BeekeeprBeekeepr← Back to Beekeepr

Privacy Policy

Last updated: April 26, 2026

Privacy Policy Effective Date: April 26, 2026 Last Updated: April 26, 2026 This Privacy Policy describes how The Levy Group, LLC ("we," "us," or "our") collects, uses, and protects information in connection with Beekeepr (the "Service"), a closed beta bookkeeping workspace operated by The Levy Group, LLC at https://beekeepr.thelevycorp.com. Beekeepr is currently provided as a private beta to a limited group of authorized users. By using the Service, you consent to the practices described in this Privacy Policy.

  1. About Beekeepr and This Policy Beekeepr is a bookkeeping workspace that connects to Intuit QuickBooks Online to assist with categorization, review, and analysis of accounting data. The Service is currently provided as a closed beta to The Levy Group, LLC and one private client (Cody Yeck Real Estate). For the purposes of applicable privacy law:

The Levy Group, LLC is the data controller for account-level information (such as login email, authentication records, and Service usage logs). The Levy Group, LLC acts as a data processor for QuickBooks Online data accessed through the Service. The underlying accounting data belongs to the QuickBooks Online account holder, who is the data controller for that information.

  1. Information We Collect 2.1 Account Information When you sign in to the Service, we collect:

Email address Authentication credentials (password hashes; we never store plaintext passwords) Account creation date and last sign-in timestamp

2.2 QuickBooks Online Data When you authorize the Service to connect to a QuickBooks Online company, we access the following categories of data via the Intuit QuickBooks API:

Chart of accounts Transactions, including bank and credit card activity Vendors, customers, and employees Bills, invoices, and journal entries Reports such as Profit & Loss and Balance Sheet Company metadata (legal name, fiscal year settings, currency)

We access only the data necessary to provide bookkeeping functionality. We do not access tax filings, payroll detail beyond what is exposed via the standard QuickBooks API, or personally identifying data of customers or vendors beyond what is required to display transactions. 2.3 OAuth Tokens We store OAuth access and refresh tokens issued by Intuit, encrypted at rest, so that the Service can read QuickBooks data on your behalf without requiring re-authentication on every visit. Tokens are not shared with any third party. 2.4 User-Generated Content The Service stores information you create within it, including:

Notes and observations on monthly reviews Manually entered deal records and pipeline entries Transaction status changes (categorized, reviewed, posted, excluded) Chat conversations with the Service's AI assistant

2.5 Usage and Diagnostic Data We collect minimal technical information to operate and improve the Service, including:

Server access logs (IP address, request timestamp, request path, response code) Error and exception logs

We do not currently use third-party analytics, advertising, or behavioral tracking on the Service. 2.6 Cookies The Service uses cookies solely for authentication. A session cookie identifies you to the Service so you remain signed in across page loads. We do not use cookies for advertising, cross-site tracking, or analytics. 3. How We Use Information We use the information described above to:

Authenticate users and provide the Service Read and display QuickBooks data within the Service interface Generate AI-assisted insights, summaries, and categorization suggestions Maintain operational logs for security and reliability Respond to user requests and support inquiries Comply with legal obligations

We do not sell, rent, or trade information to third parties. We do not use QuickBooks data, account data, or user-generated content to train any artificial intelligence model. 4. AI Processing The Service uses Anthropic's Claude AI models to provide categorization suggestions, monthly observations, and conversational assistance. When you interact with the AI assistant or trigger an AI-generated summary, relevant data may be transmitted to Anthropic's API for processing. Anthropic processes this data under its own commercial terms and privacy policy and does not train its models on customer data sent through the API. You can review Anthropic's data practices at https://www.anthropic.com/legal/privacy. 5. Third-Party Service Providers The Service relies on the following third-party processors to operate. Each is bound by its own terms and privacy commitments and processes data only as needed to provide its service: ProviderPurposePrivacy PolicyIntuit, Inc.QuickBooks Online API accesshttps://www.intuit.com/privacy/Anthropic, PBCAI processinghttps://www.anthropic.com/legal/privacySupabase, Inc.Database, authentication, file storagehttps://supabase.com/privacyVercel, Inc.Application hostinghttps://vercel.com/legal/privacy-policySquarespace, Inc.Domain and DNShttps://www.squarespace.com/privacy We do not transfer your data to any other third party except as required to provide the Service or as required by law. 6. Data Storage and Security

Data is stored in encrypted form at rest using industry-standard encryption. Data is transmitted between your browser and the Service over TLS (HTTPS) at all times. OAuth tokens are encrypted at the application layer in addition to database-level encryption. Authentication is enforced on every page of the Service except clearly designated public pages (such as this Privacy Policy). Access to production systems is limited to authorized personnel of The Levy Group, LLC. The Service operates in read-only mode against QuickBooks Online unless write operations are explicitly enabled by an administrator.

No system is perfectly secure. While we take reasonable measures to protect information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials. 7. Data Retention

Account information is retained while your account is active and for up to 90 days after account closure, after which it is deleted or anonymized. OAuth tokens are retained while the QuickBooks connection is active and deleted within 7 days of disconnection. QuickBooks data is read on demand from Intuit and cached for performance. Cached data is purged within 30 days of QuickBooks disconnection or account closure. User-generated content (notes, deals, observations) is retained while your account is active and deleted within 30 days of account closure unless you request earlier deletion. Server logs are retained for up to 180 days for security and operational purposes.

  1. Your Rights Subject to applicable law, you may:

Access the personal information we hold about you Correct inaccurate information Request deletion of your account and associated data Disconnect the QuickBooks integration at any time, which immediately revokes our access to your QuickBooks data Export your user-generated content in a portable format

To exercise any of these rights, email levi@thelevycorp.com. We will respond within 30 days. 9. Children's Privacy The Service is not directed to individuals under 18 and we do not knowingly collect information from anyone under 18. If you believe a minor has provided information to the Service, contact levi@thelevycorp.com and we will delete it. 10. International Transfers The Service is operated from the United States. If you access the Service from outside the United States, you understand that information is processed and stored in the United States and may be subject to U.S. law. 11. Data Breach Notification If we become aware of a security incident that has resulted in unauthorized access to personal information, we will notify affected users without undue delay and in any case within 72 hours of discovery, by email to the address on file. The notification will describe the nature of the incident, information involved, and steps taken in response. 12. Changes to This Policy We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top of this page and, for material changes, notify users by email at least 14 days before the change takes effect. 13. Contact For questions about this Privacy Policy or to exercise any of the rights described above: The Levy Group, LLC 2750 E Moorland Dr St George, Utah 84790 levi@thelevycorp.com