Privacy Policy

Last Updated: March 20, 2026

1. Overview

Harmony AP Automation ("the Application") is an internal tool operated by Harmony Group ("the Company," "we," "us") for processing accounts payable transactions on behalf of the Company's restaurant clients. This privacy policy describes how we handle data accessed through the Application's connection to QuickBooks Online.

2. Data We Access

Through the Intuit QuickBooks Online API, the Application accesses the following types of data from authorized QuickBooks Online company files:

• Vendor names and contact information
• Chart of accounts (account names and IDs)
• Bill and bill payment transaction data
• Company identification information (Realm ID)

3. How We Use Data

All data accessed through the QuickBooks Online API is used exclusively for the purpose of creating accounts payable transactions (bills and bill payments) in the client's QuickBooks Online company file. We do not use this data for any other purpose.

4. Data Storage

The Application stores OAuth tokens (access and refresh tokens) necessary to maintain the API connection. These tokens are stored securely in password-protected server-side configuration. Transactional data (invoice details, amounts, vendor information) may be temporarily held in memory during processing but is not permanently stored outside of QuickBooks Online.

5. Data Sharing

We do not sell, rent, trade, or otherwise share any QuickBooks Online data with third parties. Data accessed through the API is used solely for internal accounting operations performed by Harmony Group on behalf of its clients.

6. Data Security

We implement reasonable security measures to protect data accessed through the Application, including encrypted API communications (HTTPS/TLS), secure credential storage, and access limited to authorized Company personnel only.

7. Data Retention

OAuth tokens are retained only as long as the API connection is active. If a client relationship ends or access is revoked, all stored tokens and cached reference data for that client are deleted.

8. User Rights

Clients may request disconnection of the Application from their QuickBooks Online account at any time by contacting the Company. Upon disconnection, all stored tokens and cached data associated with that account will be deleted.

9. Intuit Platform Requirements

This Application complies with Intuit's App Development Guidelines and the Intuit Developer Terms of Service. We access only the minimum data necessary to perform accounts payable processing functions.

10. Changes to This Policy

We may update this privacy policy from time to time. Any changes will be reflected by updating the "Last Updated" date above.

11. Contact

For questions or concerns about this privacy policy or our data practices, contact:
Harmony Group
Email: matt.h@harmonycpa.com