request, we send only your question and the structure (schema) of your data to our AI provider. We do not send your clients' records, financial values, or document contents to the AI provider.
• AI outputs are decision-support tools only and must be reviewed by a qualified professional. They do not replace professional judgement.
• We do not use your confidential client data to train shared or general-purpose AI models.
• Where third-party AI services are used in our infrastructure, they operate under contractual confidentiality and data-protection terms consistent with this Policy.

We do not sell your personal information or your client data. We share information only as follows:

• Service providers / sub-processors: hosting, storage, email delivery, AI processing, and — for GST notice checking — a captcha-solving service and proxy provider, each bound by confidentiality and data-protection obligations. A current list of sub-processors is available on request.
• Within your firm: with other authorised users of your AuditGlide account, as configured by your administrator.
• Legal and regulatory: where required by law, court order, or a valid request from a competent authority.
• Business transfers: in connection with a merger, acquisition, or sale of assets, subject to this Policy continuing to apply.
• With your consent: for any other purpose disclosed to you.

We implement administrative, technical, and physical safeguards designed to protect information, including:

• Encryption of data in transit (TLS) and at rest.
• Role-based access controls and the principle of least privilege.
• Network security, monitoring, and logging.
• Regular backups and disaster-recovery procedures.
• Internal access to client data restricted to authorised personnel on a need-to-know basis, under confidentiality obligations.

No method of transmission or storage is completely secure. While we strive to protect your information, we cannot guarantee absolute security. You are responsible for keeping your login credentials confidential and for the activities under your account.

• We retain account and personal information for as long as your account is active and as needed to provide the Services.
• Uploaded client data is retained for the duration of your subscription and for a limited period afterward to allow for retrieval, unless you delete it earlier.
• You may export or request deletion of your data at any time, subject to our legal and regulatory record-keeping obligations.
• On account termination, we will delete or anonymise your data within a reasonable period, except where retention is required by law (for example, audit-trail, tax, or professional record-retention requirements).

We encourage you to maintain your own backups of records you are professionally required to preserve.

We use cookies and similar technologies for essential functionality (login, security, preferences). We do not use advertising cookies. If we introduce analytics in future, we will use privacy-respecting analytics and request your consent where required. You can control cookies through your browser settings; disabling some cookies may affect functionality.

Depending on your jurisdiction, you may have rights to:

• Access the personal information we hold about you.
• Correct inaccurate or incomplete information.
• Request deletion of your information.
• Withdraw consent where processing is based on consent.
• Object to or restrict certain processing.
• Receive a copy of your data in a portable format.
• Nominate another individual to exercise your rights in the event of death or incapacity (under India's DPDP Act).

To exercise these rights, contact us at auditglide2026@gmail.com. We will respond within the timeframe required by applicable law. For client data you have uploaded, requests from data subjects should generally be directed to you as the Data Fiduciary; we will assist you in responding as your processor.

Your information may be stored and processed in India and in other locations where we or our service providers operate (for example, some AI or email providers may process data outside India). Where data is transferred across borders, we take steps to ensure an adequate level of protection consistent with applicable law.

We design our practices to align with applicable data-protection laws, which may include the Digital Personal Data Protection Act, 2023 (India), the Information Technology Act, 2000 and associated rules, and, where applicable to your use, other frameworks such as the GDPR. Nothing in this Policy limits your own obligations as a professional, including confidentiality duties under the ICAI Code of Ethics and any applicable regulatory standards.

The Services are intended for business and professional use and are not directed to individuals under the age of 18. We do not knowingly collect personal information from children.

We may update this Policy from time to time. We will post the updated version with a revised "Last updated" date and, where appropriate, notify you of material changes. Continued use of the Services after changes take effect constitutes acceptance of the updated Policy.

If you have questions or concerns about this Policy or our data practices, contact:

AuditGlide
Bangalore, Karnataka, India
Email: auditglide2026@gmail.com