Back to home

Privacy Policy

Last updated: January 15, 2026

1. Introduction

ReportPilot ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our automated financial reporting service.

2. Information We Collect

2.1 Account Information

  • Email address (via Google OAuth)
  • Name (as provided by Google)
  • Profile picture (optional)

2.2 Financial Data from Xero

  • Profit & Loss reports
  • Balance Sheet data
  • Aged receivables and payables
  • Organization name and metadata

We only access the data necessary to generate your financial reports. We do not access individual transactions, bank account details, or payment information.

2.3 Usage Data

  • Log data (IP address, browser type, pages visited)
  • Feature usage analytics
  • Error reports for improving our service

3. How We Use Your Information

We use your information to:

  • Generate automated monthly financial reports
  • Send email reports to your registered email address
  • Display your financial dashboard
  • Improve and optimize our service
  • Communicate service updates and important notices

4. Data Storage and Security

Your data is stored securely using industry-standard encryption. We use:

  • Supabase for database hosting with Row Level Security
  • Encrypted connections (TLS/SSL) for all data transfers
  • Secure token management for Xero OAuth connections
  • Regular security audits and monitoring

5. Third-Party Services

We use the following third-party services:

  • Google OAuth - For authentication
  • Xero - For accessing your financial data (with your permission)
  • SendGrid - For sending email reports
  • Anthropic Claude - For generating AI-powered insights
  • Vercel - For hosting and infrastructure
  • Sentry - For error monitoring

6. Data Retention

We retain your financial snapshots for 24 months to provide historical comparisons. You can request deletion of your data at any time by contacting us or disconnecting your Xero account.

7. Your Rights

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Disconnect your Xero account at any time
  • Opt out of non-essential communications

8. Cookies

We use essential cookies for authentication and session management. We do not use advertising or tracking cookies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by email or through our service.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@reportpilot.tax