Home

Privacy Statement for Audit Wrangler

Effective Date: August 9, 2025

At Audit Wrangler (accessible via https://auditwrangler.nl/), we are committed to protecting your privacy and ensuring the security of any data you provide while using our services. This Privacy Statement explains how we collect, use, disclose, and safeguard your information when you interact with our website and services. Our services are designed for accounting and auditing professionals to analyze XAF (XML Audit Files) files, including features such as file analysis, aggregations, drill-down functionalities, bookmarking, and PDF report generation.

We operate in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws in the European Union. If you have any questions about this Privacy Statement, please contact us at info@auditwrangler.nl.

1. Information We Collect

We collect information to provide and improve our services. The types of information we may collect include:

a. Information You Provide Directly

  • Uploaded Files: When you use our analysis tools, you may upload XAF files containing financial or auditing data. These files are processed solely for the purpose of providing the requested analysis and reports.
  • User-Provided Data: If you contact us via email or forms on the site (e.g., for support or feedback), we may collect personal information such as your name, email address, and any details included in your message.
  • Account Information: We collect registration details like email addresses and passwords, full user name and organization name.

b. Automatically Collected Information

  • Device and Usage Data: We may collect information about your device, browser type, IP address, operating system, and usage patterns (e.g., pages visited, time spent on the site) through server logs and similar technologies.
  • Cookies and Tracking Technologies: We use cookies and similar technologies to enhance your experience, such as remembering preferences and analyzing site traffic. Essential cookies are necessary for the site to function, while analytics cookies help us understand user behavior. You can manage cookie preferences through your browser settings. For more details, see our Cookie Policy section below.

We do not collect sensitive personal data (e.g., racial or ethnic origin, political opinions) unless it is inadvertently included in uploaded XAF files, in which case it is treated with the same protections as other data.

2. How We Use Your Information

We use the collected information for the following purposes:

  • To provide and maintain our services, including processing uploaded XAF files for analysis, generating reports, and enabling features like bookmarking and drill-down.
  • To communicate with you, such as responding to inquiries or sending service-related updates.
  • To improve our website and services, including analyzing usage trends and troubleshooting issues.
  • To ensure security and prevent fraud, such as monitoring for unauthorized access.
  • To comply with legal obligations, such as responding to lawful requests from authorities.

We process your data based on the following legal bases under GDPR:

  • Performance of a contract (e.g., providing analysis services).
  • Legitimate interests (e.g., site improvement and security).
  • Consent (e.g., for non-essential cookies or marketing communications, where applicable).

3. Sharing and Disclosure of Information

We do not sell your personal information. We may share your data in limited circumstances:

  • Service Providers: With trusted third-party vendors who assist us in operating the site (e.g., cloud hosting providers like AWS or analytics tools like Google Analytics). These providers are contractually obligated to protect your data and use it only for the services they provide to us.
  • Legal Requirements: If required by law, such as in response to a court order, subpoena, or regulatory request.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity, with continued privacy protections.

We do not share uploaded XAF files with third parties unless explicitly authorized by you or required by law.

4. Data Security

We implement reasonable technical, administrative, and physical safeguards to protect your information from unauthorized access, loss, or misuse. For example:

  • Uploaded files are encrypted in transit (via HTTPS) and at rest.
  • Access to data is restricted to authorized personnel only.
  • We regularly review and update our security measures.

However, no system is completely secure, and we cannot guarantee absolute security. In the event of a data breach, we will notify affected users and authorities as required by GDPR.

5. Data Retention

We retain your information only as long as necessary for the purposes outlined in this statement:

  • Uploaded XAF files and analysis results are deleted automatically after 90 days or upon your request.
  • Usage logs and analytics data are retained for up to 90 days for site improvement.
  • Personal data from inquiries is kept for as long as needed to resolve the issue, typically no longer than 6 months.

You can request deletion of your data at any time (see User Rights below).

6. Cookies and Tracking

We use the following types of cookies:

  • Essential Cookies: Required for core functionality, such as session management.
  • Analytics Cookies: To collect anonymized data on site usage (e.g., via Google Analytics).
  • Functional Cookies: To remember user preferences.

You can opt out of non-essential cookies via your browser settings or by using tools like the Google Analytics Opt-Out Browser Add-on. Note that disabling cookies may limit site functionality.

7. Your Rights Under GDPR

As a user in the EU or where GDPR applies, you have the following rights:

  • Access: Request a copy of your personal data.
  • Rectification: Correct inaccurate data.
  • Erasure: Request deletion of your data ("right to be forgotten").
  • Restriction: Limit processing in certain cases.
  • Objection: Object to processing based on legitimate interests.
  • Data Portability: Receive your data in a structured format.
  • Withdraw Consent: Where processing is based on consent.

To exercise these rights, contact us at info@auditwrangler.nl. We will respond within one month, extendable if complex. You also have the right to lodge a complaint with a supervisory authority, such as the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

8. International Data Transfers

If we transfer data outside the EEA (e.g., to U.S.-based service providers), we ensure adequate protections, such as EU Standard Contractual Clauses or reliance on Privacy Shield frameworks (where applicable).

9. Children's Privacy

Our services are not intended for individuals under 16 years old. We do not knowingly collect data from children. If we become aware of such data, we will delete it promptly.

10. Changes to This Privacy Statement

We may update this statement to reflect changes in our practices or legal requirements. We will notify you of material changes via the website or email. Continued use of the site after changes constitutes acceptance.

11. Contact Us

For questions or concerns about this Privacy Statement or our data practices, please contact:

Email: info@auditwrangler.nl

Thank you for trusting Audit Wrangler with your data.