← CFO Warren

Last updated · May 14, 2026

Privacy Policy

CFO Warren, Inc. (“CFO Warren”, “we”, “us”) takes your financial data seriously. This Policy explains what we collect, why, who else touches it, how long we keep it, and what control you have. It applies to your use of cfowarren.com and the CFO Warren service.

1. What we collect

Account information you give us

  • Email address, phone number, and (optionally) Google identity used to sign in.
  • Business name, website, a short description of what your business does, and your stated goals and priorities when you tell Warren about them.

Financial data from your connected accounts

  • QuickBooks Online: chart of accounts, transactions, invoices, bills, accounts receivable and payable, profit and loss, and balance sheet — read-only.
  • Banking via Plaid: account balances, transaction history, and account metadata for accounts you connect — read-only.
  • Stripe: payment activity for your subscription to this Service.

Conversation history

  • Every message between you and Warren (SMS, voice transcript, or web chat), including the tools Warren called on your behalf and the responses from those tools.

Automatically collected

  • IP address, approximate location derived from IP, device/browser metadata, and timestamps.
  • Aggregated usage analytics (which features are used, latency, error rates).
  • Logs from our infrastructure and AI-model calls (token counts, costs, model used).

2. Why we use it

  • To run the Service — answer your questions, generate forecasts, flag anomalies, send weekly summaries.
  • To bill you — manage your subscription, process monthly payments, send receipts.
  • To improve the Service — measure where Warren is right and where it’s wrong, refine prompts and tooling. We do this on data attributed to your account only when you have not opted out of product research review (see Section 5).
  • Security and abuse prevention — rate-limiting, anomaly detection on our systems, investigating suspected fraud or misuse.
  • Required by law — to comply with subpoenas, court orders, or other legal obligations.

We do not sell your data, and we do not show third-party advertising in the Service.

3. Sub-processors who help us run the Service

We rely on the following vendors. Each accesses only the data they need to do their job, under data processing terms appropriate to that role.

  • Supabase — primary database and authentication (PostgreSQL hosted in the United States).
  • Vercel — application hosting and edge networking.
  • Anthropic / Google — large-language-model inference for Warren’s reasoning and responses. Inputs are sent to the active provider; outputs are returned to us.
  • Twilio — SMS and voice delivery.
  • Plaid — bank-account connection and transaction sync (when you choose to connect a bank).
  • Intuit / QuickBooks Online — accounting-data access (when you choose to connect QuickBooks).
  • Stripe — subscription payments and billing.
  • Cloudflare — DNS, edge security, file storage for generated reports.
  • PostHog / Sentry — product analytics and error tracking.

4. Security

See our Security page for the full picture. Briefly:

  • OAuth tokens (QuickBooks, Plaid, etc.) are encrypted at rest at the application layer with AES-256-GCM before they reach the database.
  • All traffic between you and us is encrypted in transit (TLS).
  • Database-level row security isolates each customer’s data — no customer can read another customer’s row.
  • Service-role access is restricted to the people who need it for incident response. Access is logged.

5. Your choices and rights

If you have an account, manage the toggles described below at cfowarren.com/account/privacy.

  • Access and export. Email legal@cfowarren.com to request a copy of your data.
  • Correction and deletion. You can correct profile information from inside the Service. To delete your account and the associated data, email us.
  • Disconnect integrations. Revoke QuickBooks, Plaid, or Stripe access from inside the Service or directly with the provider. We will stop pulling data on revocation.
  • Anonymized benchmark inclusion. By default we include your business in anonymized aggregate benchmarks (for example, “service businesses in your revenue band carry X days of AR on average”). You can opt out from your settings.
  • Model improvement. By default we may review your account’s data when diagnosing or improving the Service. You can opt out from your settings; some debugging-related access is required to operate the Service.
  • Marketing. We will only email you about your account and the Service unless you opt into marketing emails. You can unsubscribe at any time.

6. Data retention

  • Active account: we keep data as long as your account is active.
  • Deleted account: we delete or anonymize identifiable account data within 30 days of deletion, except where we are required to retain records longer for tax, legal, or fraud-prevention reasons.
  • Backups: a deleted record may persist in encrypted backups for up to 90 days before being overwritten.
  • LLM provider logs: our inference vendors may retain inputs and outputs for short periods per their own retention policies. We do not control those windows; see Anthropic’s and Google’s privacy documentation.

7. Children

The Service is for businesses operated by adults. It is not directed to children under 18, and we do not knowingly collect data from anyone under 18. If you believe we have, contact us and we will delete it.

8. International users

The Service is operated from the United States. If you access the Service from outside the United States, your data will be transferred to and processed in the United States.

9. Changes to this Policy

We may update this Policy over time. If a change materially expands how we use your data, we will notify you by email and in the Service before it takes effect.

10. Contact

Privacy questions, data-access requests, or deletion requests: legal@cfowarren.com.