Privacy Policy

CAMarketplace ("we", "us") respects your privacy. This Policy describes how we collect, use, store, and share personal information in connection with our marketplace platform for Chartered Accountant services. By using the Platform, you acknowledge this Policy. If you do not agree, please do not use the Platform.

We may collect:

• Account & profile data: name, email address, phone number where provided, role (e.g. client, firm admin, associate), organization affiliation, and similar identifiers you or your administrator supply.
• Engagement data: service requests, messages exchanged through the Platform, uploads you attach to requests (for example documents relevant to tax or compliance work), status history, and audit-style logs needed to run the product.
• Technical data: IP address, device and browser type, approximate location derived from IP, timestamps, and diagnostic information when you use the site or APIs.
• Payment-related data: where payments are enabled, our payment partners may process card or bank details; we typically receive limited tokens or confirmation metadata rather than full card numbers.

We use personal information to:

• Create and secure accounts, authenticate users, and enforce role-based access.
• Operate the marketplace: display firm profiles and services, route requests, notify relevant users, and provide dashboards and reporting features.
• Communicate with you about the service (e.g. security alerts, OTPs for signup or password reset, and operational notices).
• Comply with law, respond to lawful requests, and protect rights, safety, and integrity.
• Improve reliability and security of the Platform, including analytics in aggregated form.

We do not sell your personal information. We may share data with service providers who help us host the application, send email, process payments, or store files—under contracts that require appropriate protection and use only for our instructions.

Information you submit in a service request may be visible to the firm(s) and users involved in fulfilling that request, as designed by the product. Platform administrators may access data as needed for onboarding, verification, support, and compliance.

We may disclose information if required by law, court order, or governmental request, or to enforce our terms and policies.

We retain personal information for as long as your account is active, as needed to provide the service, and as required by law or legitimate business needs (such as dispute resolution and backups). Retention periods may vary by data category; we delete or anonymize data when it is no longer needed for these purposes, subject to legal holds.

We implement technical and organizational measures appropriate to the nature of the data we process—including encryption in transit where standard for web applications, access controls, and secure handling of credentials. No method of transmission or storage is 100% secure; we encourage strong passwords and protecting your login details.

Depending on where you live, you may have rights to access, correct, delete, or export certain personal data, or to object to or restrict certain processing. To exercise these rights, contact us through the channel provided in the Platform or through your organization administrator. We will respond in line with applicable law.

We use cookies and similar technologies that are essential for sign-in sessions and security, and may use additional cookies or local storage for preferences or analytics where enabled. You can control cookies through your browser settings; disabling some cookies may limit functionality.

The Platform is not directed at children under 16 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have, please contact us so we can delete it.

We may update this Privacy Policy to reflect product, legal, or regulatory changes. We will post the revised version with an updated "Last updated" date. Where appropriate, we will provide additional notice (for example via email or an in-app message).

For privacy-related questions or requests, use the contact method provided to your organization or the support details shown in the application. Data protection queries from firm administrators may be routed through platform operator channels where applicable.