Privacy Policy

Last updated: March 17, 2026

Contents

  1. Information We Collect
  2. How We Use Your Information
  3. How We Share Your Information
  4. Data Retention
  5. Security
  6. Your Rights
  7. Cookies
  8. Children's Privacy
  9. Changes to This Policy
  10. Contact Us

CoGroX ("we," "us," or "our") operates the CoGroX accounting operations platform, accessible at cogrox.com and app.cogrox.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. Please read this policy carefully. If you disagree with its terms, please discontinue use of the Service.

1. Information We Collect

Information you provide directly:

  • Account registration information (name, email address, company name)
  • Billing information (processed securely through Stripe — we do not store full payment card details)
  • Content you create within the platform (tasks, documents, reconciliations, policies, portal files)
  • Communications you send to us (support requests, contact form submissions)

Information collected automatically:

  • Log data (IP address, browser type, pages visited, time and date of visits)
  • Usage data (features used, actions taken within the platform)
  • Device information (device type, operating system)
  • Cookies and similar tracking technologies (see Section 7)

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service
  • Process transactions and manage your subscription
  • Send transactional communications (receipts, account alerts, password resets)
  • Respond to your comments, questions, and support requests
  • Monitor and analyze usage patterns to improve the Service
  • Detect, prevent, and address technical issues and security incidents
  • Comply with legal obligations

We do not sell your personal information to third parties. We do not use your data to train AI models without your explicit consent.

3. How We Share Your Information

We may share your information with:

  • Service providers: Third-party vendors who assist us in operating the Service, including Supabase (database), AWS (hosting), Stripe (payments), Resend (email), and Anthropic (AI features). These providers are contractually obligated to protect your data.
  • Legal requirements: We may disclose your information if required to do so by law or in response to valid legal process.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change.
  • With your consent: We may share your information for any other purpose with your explicit consent.

We do not share your financial data, client documents, or proprietary accounting information with any third party except as necessary to provide the Service.

4. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. If you cancel your account, we will retain your data for 90 days to allow for account recovery, after which it will be permanently deleted.

You may request deletion of your data at any time by contacting us at admin@cogrox.com.

5. Security

We implement industry-standard security measures to protect your information, including:

  • Encryption of data in transit (TLS/HTTPS) and at rest
  • Role-based access controls within the platform
  • Regular security reviews and monitoring
  • Secure third-party payment processing via Stripe (PCI-DSS compliant)

No method of transmission over the Internet is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data
  • Portability: Request a machine-readable export of your data
  • Objection: Object to processing of your data in certain circumstances

To exercise any of these rights, please contact us at admin@cogrox.com. We will respond to your request within 30 days.

7. Cookies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. Cookies are files with a small amount of data that may include an anonymous unique identifier.

We use the following types of cookies:

  • Essential cookies: Required for the Service to function (authentication, session management)
  • Analytics cookies: Help us understand how users interact with the Service

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

8. Children's Privacy

Our Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal information, we will delete such information promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. For material changes, we will provide additional notice via email or a prominent notice within the Service.

Your continued use of the Service after any changes constitutes your acceptance of the new Privacy Policy.

10. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us: