← Back to I9AuditReady

Privacy Policy

Last updated: April 11, 2026

This Privacy Policy explains how I9AuditReady (“we,” “us,” or “our”) collects, uses, and shares information about you when you use our service at i9auditready.com. We are committed to protecting your privacy and handling your data transparently.

1. Information We Collect

We collect the following categories of information:

Account Information

When you create an account we collect your name and email address. If you sign in via a third-party provider (Google, GitHub, etc.) we receive the profile information that provider shares with us.

Payment Information

Payments are processed by Stripe. We do not store your full credit card number, CVV, or bank account details. We receive and store a Stripe customer ID, last-four digits of your card, card expiration date, and billing address for record-keeping and support purposes.

Usage Data

We automatically collect information about how you interact with the Service, including pages visited, features used, timestamps, session duration, and actions taken. This helps us improve the product and diagnose issues.

Technical Data

We collect your IP address, browser type and version, operating system, device type, and referring URL when you access the Service.

Content You Submit

We store any data, documents, or inputs you submit while using the Service in order to provide the Service to you. This content is associated with your account.

Communications

If you contact us by email or through a support form, we retain a record of that correspondence.

2. How We Use Your Information

We use the information we collect to:

  • Create and manage your account and provide the Service
  • Process payments and send billing-related communications
  • Send transactional emails (account confirmation, password reset, receipts)
  • Send product update emails and relevant feature announcements (you may opt out)
  • Respond to support requests and improve the user experience
  • Monitor for fraud, abuse, and security incidents
  • Comply with legal obligations
  • Aggregate and analyze usage patterns to improve the Service (using anonymized data)

We do not use your data to train AI or machine learning models without your explicit consent.

3. Information Sharing

We do not sell your personal information. We do not rent or trade your personal data to third parties for their marketing purposes.

We share your information only in the following circumstances:

  • Service Providers. We share data with vendors who process it on our behalf (e.g., Stripe for payments, Supabase for database hosting, SendGrid for transactional email). These providers are contractually bound to protect your data and may only use it to perform services for us.
  • Legal Requirements. We may disclose your information if required by law, court order, or government authority, or when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business Transfers. If I9AuditReady is acquired, merged, or sold, your data may be transferred as part of that transaction. We will notify you before your data is transferred and becomes subject to a different privacy policy.
  • With Your Consent. We may share your information for any other purpose with your explicit consent.

4. Cookies and Tracking

We use cookies and similar technologies to operate and improve the Service. Our use of cookies is limited to the following categories:

Essential Cookies

Required for the Service to function. These cookies manage your authentication session and cannot be disabled without breaking core functionality.

Analytics Cookies

We use privacy-respecting analytics to understand aggregate usage patterns. These cookies do not track you across third-party websites or build advertising profiles. You may opt out of analytics cookies in your account settings.

We do not use advertising cookies, retargeting pixels, or third-party behavioral tracking technologies.

You can control cookies through your browser settings. Disabling essential cookies will prevent you from logging in.

5. Data Retention

We retain your account data for as long as your account is active. If you close your account, we will retain your data for 30 days to allow for account recovery, after which it will be permanently deleted from our primary systems.

Backups may retain data for an additional 30-day rolling window. Financial transaction records are retained for 7 years as required by applicable tax and accounting laws.

You may request deletion of your data at any time by emailing privacy@i9auditready.com. We will process deletion requests within 30 days, subject to any legal retention obligations.

6. Data Security

We implement commercially reasonable technical and organizational measures to protect your data, including:

  • Encryption of data in transit using TLS 1.2 or higher
  • Encryption of data at rest (AES-256) via our database provider
  • Row-level security on database records
  • Access controls limiting employee access to production data
  • Regular security reviews of our codebase and infrastructure

No method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your information.

7. Your Privacy Rights

Depending on where you are located, you may have the following rights regarding your personal data:

All Users

  • Access the personal data we hold about you
  • Correct inaccurate data in your account settings
  • Delete your account and associated data
  • Export your data in a portable format
  • Opt out of marketing emails via the unsubscribe link in any email

California Residents (CCPA)

Under the California Consumer Privacy Act, California residents have the right to know what personal information we collect and how we use it, the right to delete personal information we have collected, the right to opt out of the sale of personal information (we do not sell personal information), and the right to non-discrimination for exercising these rights.

To submit a CCPA request, email privacy@i9auditready.com with the subject line “CCPA Request.” We will respond within 45 days.

EEA and UK Residents (GDPR)

If you are located in the European Economic Area or United Kingdom, you have additional rights under GDPR including the right to object to processing, the right to restrict processing, and the right to lodge a complaint with a supervisory authority. Our legal bases for processing include performance of a contract (providing the Service), legitimate interests (fraud prevention, security, product improvement), and your consent where applicable.

To exercise GDPR rights, email privacy@i9auditready.com with the subject line “GDPR Request.” We will respond within 30 days.

8. International Data Transfers

I9AuditReady is based in the United States. If you access the Service from outside the US, your data will be transferred to and processed in the United States. By using the Service you consent to this transfer.

For users in the EEA or UK, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission for international transfers where applicable.

9. Children's Privacy

The Service is not directed to children under 13 years of age, and we do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will delete that information promptly. If you believe we have inadvertently collected information from a child, contact us at privacy@i9auditready.com.

10. Third-Party Services

The Service integrates with the following third-party providers, each of which has its own privacy policy:

We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date at the top of this page and notify you by email or in-app notice at least 14 days before the changes take effect.

Your continued use of the Service after the effective date of the revised Policy constitutes your acceptance of the changes.

12. Contact Us

To exercise your privacy rights, ask questions, or report a concern, contact our privacy team:

I9AuditReady

{PHYSICAL_ADDRESS}

Privacy: privacy@i9auditready.com

Support: support@i9auditready.com

Terms of ServiceHome