Look, we get it - privacy policies aren't exactly beach reading. But when you're dealing with cross-border tax stuff and international finances, you deserve to know exactly what happens with your information. So we're gonna be straight with you.
At Krythveil Odyssey Accounting, we're in the business of helping folks navigate the messy world of international tax and cross-border business. That means you're trusting us with some pretty sensitive stuff - financial data, business plans, personal tax info. We don't take that lightly.
This policy spells out what we collect, why we need it, how we protect it, and what rights you've got when it comes to your data. We follow PIPEDA regulations here in Canada, plus we're mindful of international standards since, well, that's kinda our thing.
When you work with us, we'll need the basics - your name, address, phone number, email. Pretty standard stuff. But depending on your situation, we might also need:
We only ask for what we actually need to do the job right.
Here's where it gets into the nitty-gritty. To handle international tax planning and compliance, we'll collect:
When you visit our website or use our cloud accounting platforms, we automatically collect some technical info:
This helps us keep things secure and improve your experience.
We're not collecting this stuff for fun. Here's what we actually do with your information:
Preparing tax returns, structuring cross-border businesses, providing compliance advice, handling your international tax planning - basically, doing what you're paying us for.
Meeting our professional obligations, responding to tax authorities when required, maintaining records as mandated by law in multiple jurisdictions.
Sending you updates about deadlines, tax law changes that affect you, appointment reminders, and responding to your questions.
Analyzing how our digital tools are working, figuring out where we can serve you better, and staying ahead of international tax developments.
We've designated a Privacy Officer who's responsible for making sure we follow through on everything in this policy. Any questions or concerns about your data? They're your go-to person.
Privacy Officer Contact: privacy@krythveilodyssey.info
Before we collect any personal info, we'll tell you why we need it. Whether it's for tax filing, business structuring, or compliance reporting - you'll know upfront. No surprises.
We need your consent to collect, use, or share your personal information. Sometimes that's implied (like when you hire us to do your taxes), and sometimes we'll ask explicitly, especially for sensitive stuff or new purposes.
You can withdraw consent anytime, though that might limit what services we can provide. Can't really file your tax return without, y'know, your tax info.
We only collect what we legitimately need. Yeah, international tax gets complicated and sometimes we need a lot of info, but we're not gonna ask for your childhood pet's name unless it's somehow relevant to your cross-border tax situation (spoiler: it's not).
Your data is used only for the purposes we told you about, unless you consent to something else or the law requires it. We keep it as long as we need to (see retention section below), and then it's securely destroyed.
We do our best to keep your info accurate and up-to-date. If something changes - you move, change your business structure, whatever - let us know. Wrong info leads to wrong advice, and nobody wants that.
We protect your information with security measures appropriate to how sensitive it is. That means encryption, secure servers, access controls, regular security audits - the whole deal. More details in the security section below.
This whole policy is us being open about our practices. We're not hiding anything. Got questions about how we handle data? Ask us. We'll give you straight answers.
You've got the right to know what personal info we hold about you and how we're using it. Just ask. We'll provide it within 30 days, subject to some legal exceptions.
Think we're not following our own policy? You can challenge us on it. Contact our Privacy Officer first. If you're not satisfied with how we handle it, you can escalate to the Office of the Privacy Commissioner of Canada.
We take security seriously. When you're dealing with cross-border financial data, you kinda have to. Here's what we do to keep your info safe:
All data is encrypted both in transit (using TLS/SSL) and at rest. Your files on our servers are scrambled up tight.
Multi-factor authentication, role-based access, and strict authorization protocols. Only folks who need access get it.
We use enterprise-grade cloud platforms with redundant backups, firewalls, intrusion detection, and regular security audits.
Our team receives regular training on privacy, security, and how to spot phishing attempts or other threats.
We maintain detailed logs of who accessed what and when. If something looks fishy, we can trace it.
We've got protocols in place to respond quickly if there's ever a security incident. You'd be notified promptly if your data was affected.
We can't keep your data forever, but we also can't just delete it right away. There are legal requirements here, especially in the accounting world.
| Type of Information | Retention Period | Reason |
|---|---|---|
| Tax Returns & Supporting Documents | 7 years minimum | CRA requirement, plus most other tax authorities have similar rules |
| Corporate Financial Records | 7-10 years | Provincial business corporations acts, IFRS/ASPE requirements |
| Client Files & Correspondence | Duration of relationship + 7 years | Professional standards and potential liability claims |
| Website Analytics & Usage Data | 26 months | Standard practice for analytics purposes |
| Marketing Communications Data | Until you unsubscribe + 1 year | To honor your preferences and maintain records |
| M&A Advisory & Valuation Work | 10 years | Professional liability and business transaction complexity |
After these retention periods, we securely destroy or anonymize your data. "Securely destroy" means it's gone - not just deleted, but properly wiped so it can't be recovered.