Privacy Policy for Mohasib Friend

• Personal Information: Full name, date of birth, gender.
• Contact Information: Email address, postal address, phone number.
• Government Identifiers: Social Security Number (SSN), Tax Identification Number (TIN), Employer Identification Number (EIN), and other relevant tax registration numbers.
• Financial Information: Bank account details, credit card information, payment method details used for subscriptions and transactions.
• Uploaded Content: Tax returns, financial statements, invoices, receipts, and other related documents.
• Account Information: Username, password, and security questions.

• Usage Data: Pages visited, features used, time spent on the platform, and navigation paths.
• Device Information: Device type (e.g., mobile, desktop), operating system, browser type, IP address, and unique device identifiers.
• Technical Data: Server logs, error reports, and other diagnostic information.
• Cookies and Similar Technologies: Session cookies, persistent cookies, and other tracking technologies to manage user sessions, analyze usage patterns, and personalize your experience.

• Government and Regulatory Authorities: Data from tax portals, regulatory filings, and official records as authorized by you.
• Service Providers: Information from payment processors, cloud service providers (e.g., AWS), and other partners who assist us in delivering our services.
• Business Partners: Information shared with us through collaborations or partnerships that enhance our platform's functionality.

• Account Management: Creating and managing your account, providing customer support, and handling authentication and security.
• Service Delivery: Processing tax filings, generating financial reports, managing documents, and other core platform functionalities.

• Billing and Payments: Processing subscription fees, refunds, and other financial transactions securely through trusted payment processors.

• Enhancing Features: Analyzing usage data to improve existing features, develop new functionalities, and optimize user experience.
• Performance Optimization: Monitoring system performance and implementing improvements to ensure the platform operates efficiently.

• Notifications and Alerts: Sending important updates, reminders, promotional materials, and support communications via email, SMS, or in-app messages.

• Regulatory Compliance: Fulfilling tax reporting requirements, responding to legal requests, and adhering to industry-specific regulations.

• Security Measures: Detecting and preventing unauthorized access, fraud, and other malicious activities to safeguard the platform and its users.

• Innovation: Conducting research to develop new services, improve existing offerings, and enhance overall platform security and performance.

• Payment Processors: To handle transactions securely.
• Cloud Service Providers: For data storage and platform hosting (e.g., AWS).
• Email Service Providers: To send communications and notifications.
• Analytics Providers: To analyze usage patterns and improve our services.

These service providers are contractually obligated to protect your information and are prohibited from using it for any other purposes.

• Law Enforcement Requests: Responding to subpoenas, court orders, or legal investigations.
• Regulatory Compliance: Fulfilling obligations under tax laws, financial regulations, and other relevant statutes.
• Protection of Rights: Enforcing our terms of service, protecting our rights, and ensuring the safety of our users and the public.

• In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity. We will notify you via email or prominent notice on our platform if such a transfer occurs.

• We may share your information with third parties if you have explicitly given us permission to do so for specific purposes.

• We may share aggregated or anonymized data that does not personally identify you for research, analysis, or other business purposes.

Important: We do not sell your personal information to third parties for their marketing or other unrelated purposes.

• Data in Transit: All data transmitted between your device and our servers is encrypted using SSL/TLS protocols.
• Data at Rest: Sensitive data stored on our servers is encrypted using industry-standard encryption algorithms.

• Role-Based Access: Access to personal data is restricted based on employee roles and responsibilities.
• Authentication: Implementing strong authentication methods to verify user identities before granting access to sensitive information.

• Security Audits: Conducting regular security assessments and audits to identify and mitigate potential vulnerabilities.
• Monitoring: Continuous monitoring of systems for suspicious activities and unauthorized access attempts.

• Limited Collection: Collecting only the data necessary to provide and improve our services.
• Data Retention: Retaining personal data only for as long as needed to fulfill the purposes outlined in this policy.

• Immediate Action: Take swift measures to contain and mitigate the breach.
• Notification: Inform affected users and relevant authorities within the timeframe required by applicable laws.
• Remediation: Implement corrective actions to prevent future incidents.

• Ensuring that all employees are trained on data protection best practices, privacy policies, and security protocols to maintain a culture of data privacy and security.

• Essential Cookies: Necessary for the platform's functionality, such as maintaining user sessions and ensuring secure access.
• Performance Cookies: Collect information on how users interact with the platform to improve performance and user experience.
• Functionality Cookies: Remember your preferences and settings to provide a personalized experience.
• Advertising Cookies: Deliver relevant advertisements and measure the effectiveness of our marketing campaigns (if applicable).

• You have the option to manage or disable cookies through your browser settings. However, disabling essential cookies may affect the functionality of the platform and limit your ability to use certain features.

• Some third-party services integrated into our platform may use their own cookies. We are not responsible for the privacy practices of these external services. Please refer to their respective privacy policies for more information.

• You have the right to request access to the personal data we hold about you. This includes information about how your data is processed and for what purposes.

• You can request corrections to any inaccurate or incomplete personal data we hold about you.

• You may request the deletion of your personal data, subject to certain legal or contractual obligations that may require us to retain specific information.

• You can request that we limit the processing of your personal data in specific circumstances, such as when you contest the accuracy of your data or object to its processing.

• You have the right to receive your personal data in a structured, commonly used, and machine-readable format. You can also request that we transfer this data to another service provider.

• You can object to the processing of your personal data for certain purposes, including direct marketing or processing based on legitimate interests.

• You have the right not to be subject to decisions based solely on automated processing, including profiling, that significantly affect you.

• To exercise any of these rights, please contact us at support@mohasibfriend.com. We will respond to your request within the timeframe required by applicable laws.

• Personal Information: Retained for as long as your account is active or as needed to provide services.
• Financial Records: Kept for the duration required by tax laws and financial regulations, typically [Insert Specific Duration, e.g., 7 years].
• Transaction Data: Stored for a period necessary to process transactions and manage billing.
• Communications: Retained for the duration of your interaction with our support services and as needed for legal compliance.

• Permanent Deletion: Removing data from active databases and backups.
• Anonymization: Transforming data into a form that cannot be linked to you personally.

• In certain cases, we may be required to retain data beyond the usual retention periods to comply with legal obligations, resolve disputes, and enforce our agreements.

• Payment Gateways: For processing transactions securely.
• Cloud Services: For data storage and platform hosting (e.g., AWS).
• Tax Portals: For submitting and managing tax filings.
• Analytics Tools: For monitoring platform usage and performance.

• We are not responsible for the privacy practices of these external services. We encourage you to review the privacy policies of any third-party services you interact with through our platform.

• While we integrate with third-party services to provide our platform's functionalities, we ensure that any data shared is done in compliance with applicable laws and only to the extent necessary for service delivery.

• Primary Data Centers: [Insert Country or AWS Hosting Region]
• Third-Party Service Providers: Located in various jurisdictions as necessary for service provision.

• Standard Contractual Clauses (SCCs): Binding agreements that ensure data protection standards.
• Privacy Shield Certifications: (If applicable) Compliance with frameworks that facilitate secure data transfers.

• We ensure that international data transfers comply with all relevant data protection regulations, including GDPR, CCPA, and other applicable laws.

• Our platform is not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

• If we become aware that we have inadvertently collected personal data from a child under 18, we will promptly delete such information from our records.

• In cases where parental consent is required for minors to use our services, we will implement necessary verification measures to obtain and document such consent.

• GDPR Compliance: Adhering to the General Data Protection Regulation for users in the European Union.
• CCPA Compliance: Meeting the California Consumer Privacy Act requirements for users in California.
• Other Regulations: Complying with relevant national and international data protection laws applicable to our operations.

• Third-Party Breaches: We are not liable for unauthorized data access resulting from breaches of third-party service providers.
• User-Uploaded Errors: Users are responsible for the accuracy of the data they upload. Mohasib Friend is not liable for errors in user-submitted information or automated tax calculations.

• Users agree to indemnify and hold Mohasib Friend harmless from any claims, damages, losses, liabilities, and expenses arising from their use of the platform or violation of this Privacy Policy.

• No Warranties: Our platform is provided "as is" without any warranties regarding accuracy, reliability, or availability.
• Risk Assumption: Users assume all risks associated with the use of our services, including reliance on automated calculations and data management.

• We may update this Privacy Policy to reflect changes in our practices, legal requirements, or technological advancements. Updates may include modifications to sections, additions, or deletions.

• Significant Changes: We will notify users of significant updates via email, in-app notifications, or prominent notices on our website.
• Minor Changes: Less critical updates may be posted without direct notification, but users are encouraged to review the policy periodically.

• Continued use of Mohasib Friend after any changes to the Privacy Policy constitutes acceptance of the revised terms. If you do not agree with the updated policy, please discontinue using our services and contact us for data deletion.