Back
K
Kollectar

Privacy Policy

This policy explains what we collect, how we use it, and your rights.

Effective date: May 27, 2026

1. Introduction

[Company legal entity name] (“Kollectar”, “we”, “us”) operates the Kollectar billing and accounts-receivable platform (the “Service”). This Privacy Policy describes how we collect, use, share, and protect information when you use the Service. By using the Service, you agree to the practices described here.

2. Information We Collect

2.1 Account information

  • Name, email address, phone number, and password (stored hashed);
  • Company name, role, and contact details;
  • Billing and payment information processed by our payment provider.

2.2 Business data you enter

  • Customers, contacts, invoices, payments, statements, and inventory items;
  • Notes, attachments, and other content you upload to the Service.

2.3 Data from QuickBooks Online (when connected)

If you choose to connect QuickBooks Online, we access, with your authorization, accounting data needed to provide the integration. This typically includes:

  • Your QuickBooks company name, currency, and identifiers;
  • Customer and vendor records;
  • Invoices, items, taxes, payments, and related transactions;
  • OAuth tokens issued by Intuit, stored encrypted on our servers and never exposed to the browser.

We only read and write the data necessary to operate the features you use, and you can disconnect QuickBooks from the Service at any time, which revokes our access.

2.4 Usage and device information

  • Log data such as IP address, browser type, pages viewed, and timestamps;
  • Diagnostic and error reports;
  • Cookies and similar technologies used to keep you signed in and remember preferences.

3. How We Use Information

  • Provide, operate, secure, and improve the Service;
  • Synchronize records with QuickBooks at your direction;
  • Authenticate users and prevent fraud or abuse;
  • Provide customer support and respond to your requests;
  • Send service-related communications (e.g. security alerts, billing notices);
  • Comply with legal obligations and enforce our agreements.

4. How We Share Information

We do not sell your personal information. We share information only as follows:

  • Service providers that host, store, and operate the Service on our behalf (e.g. cloud hosting, authentication, email delivery), under contractual confidentiality and security obligations.
  • Intuit / QuickBooks Online, when you authorize the integration, to read or write the accounting data you have approved.
  • Legal and safety disclosures when required by law, valid legal process, or to protect the rights, property, or safety of Kollectar, our users, or the public.
  • Business transfers, such as a merger, acquisition, or sale of assets, in which case we will provide notice before your information is transferred and becomes subject to a different privacy policy.

5. QuickBooks Integration Details

  • You initiate the connection via Intuit’s OAuth 2.0 flow and approve the scopes requested.
  • We store the resulting access and refresh tokens encrypted at rest; tokens are accessible only to server-side components.
  • We never expose tokens or your QuickBooks credentials to the browser.
  • You may disconnect at any time from the Kollectar settings; we revoke tokens with Intuit and stop accessing your QuickBooks data.
  • Upon disconnection, we may retain a copy of previously synced records as part of your Service data, subject to Section 6.

6. Data Retention

We retain personal information for as long as your account is active and as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce our agreements. You may request deletion of your account at any time (see Section 8). Backups containing residual data may persist for a limited additional period before being overwritten.

7. Security

  • Data is encrypted in transit using TLS and at rest where supported by our infrastructure;
  • Access to production systems is restricted and audited;
  • QuickBooks OAuth tokens and other secrets are stored server-side only and never sent to the browser;
  • We follow industry-standard practices, but no system is 100% secure.

8. Your Rights

Subject to applicable law, you may have the right to access, correct, update, export, or delete your personal information, to object to or restrict certain processing, and to withdraw consent. To exercise these rights, contact us at [Privacy contact email]. We will respond within the time period required by law.

9. International Data Transfers

We and our service providers may process information in countries other than your own. Where required, we use appropriate safeguards (such as standard contractual clauses) for cross-border transfers.

10. Children’s Privacy

The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us and we will delete it.

11. Cookies and Tracking

We use cookies and similar technologies to keep you signed in, remember preferences, and understand how the Service is used. You can control cookies through your browser settings, though some features may not work without them.

12. Changes to this Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by posting the updated policy on this page with a new effective date, or by other reasonable means. Your continued use of the Service after the effective date constitutes acceptance of the updated policy.

13. Contact Us

For privacy questions, requests, or complaints, contact us at [Privacy contact email], or by mail to [Company legal entity name], [Business address].