Hedgi Privacy Policy
Last Updated: December 1, 2025
Hedgi, Inc. (“Hedgi”, “we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and safeguard information when you use our websites, mobile apps, web apps, APIs, and related services (the “Services”).
If you have any questions, contact us at admin@hedgi.com.
1. Plain‑English Summary (non‑binding)
We use your data to run Hedgi: automated bookkeeping, tax workflows, reporting, and related features.
We connect to your accounts using Plaid, process payments using Stripe, and host on Google Cloud.
Some classifications and AI tasks use third‑party AI providers (e.g., GPT‑5 “nano”). We configure these providers so they only process your data to serve Hedgi, not to market to you.
We do not sell your personal information to data brokers or ad networks.
You can request access, export, and deletion of your data, subject to legal retention requirements.
The Services are for U.S. users 18+; data is processed in the United States.
The rest of this Policy is the binding text.
2. Information We Collect
We collect three main types of information:
A. Information You Provide Directly
Account details – name, email, phone, business name, role, and password or auth credentials.
Financial data – with your explicit permission, we access financial accounts (e.g., banks, credit cards, payment processors) via Plaid and similar providers. This may include account identifiers, balances, and transaction histories.
Uploaded content – receipts, invoices, bank statements, tax documents, spreadsheets, notes, or other files you upload or send to us.
Client data (for Firm Users) – information about your clients, including their business details, chart of accounts, transactions, and tax‑related data that you import into Hedgi.
Communications – customer support messages, emails, in‑app chats, and feedback or survey responses.
Billing details – subscription and payment information processed via Stripe or app stores. We do not store full payment card numbers.
B. Information We Collect Automatically
Device and log data – device type, OS version, app version, IP address, timestamps, page/app views, and technical logs.
Usage data – which features you use, click paths, error events, and performance metrics, primarily for debugging, security, and product improvement.
Cookies and similar technologies – we may use cookies, local storage, and similar tools to keep you logged in, secure your account, and understand basic usage. We do not use third‑party ad network trackers to sell targeted ads.
C. Information from Third Parties
Bank and financial data via Plaid. When you connect a bank or financial account, Plaid (or similar) transmits account and transaction data to Hedgi. Plaid’s own privacy practices apply to their handling of your data in that flow.
Payment information via Stripe and app stores. Stripe, Apple, Google, or other processors handle your payment information to process subscriptions and one‑time charges.
AI and infrastructure providers. We may send selected data to cloud and AI providers (e.g., GPT‑5 “nano” models, Google Cloud) as needed to provide the Services (e.g., classifying a transaction, generating a draft tax pack, or hosting our systems).
3. How We Use Your Information
We use the information we collect for the following purposes:
To provide and operate the Services
Connect to your accounts and ingest transactions (via Plaid).
Classify and categorize transactions (rules + ML + AI).
Generate draft entries, autoposts, financial reports, and tax‑prep outputs (e.g., 1120‑S kits, K‑1 drafts, tax workpapers).
Maintain account profiles, settings, and permissions.
To improve and develop the Services
Debug issues, monitor performance, and enhance reliability.
Analyze aggregate usage patterns to decide what to build next.
Train, tune, and evaluate our models using de‑identified or aggregated data.
To personalize and support your experience
Provide alerts, insights, and recommendations within the app.
Answer support tickets and communicate about your account.
Send onboarding materials, feature announcements, and product‑related updates.
To process payments and manage subscriptions
Charge your chosen payment method for subscriptions, add‑ons (e.g., tax packs), and other services.
Handle refunds or credits where applicable.
To secure the platform and comply with law
Detect, prevent, and address fraud, abuse, and security incidents.
Enforce our Terms of Service and other policies.
Comply with legal obligations, regulatory inquiries, and lawful requests.
We may aggregate or de‑identify data and use it for any lawful purpose, including analytics and product improvement.
4. AI, Machine Learning, GPT‑5 “Nano” & Google Cloud
A. How AI/ML is used
Hedgi uses a combination of:
Internal models and rules (e.g., ML classifiers, heuristics);
Cloud‑hosted infrastructure on Google Cloud; and
Third‑party AI providers (e.g., a GPT‑5 “nano” model acting as a fallback classifier and reasoning engine).
We use these tools to:
Classify and label transactions;
Suggest categorizations and rules;
Generate draft narratives, tax explanations, and workpapers;
Power our assistant and “thinker” features; and
Improve the accuracy, coverage, and speed of the Services.
B. What we send to third‑party AI providers
Depending on your usage and configuration, we may send:
Transaction line descriptions and amounts;
Vendor names and high‑level account metadata;
Context needed to categorize or reason about an entry;
Limited tax‑related context needed to generate draft forms or packs.
We do not intentionally send your full account credentials or full documents (like entire PDFs) for generic model training. We aim to minimize personal data in prompts and to redact or pseudonymize where feasible.
C. How third‑party AI providers can use your data
We use contractual and technical measures to require that third‑party AI providers:
Use your data only to provide services to Hedgi (e.g., to classify a transaction or generate an output we requested); and
Do not use your identifiable content to train models for unrelated customers’ benefit.
That said, you understand that no contractual or technical control is perfect, and we cannot absolutely guarantee how a third‑party system behaves. We choose reputable vendors and require them to meet security and privacy expectations consistent with this Policy.
5. Use of Anonymized / Aggregated Data for Model Improvement
To improve Hedgi:
We may use de‑identified and/or aggregated transaction data and other usage signals to train, tune, and evaluate our models and systems.
We remove or transform identifiers (e.g., names, emails) where practical and focus on patterns across many users (e.g., “this vendor is usually ‘Software Subscriptions’”).
We do not sell your personal data or your individual transaction history to third parties for their own marketing, ad targeting, or model‑training unrelated to Hedgi.
6. How We Share Your Information
We do not sell your personal information to third‑party data brokers or advertising networks.
We share your information only in these situations:
Service providers / processors
Plaid (and similar) to connect and sync financial accounts.
Stripe, app stores, and other payment processors to handle billing.
Cloud hosting providers (primarily Google Cloud) to run our infrastructure.
AI providers (e.g., GPT‑5 “nano”) to process certain classification and assistant tasks.
Other vendors that help with email, logging, error monitoring, and analytics.
These providers act as our processors and may only use your information to provide services to Hedgi, under contractual confidentiality and security obligations.
Accountants, bookkeepers, and firm users you connect
If you invite or authorize an accountant, bookkeeper, or firm to use Hedgi with you, we share your relevant data with them.
Firm Users are responsible for how they handle their clients’ data under their own engagement letters and privacy practices.
Business transfers
If we undergo a merger, acquisition, financing, or sale of all or part of our business, your data may be transferred to the acquiring or successor entity as part of that transaction. We will require any successor to respect this Policy or apply equal or stronger protections.
Legal and compliance
We may disclose information if we believe it’s reasonably necessary to comply with law, regulation, legal process, or governmental request; to enforce our Terms; or to protect the rights, property, or safety of Hedgi, our users, or the public.
Aggregated / de‑identified data
We may share or publish aggregated insights or statistics that do not identify you (e.g., “X% of small businesses categorize this vendor as Software”).
7. Your Rights & Choices
Subject to applicable law, you have the following options:
Access and update. You can access and update account information in the app or by emailing admin@hedgi.com.
Delete your account / data. You can request deletion of your account and associated data. We will honor it, subject to reasonable retention required by law, accounting rules, or fraud prevention.
Export. You can request a copy of your data in a reasonable, machine‑readable format.
Communications preferences. You can opt out of non‑essential emails (e.g., marketing) by using unsubscribe links or updating settings. We will still send transactional and service‑related messages.
Some state laws (e.g., in California and other U.S. states) may grant additional rights. Where these apply, we will honor verified requests consistent with those laws.
8. Data Security
We use commercially reasonable measures to protect your information, including:
Encryption for data in transit (e.g., HTTPS/TLS) and at rest where appropriate;
Access controls, role‑based permissions, and internal security policies;
Vendor due diligence and contractual security requirements for Plaid, Stripe, Google Cloud, AI providers, and others;
Logging, monitoring, and incident‑response processes.
No system is perfectly secure. We cannot guarantee that unauthorized access, hacking, data loss, or other breaches will never occur. If we become aware of a significant incident affecting your data, we will investigate and notify you as required by law.
9. Data Retention
We retain information for as long as reasonably necessary to:
Provide and maintain the Services;
Support your use, account, and records;
Comply with our legal, tax, and accounting obligations; and
Resolve disputes and enforce agreements.
When you request deletion or close your account, we will anonymize or delete your personal information within a reasonable period, subject to retention required by law (for example, to comply with record‑keeping obligations or to prevent fraud).
10. Children’s Privacy
The Services are not directed to anyone under 18, and we do not knowingly collect personal information from children under 18. If you believe we have collected information from a child under 18, contact admin@hedgi.com and we will take appropriate steps to remove it.
11. U.S.‑Only Service & Data Location
Hedgi is intended for users located in the United States. By using the Services, you:
Represent that you are using the Services in the U.S.; and
Consent to your information being processed and stored in the United States (primarily on Google Cloud infrastructure) and potentially in other jurisdictions where our service providers operate.
If you access the Services from outside the U.S., you do so at your own risk and are responsible for compliance with local laws.
12. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will:
Update the “Last Updated” date at the top; and
Provide notice via the app, email, or our website where appropriate.
Your continued use of the Services after the effective date of any changes constitutes your acceptance of the updated Policy. If you do not agree, you must stop using the Services and may request deletion of your account.
13. Contact Us
If you have questions, requests, or complaints about this Privacy Policy or our data practices, contact us:
Email: admin@hedgi.com
Mail:
Hedgi, Inc.
591 Camino de la Reina, Suite 103
San Diego, CA 92108
United States