Privacy Policy

Effective date: May 27, 2026 Last updated: May 27, 2026

This Privacy Policy describes how SoloCFO LLC ("SoloCFO," "we," "our," or "us") collects, uses, stores, and protects information when you engage us for fractional CFO services or when we connect SoloCFO's internal tooling to third-party financial systems on your behalf, including but not limited to Intuit QuickBooks Online.

SoloCFO is a single-practitioner fractional CFO practice operated by Adam Peaker. The "Service" described in this policy refers to SoloCFO's internal data-access tooling — including OAuth-authorized connections to client accounting platforms — used solely to deliver advisory, analysis, and reporting services to clients who have engaged the practice under a written engagement letter. The Service is not a publicly available product, has no end users beyond the practitioner, and is not offered or marketed to consumers.

1. What we access and collect

When you authorize SoloCFO's tooling to connect to your QuickBooks Online company (or a comparable accounting platform), we access information available through the platform's authorized API scopes, which may include: chart of accounts; transactional data such as invoices, bills, expenses, journal entries, deposits, and payments; customer and vendor records; financial reports including balance sheet, profit and loss, trial balance, and aging schedules; and basic company-profile information.

We do not collect government-issued identifiers, full bank account or card numbers, or other sensitive personal information beyond what the accounting platform itself surfaces through its standard API.

We do not use cookies, web beacons, analytics scripts, or behavioral tracking. The Service is not a website.

2. How we use the information

Information accessed through authorized connections is used exclusively to perform the fractional CFO services contemplated by our engagement with the client, including financial close support, variance analysis, cash flow forecasting, reconciliation, audit support, board and lender reporting, and related advisory work. Information is reviewed and processed by the practitioner directly. We do not sell, rent, or trade client data, and we do not use client data for marketing, model training, advertising, or any purpose unrelated to the engagement.

3. Where data is stored and who can access it

Authorized OAuth refresh tokens and intermediate working files are stored locally on the practitioner's encrypted workstation. We do not operate a multi-tenant cloud database, and we do not maintain shared servers that store aggregated client financial data. Where cloud services are used in the ordinary course of professional work (for example, Google Workspace for documents, Notion for engagement notes), they are operated under the practice's own accounts under standard provider terms, and only data the client has explicitly placed in those systems (such as a shared report or a working file) is stored there. The practitioner is the sole individual with routine access. Subcontractors, if any, are bound by written confidentiality terms before any access is granted.

4. Sharing with third parties

We do not share client data with third parties except: (i) with the client's express direction, such as forwarding a report to a lender or board member the client identifies; (ii) to the extent strictly necessary to provide services the client has requested and that require a third-party processor (for example, the accounting platform itself); or (iii) where required by law, subpoena, or other legally enforceable process, in which case we will, where lawful, notify the affected client.

5. Retention and deletion

Data accessed through OAuth connections is retained only as long as required to deliver the engagement and to satisfy professional record-keeping standards customary for accounting and advisory work. Upon termination of an engagement, the client may request revocation of OAuth access at any time, and we will promptly revoke the corresponding refresh tokens and remove cached local credentials. Working papers and prior deliverables may be retained for a reasonable period thereafter consistent with professional practice and applicable legal requirements; a client may request earlier deletion in writing.

6. Security

We maintain commercially reasonable administrative and technical safeguards proportionate to the size of the practice, including full-disk encryption on workstations, strong authentication, scoped OAuth tokens with platform-side revocation available to the client at any time, restricted local credential files, and segregation of client data by engagement. No method of electronic storage or transmission is perfectly secure. If we become aware of a security incident materially affecting a client's data, we will notify the affected client without unreasonable delay.

7. Your rights and choices

You may at any time, and without affecting our underlying engagement, revoke SoloCFO's authorized access to your QuickBooks Online company directly through Intuit's account-management interface, or to any other connected platform through that platform's equivalent controls. You may request a summary of what categories of your data SoloCFO currently has access to, request correction of any factual error in materials we have prepared, or request deletion of data we hold subject to the retention principles in Section 5. Requests should be sent to the contact address below.

8. International users

SoloCFO operates from and stores data in the United States. If you engage us from outside the United States, you understand that your data will be processed in the United States under U.S. law.

9. Children

The Service is not directed to and not used by individuals under the age of 18. We do not knowingly collect data from minors.

10. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page will reflect the most recent revision. Material changes affecting active client engagements will be communicated directly to the affected client.

11. Contact

Questions about this Privacy Policy, requests under Section 7, or notice of a suspected security issue should be directed to:

Adam Peaker SoloCFO LLC adam@solocfo.com