Privacy Notice

ImpactAccounting.ai is operated by ViSoftware SA, Route de Saint-Maurice 34, c/o Olivier Küng, 1814 La Tour-de-Peilz, Switzerland (UID CHE-168.413.226). For privacy questions or data subject requests, contact info@impactaccounting.ai.

This notice applies to our website, application, support communications, and related services.

Account and profile data: email address, authentication identifiers, name, organization, country, account status, role, workspace membership, and access request information.

Customer workspace data: projects, organization or initiative descriptions, uploaded files, financial and activity inputs, model assumptions, valuation outputs, scenarios, comments, exports, and audit trails.

AI interaction data: prompts, chat messages, uploaded-document summaries, model outputs, tool calls, citations, traces, and metadata needed to operate and debug AI workflows.

Technical and usage data: IP address, device and browser data, pages visited, product events, session information, logs, error reports, and security events.

Commercial and communication data: inquiries, support requests, email delivery metadata, billing or procurement information where applicable, and customer relationship context.

We process personal data to provide the service, authenticate users, manage workspaces, run impact valuation workflows, generate reports, provide support, maintain security, prevent abuse, improve reliability, and comply with legal obligations.

For customers and users in the European Economic Area, our legal bases may include performance of a contract, legitimate interests in operating and securing the service, compliance with legal obligations, and consent where required for optional analytics or similar technologies.

For Swiss users, we process personal data in accordance with the Swiss Federal Act on Data Protection and the principles of lawfulness, proportionality, transparency, purpose limitation, and security.

The service sends relevant project inputs, uploaded-document extracts, prompts, and workflow context to AI providers when needed to perform an analysis, answer a chat request, or generate a project output.

Do not enter special-category personal data, confidential third-party personal data, or regulated information unless your organization is authorized to process it through the service and has appropriate agreements in place.

AI outputs may be inaccurate or incomplete. Users remain responsible for reviewing outputs before relying on them.

We share personal data with service providers that host, secure, authenticate, store, analyze, email, and process the service on our behalf. We also share data when required by law, to protect rights and security, or as part of a corporate transaction.

Current vendor categories include cloud hosting and workflow infrastructure, database and file storage, authentication, AI model providers, analytics and observability, email delivery, and search/cache infrastructure.

We are based in Switzerland and may use providers located in Switzerland, the European Economic Area, the United Kingdom, the United States, and other countries.

Where required, we rely on adequacy decisions, standard contractual clauses, data processing agreements, transfer impact assessments, or similar safeguards for international transfers.

We keep account, workspace, project, telemetry, support, and security data for as long as needed to provide the service, meet contractual and legal obligations, resolve disputes, maintain audit trails, and protect the service.

Customers may request deletion of user or project data, subject to legal, security, backup, audit, and contractual retention requirements.

Depending on where you are located, you may have rights to access, correct, delete, restrict, object to, or receive a copy of your personal data. You may also have the right to withdraw consent where processing is based on consent.

European users may contact their local supervisory authority. Swiss users may contact the Federal Data Protection and Information Commissioner. Please contact us first at info@impactaccounting.ai so we can address the request directly.

We use technical and organizational measures designed to protect personal data, including authenticated access, workspace-level authorization, protected file routes, server-side access checks, logging, and operational controls.

No service can guarantee absolute security. Please use strong account controls and avoid uploading data you are not authorized to process.

We use local storage, authentication technologies, analytics, product telemetry, error reporting, and similar technologies to operate, secure, measure, and improve the service.

Where consent is legally required for optional analytics or tracking, we will provide the relevant controls before enabling those technologies.

We may update this notice when the service, vendors, or legal requirements change. The latest version will be posted on this page with the updated date.