Privacy Policy & Data Protection

This privacy policy was last updated on March 1, 2025

ParseVault is a service provided by MTTenterprise Inc., a company registered and operating in Ottawa, Ontario, Canada. Our main office is located at 201-1525 Alta Vista DR, Ottawa, Ontario K1G 0G1.

This privacy policy explains how we collect, use, disclose, and safeguard your information when you use our bank statement conversion service.

ParseVault allows users to convert bank statements from PDF, scanned PDF, or image formats to CSV, Excel, Xero, QuickBooks, or Word formats for easier financial management and record-keeping.

Our service is designed to securely process financial documents while maintaining the highest standards of privacy and data protection.

We comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada. For users from other jurisdictions, we also strive to comply with applicable local laws including the General Data Protection Regulation (GDPR) in the European Union and the California Consumer Privacy Act (CCPA) in California.

Our practices are regularly reviewed to ensure ongoing compliance with evolving privacy regulations worldwide.

Information We Collect

• • Device identification (browser fingerprint and device ID)
• • IP address and geographic location
• • Browser type and operating system
• • User agent information
• • Usage statistics and conversion history

Bank Statement Processing

• • PDF bank statements, scanned PDFs, and scanned images are processed on our secure servers
• • Files are converted to CSV, Excel, Xero, QuickBooks, or Word formats
• • All processing follows strict security protocols
• • Files are stored according to your subscription plan's retention period
• • Data may be used in anonymized form to improve our conversion algorithms

Usage Tracking

• • Daily and monthly usage monitoring
• • Conversion history for registered users
• • Anonymous analytics for service improvement

Technical Security

• • 256-bit SSL/TLS encryption for all data transmission
• • Secure file upload and download protocols
• • Encrypted storage systems with AES-256 encryption
• • Regular penetration testing and security audits
• • Multi-factor authentication for administrative access

Data Protection

• • Secure server infrastructure in GDPR compliant data centers
• • Strict access controls and authentication protocols
• • Regular security updates and vulnerability patching
• • Data is isolated and segmented by customer
• • 24/7 infrastructure monitoring and anomaly detection

Your Rights

• • Access to your personal data and conversion history
• • Request correction of inaccurate information
• • Request complete deletion of your account and associated data
• • Download your data in a portable format
• • Opt-out of service improvements using your data
• • Business users can request audit logs of data access

Data Retention

Files are retained according to your subscription plan as outlined below. You may request earlier deletion at any time.

After the retention period, files are automatically and permanently deleted from our systems. We may retain anonymized, non-identifiable data derived from processing for service improvement purposes. Business and Enterprise customers can establish custom retention policies or opt out of extended retention.

Our service uses cookies and similar technologies to enhance your experience and improve our services:

• • Essential cookies to maintain your session state and security
• • Preference cookies to remember your settings and choices
• • Analytics cookies to understand how our service is used
• • Performance cookies to optimize service delivery

You can manage cookie preferences through your browser settings. Disabling certain cookies may limit functionality of our service.

Payment Processing

• • Stripe payment processing for secure transactions
• • Payment information is not stored on our servers
• • Credit card details are handled directly by Stripe
• • We receive only transaction confirmations, not payment details

Analytics & Monitoring

• • Anonymous usage analytics to improve service
• • Performance monitoring for system reliability
• • Error tracking and reporting for issue resolution

Data Processing Agreements

For Business and Enterprise customers, we offer Data Processing Agreements (DPAs) to formally establish roles and responsibilities regarding data protection. Contact our Data Protection Officer to request a DPA.

In the unlikely event of a data breach affecting your personal information, we will:

• • Notify you within 72 hours of discovery
• • Provide details about the nature of the breach
• • Outline steps we've taken to mitigate the impact
• • Recommend actions you can take to protect yourself
• • Report to relevant regulatory authorities as required by law

We maintain a comprehensive incident response plan that is regularly tested and updated to ensure prompt and effective action in case of any security incidents.

Our service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a minor, please contact us immediately, and we will take steps to remove that information from our servers.

We may update this Privacy Policy periodically to reflect changes in our practices, service offerings, or regulatory requirements. We will notify registered users of significant changes by email and post notices on our website at least 30 days before the changes take effect.

Continued use of our service after policy updates constitutes acceptance of the revised terms. We encourage you to review our Privacy Policy regularly.

Our services are hosted on servers located in Canada. If you are accessing our services from outside Canada, please be aware that your information may be transferred to, stored, and processed in Canada where our servers are located.

We implement appropriate safeguards to ensure that your personal data remains protected in accordance with this Privacy Policy, regardless of where it is processed or stored.