Privacy Policy

Last updated: June 24, 2026

Flatbooks helps bookkeepers and accounting firms consolidate a client’s multiple QuickBooks Online companies — finding the exact intercompany break and, with your approval, posting the correcting entry back to QuickBooks. This policy explains what we collect, how we use it, and the choices you have.

Information we collect

  • Account information — your name and email, handled through our authentication provider when you sign up.
  • Workspace data — the clients (consolidation groups), connected companies, and account mappings you create.
  • Billing information — handled by our payment processor. We never see or store your full card number.
  • Diagnostics — error reports and basic product analytics, used to keep the service working and improve it.

Your QuickBooks data

When you connect a QuickBooks Online company, you authorize Flatbooks — through Intuit’s API — to access that company’s accounting data: its trial balance, balance sheet, profit & loss, and chart of accounts. We use this only to build the consolidation, detect intercompany breaks, and produce the export.

The one-click fix writes a single correcting journal entry back to a company — and only after you have reviewed and approved the exact entry. You can undo a posted fix. We request the minimum scope needed (accounting only). We store the OAuth tokens Intuit issues — encrypted at rest — never your QuickBooks username or password.

How we use it

To provide the service (consolidate, detect, fix, export), process billing, provide support, and keep the service secure and reliable. We do not sell your data or your clients’ data, and we do not use it for advertising.

Storage & security

QuickBooks tokens are encrypted at rest (AES-256-GCM). Data is transmitted over HTTPS. Connection and financial data is accessible only by our server, never exposed to the browser.

Service providers

We rely on a small set of providers, each processing data only to perform their function:

  • Intuit (QuickBooks Online) — the source of the accounting data you connect.
  • Authentication, payments, database, hosting, and error monitoring providers — to sign you in, bill you, store your workspace data, run the app, and detect faults.

Your choices

  • Disconnect any time — disconnecting a company revokes Flatbooks’ access at Intuit and removes the connection.
  • Delete your account — delete it yourself any time from Account settings; this revokes Flatbooks’ QuickBooks access and permanently removes your data. You can also email us.
  • Access & correction — email us to access or correct your information.

Data retention

We retain your workspace and connection data while your account is active. When you disconnect a company we remove the connection and revoke the token; when you delete your account we delete your data.

Changes

We may update this policy; we’ll revise the date above when we do.

Contact

Questions about privacy: founder@flatbooks.io. See also our Terms of Service.