DeepLedger
Sign in
Get started

Privacy Policy

Last updated: March 21, 2026

1. Introduction

DeepLedger Inc. ("DeepLedger," "we," "us," or "our") operates the DeepLedger platform, including the website at deepledger.ai, the DeepLedger portal, MCP server, and Claude Code plugin (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By accessing or using the Service, you agree to this Privacy Policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

  • Account registration data (name, email address, firm name)
  • Organization and team member details you configure
  • Documents you upload (receipts, invoices, statements)
  • Messages and instructions you provide to AI agents
  • Support inquiries and correspondence

2.2 Information from Third-Party Services

  • QuickBooks Online: When you connect your QuickBooks account via OAuth 2.0, we access your financial data (transactions, invoices, bills, vendors, customers, accounts, and reports) as authorized by the scopes you grant. We store encrypted OAuth tokens to maintain the connection.
  • Supabase: Authentication data and session tokens managed through Supabase Auth.

2.3 Automatically Collected Information

  • Device and browser information (type, operating system, browser version)
  • IP address and approximate geographic location
  • Usage data (pages viewed, features used, timestamps)
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use collected information to:

  • Provide, operate, and maintain the Service
  • Perform AI-powered bookkeeping tasks (transaction categorization, reconciliation, financial reporting)
  • Store AI agent memory to improve accuracy of bookkeeping patterns for your organization
  • Generate audit logs and maintain an action trail for compliance
  • Send you service-related notifications and updates
  • Route items that need human review to the review queue in the portal
  • Respond to your support requests
  • Detect and prevent fraud, errors, and security incidents
  • Comply with legal obligations

4. QuickBooks Data — Special Provisions

When you connect your QuickBooks Online account to DeepLedger, we adhere to Intuit's developer policies and data-handling requirements:

  • We only access QuickBooks data within the scopes you explicitly authorize during the OAuth consent flow.
  • QuickBooks OAuth tokens are encrypted at rest and are never shared with third parties.
  • We do not sell, rent, or trade your QuickBooks financial data to any third party.
  • QuickBooks data is used solely for the purpose of providing the Service (AI bookkeeping, reporting, reconciliation).
  • You may disconnect your QuickBooks account at any time through the portal settings, which revokes our access and deletes stored tokens.
  • Upon disconnection or account deletion, QuickBooks data cached in our system is deleted within 30 days.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share data only in the following circumstances:

  • Service Providers: With trusted third-party providers (Supabase for database/auth, Anthropic for AI processing, Render for hosting) who process data on our behalf under contractual obligations.
  • Within Your Organization: Data is shared among team members within your firm/organization as configured by your administrator.
  • Legal Requirements: When required by law, regulation, legal process, or governmental request.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with notice to affected users.
  • With Your Consent: When you explicitly authorize additional sharing.

6. Data Security

We implement industry-standard security measures to protect your information, including:

  • Encryption in transit (TLS/HTTPS) and at rest
  • OAuth 2.0 for all third-party integrations (no passwords stored)
  • Row-level security (RLS) policies in our database ensuring organization-level data isolation
  • Encrypted storage of QuickBooks OAuth tokens
  • Regular security reviews and monitoring
  • Role-based access control for team members

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

7. Data Retention

  • Account data is retained as long as your account is active.
  • Audit logs are retained for a minimum of 7 years for compliance purposes.
  • Agent memory (AI learning data) is retained while your organization is active and deleted upon account closure.
  • QuickBooks tokens are deleted immediately upon disconnection.
  • You may request deletion of your data at any time by contacting us at support@deepledger.ai.

8. Cookies and Tracking

We use essential cookies for authentication and session management. We do not use third-party advertising trackers. You can control cookie preferences through your browser settings.

9. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict processing of your data
  • Data portability (receive your data in a structured format)
  • Withdraw consent for data processing
  • Disconnect third-party integrations (QuickBooks) at any time

To exercise any of these rights, contact us at support@deepledger.ai.

10. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware of such collection, we will delete the data promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Continued use of the Service after changes constitutes acceptance of the revised policy.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us: