Privacy Policy – CA PRO Toolkit (Updated)
CA PRO Toolkit ("we", "our", "us") is a single-purpose professional productivity Chrome extension built exclusively for Chartered Accountants, audit professionals, and compliance teams to manage statutory, audit, and compliance work through one unified workflow.
It supports user-initiated features including AI Audit Scan (OCR) and audit history, compliance reminders/alerts, compliance assistance, accounting intelligence, tax work tracking, and firm collaboration (join firm via join code and admin-managed workflow).
This Privacy Policy explains what data we collect, how we use it, what we do not do, and what choices you have when you use the CA PRO Toolkit extension and connected services ("Service").
Information We Collect
We collect only the information required to provide the compliance workflow features described above.
1.1 Authentication & Account Information
When you sign in using OTP:
- Email address (used for OTP sign-in and account identity).
- Authentication/session tokens (e.g., JWT or similar) to keep you signed in.
- Role and firm membership (e.g., admin/member) to enforce access controls in firm features.
1.2 Firm & Workspace Information
If you create or join a firm:
- Firm details you provide (e.g., firm name/handle/practice areas).
- Join code usage (to link a user to a firm under one admin).
- User management and assignments necessary for the firm's compliance workflow.
1.3 Tasks, Reminders & Compliance Workflow Data
To run your workflow, we process and store:
- Tasks and task status/metadata (e.g., title, due date, assignment, completion).
- Compliance reminders you create (reminder type, due date, and optional client label).
- Data needed to show "My Tasks" and firm work views.
1.4 AI Audit Scan (OCR) Data
When you explicitly run AI Audit Scan:
- Content you submit for OCR/audit scanning (typically an image/PDF/text selected by you).
- Generated scan output (extracted text/findings/flags) and scan history as part of the workflow.
- User control: Audit scan history can be deleted by the user from within the product features.
1.5 Browser/Extension Storage
The extension may store limited data locally (Chrome storage) for usability:
- Login state and session tokens
- Settings (e.g., OCR language, preferences)
- Feature state required for the workflow
1.6 Technical & Diagnostic Data
We may collect limited technical logs to keep the Service reliable and secure:
- Extension version and browser type
- Basic error logs and performance metrics
- API usage statistics for debugging
What We Do NOT Collect / What We Do NOT Do
We are a single-purpose professional tool with strict limitations:
We do not provide entertainment, advertising, content blocking, or browsing modification.
We do not inject ads, automatically alter webpages, or track users across websites for advertising.
We do not intentionally collect full browsing history or keystrokes across unrelated websites.
The extension's page overlay/content script exists to support user-initiated workflow actions (e.g., running audit scan), not passive monitoring.
How We Use Your Information
We use collected data strictly to provide and improve the Service:
Authentication
Provide OTP sign-in, firm membership, and role-based access.
Workflow Management
Run compliance workflows: tasks, reminders/alerts, and work tracking views.
AI Audit Processing
Perform AI Audit Scan processing you explicitly request and show results/history.
Notifications
Send reminders/alerts that you configure (e.g., scheduled compliance reminders).
Security & Reliability
Maintain security, prevent abuse, and improve reliability (debugging/diagnostics).
We Do Not Sell Your Data
We do not sell or rent personal data to advertisers or data brokers.
Permissions & Why They're Needed
CA PRO Toolkit requests the following permissions only to support the compliance workflow:
All permissions are used exclusively for the core functionality of the CA PRO Toolkit compliance workflow.
Data Sharing & Third Parties
Data Retention & Deletion
Retention Period
We retain data only as long as needed to provide the Service and meet legal/security requirements.
User Deletion Rights
Users can edit/delete tasks and reminders within the product. Users can delete AI audit scan history from the product features.
User Controls
Edit/Delete Data
Edit or delete tasks, reminders, firms and client entries directly from the extension or admin dashboards.
Uninstall Extension
Uninstalling the extension stops new extension-side data storage and removes local extension data from the browser.
Request Deletion
Contact us to request deletion of your account and associated backend data.
Security
We use reasonable security measures to protect your information:
HTTPS encryption in transit for all API communication
OTP-based authentication and secure session management
Role-based access controls for firm features
Regular security reviews and monitoring
We implement reasonable technical and organizational measures to protect your information. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.
Children's Privacy
The Service is intended for adult professionals and is not directed to children.
We do not knowingly collect personal information from children. If you believe a child has used CA PRO Toolkit and provided personal data, please contact us and we will delete it.
Changes to This Policy
We Update Policy
We may update this Privacy Policy as features evolve.
Update Date
We will change the "Last updated" date at the top of this page accordingly.
Your Continued Use
Your continued use of CA PRO Toolkit after changes become effective means you accept the updated Policy.
Contact Us
If you have questions or deletion requests, contact us at:
Website
https://caprotoolkit.inWe will do our best to respond within a reasonable time and help you with any privacy-related query.
Download Privacy Policy
Save a copy of this Privacy Policy for your records