# Privacy Policy

Last updated: 2026-05-17

## Scope

This privacy policy describes how the "Accountant" application ("the App") handles data on behalf of Rock Creek Contracting LLC.

## Data accessed

The App accesses the following data from the company's QuickBooks Online realm via the Intuit Accounting API (scope `com.intuit.quickbooks.accounting`):

- Chart of Accounts

- Customers, vendors, products & services, projects

- Invoices, bills, payments, estimates, change orders

- Reports (Profit & Loss, A/R Aging, Sales by Customer, etc.)

## How data is used

Data is read into local automation scripts running on Rock Creek Contracting's administrator workstation for the sole purpose of internal accounting workflow automation: reconciling Houzz Pro proposals with QuickBooks Online records, monitoring project P&L, flagging stale transactions, and similar internal operations.

## Data sharing

- No data is shared with third parties. The App does not transmit accounting data outside Rock Creek Contracting's infrastructure.

- The App does not collect data from end-users beyond the company's administrator.

- The App does not use cookies or tracking technologies.

## Storage

- OAuth tokens are stored locally on the administrator's workstation under `~/.config/intuit/oauth.json` with filesystem permission 0600 (owner read/write only) and encrypted at rest by the macOS APFS volume.

- API responses are processed in memory or written to local files (chmod 600) on the administrator's workstation.

- No accounting data is uploaded to remote servers other than the official Intuit QuickBooks Online API endpoints already governed by Intuit's own privacy practices.

## Retention

Local data is retained for the duration of operational need and is not duplicated to external services.

## User rights

The administrator can revoke the App's access at any time by disconnecting it via QuickBooks Online → Apps → Connected Apps.

## Contact

Philip Blue — Rock Creek Contracting LLC — philip.blue@rockcreekcontracting.com