Privacy Policy

Information We Collect

AskWingo collects and processes information from your connected business systems to provide our data operationalization service. This includes:

QuickBooks Online data: Customer records, vendor records, invoices, items, and transaction data accessed via the QuickBooks Online API using the com.intuit.quickbooks.accounting OAuth scope. We access this data in read-only mode for analysis and knowledge graph construction.

Google Drive documents: Files you authorize us to access via Google Drive API. We process document content for extraction and classification.

Account information: Email address, name, and organization name provided during registration.

Usage data: Query logs, feature usage patterns, and performance metrics to improve the service.

How We Store Your Data

All data is stored in a Google Cloud Platform (GCP) environment in the us-central1 region.

Data at rest is encrypted using GCP's default encryption (AES-256).

OAuth credentials (access tokens, refresh tokens) are encrypted using Fernet symmetric encryption before storage in our database.

API keys and secrets are stored in GCP Secret Manager, never in code or environment variables in production.

How We Use Your Data

Knowledge graph construction: We connect entities (vendors, customers, documents, transactions) across your data sources to build a unified knowledge graph.

Natural language query answering: When you ask a question, we query relevant data and generate answers with source citations.

Business rule evaluation: We evaluate your data against rules you define to surface violations and recommendations.

We do not use your data to train machine learning models. We do not sell or share your data with third parties.

Data Retention and Deletion

Your data is retained for as long as your account is active and connected.

When you disconnect a data source (e.g., QuickBooks), we immediately revoke and delete the stored OAuth tokens. Extracted data from that source is marked for deletion and purged within 30 days.

When you close your account, all data associated with your organization is deleted within 30 days.

You may request immediate data deletion by contacting us.

QuickBooks-Specific Disclosures

We access QuickBooks Online data via Intuit's OAuth 2.0 API with the com.intuit.quickbooks.accounting scope.

We store only the data necessary for knowledge graph construction and query answering.

Access tokens are refreshed automatically and stored encrypted. Refresh tokens are rotated per Intuit's token policy.

Users can disconnect QuickBooks at any time from the AskWingo Setup page or from the QuickBooks Apps management page. Both paths result in immediate token revocation and credential deletion.

Security

All data transmission uses TLS 1.2+.

Access to customer data is restricted to authenticated, authorized users within the customer's organization.

We implement tenant isolation at the database level — each organization's data is logically separated using tenant-scoped queries.

We conduct regular security reviews of our codebase and infrastructure.

Your Rights

Access: You can view all data we hold about your organization through the AskWingo application.

Deletion: You can delete your data by disconnecting sources or closing your account.

Portability: Contact us to request an export of your data.

Contact

For privacy-related questions, contact: support@askwingo.com