Privacy Policy

How Agency Commander Protects Your Data

Last updated: November 15, 2025

1. Overview

This Privacy Policy explains how Agency Commander ("Agency Commander," "we," "us," or "our") collects, uses, discloses, and safeguards information when you visit our marketing site, use the Agency Commander platform, or connect third-party integrations such as QuickBooks Online. Our services are designed for business users in the United States, and we process information in accordance with applicable U.S. federal and state privacy requirements.

2. Information We Collect

We collect the information necessary to deliver secure financial reporting and collaboration:

  • Account identifiers. Name, business email, phone number, role, authentication data, and billing contact information.
  • Financial and operational data. Agency ledger exports, budgets, invoices, and forecasting inputs that you import or sync into the platform.
  • Integration data. OAuth tokens, realm IDs, dataset metadata, and audit logs from systems you connect (e.g., QuickBooks Online, Stripe) in accordance with their scopes.
  • Usage and device information. Log files, IP address, browser type, pages viewed, session duration, and product telemetry collected through cookies or similar technologies.
  • Support correspondence. Content of emails, chat transcripts, or attachments you submit to our support team.

3. How We Use Information

  • Provide, configure, and maintain the Agency Commander platform and customer accounts.
  • Authenticate users, enforce access policies, and safeguard the confidentiality of imported datasets.
  • Generate dashboards, analytics, alerts, and audit logs that you request or schedule.
  • Process payments, send invoices, and manage subscription lifecycle communications.
  • Deliver product updates, security notices, onboarding guidance, and transaction-related messages.
  • Monitor performance, troubleshoot issues, and improve our infrastructure and user experience.
  • Comply with legal obligations, enforce agreements, and protect the rights of Agency Commander and our users.

4. Legal Bases (U.S. Focus)

We process data because it is necessary to perform our contract with you, to comply with legal requirements (such as tax, accounting, and security regulations), and to pursue legitimate business interests including improving the platform and preventing fraud. When local laws require consent (for example, certain cookie activity), we will request it separately.

5. How We Share Information

  • Service providers. Trusted infrastructure, analytics, and customer-support processors that are bound by confidentiality and data-protection obligations.
  • Integration partners. Systems you choose to connect (e.g., QuickBooks Online, Stripe, Slack) receive only the data required to complete the requested sync or notification.
  • Corporate accounts. Administrators at your organization may access data associated with the workspace pursuant to your internal policies.
  • Legal and safety. Courts, regulators, or law enforcement when required by law or necessary to protect the rights, safety, or property of Agency Commander, our customers, or the public.
  • Business transfers. Successors or affiliates in connection with a merger, financing, or sale of all or a portion of our business, subject to continued protection of your data.

We do not sell personal information and we do not permit third parties to use your financial data for their own advertising purposes.

6. Data Retention

We retain information for as long as your organization maintains an account plus any additional period required to comply with legal obligations, resolve disputes, back up systems, or enforce agreements. You may delete specific datasets or request account deletion at any time, subject to applicable record-keeping requirements.

7. Security

Agency Commander employs administrative, technical, and physical safeguards—including encryption in transit, role-based access controls, audit logging, least-privilege service accounts, and regular penetration testing—to protect information under our control. No online service can guarantee absolute security, and we encourage customers to implement strong internal security practices in tandem with our platform.

8. Your Choices and Rights

  • Access, correct, or delete profile information from the account settings page or by contacting us.
  • Export or purge synced financial data using the product’s dataset management tools.
  • Opt out of marketing communications by using the unsubscribe link in our emails.
  • Manage cookie preferences through your browser settings or the consent banner displayed on our marketing site.

Depending on your state of residence (e.g., California, Colorado, Virginia, Connecticut, Utah), you may have additional privacy rights. Submit requests to [email protected] and we will respond within the timelines required by applicable law.

9. Children’s Privacy

Our services are intended for business use by individuals who are 18 years of age or older. We do not knowingly collect personal information from children. If you believe a child has provided personal information, please contact us so we can delete it.

10. International Data Transfers

Agency Commander is operated from the United States. If you access the platform from outside the U.S., you agree that your information will be transferred to, stored in, and processed within the United States, where data protection laws may differ from those in your jurisdiction.

11. Changes to This Policy

We may update this Privacy Policy to reflect operational, legal, or regulatory changes. We will post the updated policy on this page and revise the "Last updated" date. If changes materially affect your rights or the way we process data, we will provide additional notice (such as email or in-app messaging) in advance.

12. Contact Us

Email us at [email protected] or write to Agency Commander, 2261 Market Street #4386, San Francisco, CA 94114 if you have questions about this Privacy Policy or our data practices.