Policies

Privacy

Last Updated: April 25, 2025

1. Introduction

Jeffrey Jackson CPA PC Advisory (“we,” “us,” or “our”) is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information in accordance with applicable data protection laws.

By using our website, www.jeffreyjacksoncpa.com (“Service”), you consent to the data practices described in this Privacy Policy. We encourage you to review this policy regularly, as we may update it periodically. If significant changes are made, we will notify you via email or a notice on our website.

2. Data We Collect

2.1 Identifiers

  • Full name

  • Email address

  • Username or account ID

  • IP address (automatically collected)

  • Contact details (if provided)

2.2 Commercial and Transactional Data

  • Order history

  • Payment method details (via secure third-party providers)

  • Billing and shipping addresses

  • Refunds and transaction disputes

2.3 Technical and Usage Data

  • Browser type and version

  • Device information

  • Cookies and tracking data

  • Pages visited, session time, and interaction logs

  • ISP and approximate location

2.4 Preferences and Behavioral Data

  • Interests and purchase behavior

  • Feedback, reviews, surveys

  • Marketing preferences

2.5 Sensitive Personal Data

We do not knowingly collect sensitive data. If such data is collected inadvertently, it will be deleted unless retention is legally required.

3. Purposes & Legal Basis for Processing

  • Service Delivery: Contractual necessity

  • Communication: Contractual necessity; Legitimate interest

  • Marketing: Consent

  • User Experience: Legitimate interest

  • Personalization: Legitimate interest

  • Security & Fraud Prevention: Legitimate interest, Legal obligation

  • Compliance: Legal obligation

4. Data Security

4.1 Data Encryption

SSL/TLS encryption for data in transit.

4.2 Restricted Access

Access is limited to authorized personnel bound by confidentiality.

4.3 Secure Storage

Data is stored on secure servers with encryption and monitored infrastructure.

4.4 Audits and Monitoring

Ongoing assessments and monitoring for suspicious activity.

4.5 Multi-Factor Authentication

Used for administrative access to critical systems.

4.6 Staff Training

Employees are trained in data protection and security.

4.7 Incident Response

We have a breach response plan and will notify users and authorities if required.

5. Cookies & Tracking Technologies

5.1 Types of Cookies

  • Essential

  • Analytics (e.g., Google Analytics)

  • Functional

  • Advertising

5.2 Managing Cookies

Manage cookies via your browser or [cookie consent tool link]. For details, see [cookie table link].

6. Third-Party Disclosures

  • Payment Processors: Stripe, PayPal

  • Hosting Providers: AWS, Cloudflare

  • Analytics & Marketing: Google Analytics, Mailchimp

  • Authorities: Legal compliance if required

7. International Data Transfers

  • Standard Contractual Clauses

  • Privacy Frameworks

  • Additional Safeguards

You may request details at jeffreyjacksoncpa@gmail.com.

8. Your Rights

8.1 Access, Rectification, and Erasure

Request your data, correct inaccuracies, or request deletion.

8.2 Restrict Processing & Object

You may object to or limit how your data is processed.

8.3 Withdraw Consent

Withdraw marketing consent at any time.

8.4 Data Portability

Receive a copy of your data in a machine-readable format.

8.5 Exercising Your Rights

Submit requests via jeffreyjacksoncpa@gmail.com. Response within 30 days. Identity verification may be required.

9. Data Retention

  • Transactional Data: 7 years

  • Marketing Data: Until consent is withdrawn

  • User Accounts: Retained while active; deleted upon request

  • Anonymized Data: Retained indefinitely for statistical use

10. Children’s Privacy

This Service is not for children under 16. We do not knowingly collect data from minors. If you believe your child has submitted personal data, contact us at jeffreyjacksoncpa@gmail.com immediately.

11. Data Breach Protocol

11.1 Notification to Authorities

We will notify relevant data protection authorities within 72 hours if required.

11.2 Notification to Affected Individuals

If harm is likely, we’ll contact impacted individuals with relevant details.

11.3 Investigation and Remediation

We will investigate, fix vulnerabilities, and train staff.

11.4 Record-Keeping

All security events will be logged and retained for compliance.

12. Contact Information

If you have questions or wish to exercise your rights, contact:

Data Protection Officer (DPO)
Name: Jeffrey Jackson
Email: jeffreyjacksoncpa@gmail.com
Address: P.O. Box 3174, Liverpool, NY 13089
Phone: 315-944-0893
Website: www.jeffreyjacksoncpa.com

13. Updates & Consent

We reserve the right to update this policy to reflect changes in law or practices. Updates will be posted on our website. By continuing to use the Service, you agree to the updated terms. If you do not agree, please discontinue use and contact us with concerns.

For any further questions, please email us at jeffreyjacksoncpa@gmail.com.