Privacy Policy — Beil Audit

Beil Audit ("we", "us") provides a continuous AI-assisted audit platform to enterprise customers. This policy explains what data we collect, how we use it, and your rights.

Data we process

Account data — email, display name, role, authentication metadata.
Customer financial data — journal entries, invoices, usage logs, and contracts uploaded by your organization.
Audit artifacts — rule versions, flags, auditor rationale, evidence exports (SHA-256 hashed for chain-of-custody).
Operational telemetry — request logs, error reports, and security events.

How we use it

Solely to operate the audit platform you've engaged us to provide: ingestion, rule evaluation, anomaly detection, evidence generation, support, and platform security. We do not sell personal data.

Storage & security

Data is stored encrypted at rest and in transit. Access is gated by role-based access control and row-level security. Production access is limited to authorized personnel and logged.

Retention

Customer data is retained for the duration of your subscription plus the audit-evidence retention period required by your engagement letter (typically 7 years per PCAOB AS 1215).

Your rights

Contact privacy@beilaudit.com for access, correction, export, or deletion requests subject to applicable regulatory retention obligations.

Subprocessors

We use vetted infrastructure providers for hosting, database, and observability. A current subprocessor list is available on request.