Privacy Policy

Last updated: October 31, 2025

1. Introduction

TieStream ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.

2. Information We Collect

2.1 Information You Provide

  • Account information (name, email address, password)
  • Company and business information
  • Payment and billing information
  • Communications with us (support requests, feedback)

2.2 Financial Data

When you connect accounting systems, banking platforms, or other financial data sources, we collect and process:

  • Transaction data from connected accounts
  • Bank statements and reconciliation data
  • Invoice and payment records
  • General ledger and chart of accounts information

2.3 Automatically Collected Information

  • Usage data and analytics
  • Device and browser information
  • IP address and location data
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Execute automated audit procedures and financial analysis
  • Process transactions and send transaction notifications
  • Respond to your comments, questions, and customer service requests
  • Send administrative information, updates, and security alerts
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address fraud, security issues, and technical problems
  • Comply with legal obligations and enforce our terms

4. Data Processing and AI

TieStream uses artificial intelligence and automated systems to analyze your financial data and execute audit procedures. This processing is performed:

  • Within secure, encrypted environments
  • Only for the purpose of providing our services to you
  • In accordance with your instructions and configurations
  • We do not use your financial data to train AI models or for any purpose outside of providing services to you

5. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Third-party vendors who assist in operating our platform (cloud hosting, payment processing, analytics)
  • Your Accountant or Firm: If you grant them access to your workspace
  • Legal Requirements: When required by law, court order, or regulatory authority
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you explicitly authorize us to share information

We do not sell your personal information or financial data to third parties.

6. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption in transit (TLS/SSL) and at rest (AES-256)
  • Regular security audits and penetration testing
  • Access controls and authentication requirements
  • Secure cloud infrastructure (AWS)
  • Employee training on data protection and confidentiality

7. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations. Specifically:

  • Account information: Retained while your account is active and for 7 years after closure for audit purposes
  • Financial data: Retained according to your retention settings or legal requirements (minimum 7 years for UK companies)
  • Usage data: Typically retained for 24 months

8. Your Rights

Depending on your location, you may have the following rights:

8.1 UK GDPR Rights

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision-making

8.2 US Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected
  • Right to know whether personal information is sold or disclosed
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to deletion of personal information
  • Right to non-discrimination for exercising your rights

To exercise these rights, please contact us at privacy@tiestream.com

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adherence to recognized data protection frameworks
  • Ensuring service providers meet adequate data protection standards

10. Cookies and Tracking

We use cookies and similar tracking technologies to enhance user experience. You can control cookies through your browser settings. Types of cookies we use:

  • Essential cookies: Required for the platform to function
  • Analytics cookies: Help us understand how users interact with our platform
  • Preference cookies: Remember your settings and preferences

11. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the "Last updated" date. Continued use of our services after changes constitutes acceptance of the revised policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@tiestream.com

Data Protection Officer: dpo@tiestream.com

Address: [Company Address]

14. Supervisory Authority

If you are located in the UK or EU and believe we have not addressed your concerns, you have the right to lodge a complaint with your local supervisory authority:

  • UK: Information Commissioner's Office (ICO) - www.ico.org.uk
  • EU: Your local Data Protection Authority