Privacy Policy

Learn how CapIA protects and handles your personal information.

Data Collection

CapIA collects financial data through secure OAuth 2.0 connections with your accounting systems (Pennylane, QuickBooks, Xero). We never see or store your bank passwords. All data is encrypted in transit (TLS 1.2+) and at rest (AES-256) using GCP Cloud SQL.

Data Storage and Security

We use a multi-tenant architecture with logical tenant isolation. Each company has its own separate MySQL schema. Data is stored on Google Cloud Platform (GCP) in the EU region (europe-west1) with enterprise-grade security measures including database-level row security policies and query timeout enforcement.

Data Usage

Your financial data is used solely to provide you with financial analytics, forecasting, and insights through the CapIA platform. We do not share your data with third parties. Data is processed using secure service accounts with minimal required permissions.

Your Rights

You have the right to access, modify, or delete your data at any time. You can instantly and permanently delete your account and all associated data from our servers with one click. For any privacy-related inquiries, please contact us at contact_us@capia.ai.

Privacy Policy - CapIA