Privacy

Privacy Policy

Last updated: March 2, 2026

Finalization required: replace bracketed placeholders (for legal entity, contact details, governing law, and jurisdictions) before publishing publicly.

1. Who we are

This policy describes how CarlyOS Inc. ("we", "us", "our") handles personal data when you use Vynance. Our website is https://www.vynance.ca. You can contact us at support@vynance.ca.

2. Scope

This policy applies to account creation, sign-in, onboarding, integrations, inventory and financial operations, document intake, and support interactions.

3. Data we collect

  • Account and profile data: first name, last name, date of birth, email, phone, authentication metadata, and role/membership data.
  • Business data: business name, industry, business address/place metadata, and configuration context.
  • Integration data: provider connection metadata, encrypted access/refresh tokens, scopes, sync cursors, sync timestamps, and integration status/error records.
  • Financial and operations data: income events, normalized transaction records, external identifiers, and associated metadata.
  • Document and intake data: uploaded files, email-ingested attachments, parsed structured fields, and draft processing state.
  • Technical data: device/browser information, request logs, security and troubleshooting telemetry.

4. How we use data

  • Provide, secure, and maintain the service.
  • Authenticate users and enforce role-based permissions.
  • Enable and operate third-party integrations requested by users.
  • Process operational records such as financial and inventory events.
  • Monitor reliability, detect abuse, and improve product performance.
  • Comply with legal and regulatory obligations.

5. Legal bases

Where applicable, we process data based on contract performance, legitimate interests, consent (where required), and compliance with legal obligations.

6. Sharing and disclosure

We may disclose data to:

  • Infrastructure and cloud providers that host core service components.
  • Integration providers that you choose to connect.
  • Service providers supporting email/document intake and delivery.
  • Professional advisors and authorities when legally required.
  • Successors in connection with merger, sale, or restructuring events.

7. International transfers

Data may be processed in countries outside your own. Where required, we use contractual and operational safeguards for cross-border transfers.

8. Retention

We retain data for as long as needed to provide the service, meet legal requirements, resolve disputes, and enforce agreements. Retention windows should be formalized internally by category (account, operational, financial, integration, and security logs).

9. Security

We use technical and organizational safeguards designed to protect data, including access controls and encrypted storage of sensitive integration credentials. No method of transmission or storage is completely secure.

10. Your rights

Depending on your location, you may have rights to access, correct, delete, export, or restrict certain processing, and to object to specific processing activities. You may also have rights related to targeted advertising and sale/share concepts under local law.

11. Children

The service is not intended for children under 18. Do not use the service if you are below the minimum age required in your jurisdiction.

12. Changes to this policy

We may update this policy from time to time. Material updates will be posted with a revised effective date.

13. Contact and requests

For privacy requests, contact support@vynance.ca. For general support, contact support@vynance.ca. Postal contact: [INSERT LEGAL MAILING ADDRESS]. You may also submit complaints to your local data protection or consumer authority where applicable.

Back to homeTerms